Cyber-Security Log Operations

at Nelnet
Published September 16, 2023
Location Draper, UT
Category Default  
Job Type Full-time  

Description

Nelnet is a diversified and innovative company committed to enriching lives through the power of service as a student loan servicer, professional services company, consumer loan originator and servicer, payments processor, renewable energy solutions, and K-12 and higher education expert. For over 40 years, Nelnet has been serving its customers, associates, and communities.

The perks of working at Nelnet go beyond our benefits package. When you join the Nelnet team, you're part of a community invested in the success of each individual. That support comes through in our work, as we are united by our mission of creating opportunities for people where they live, learn, and work.

Job Profile Summary

Nelnet is a student loan servicer that's grown into a fiber internet pioneer, real estate investor, and software provider. But that's just the beginning. With 6,500 associates and growing, we take our business wherever superior customer experiences and ingenuity are needed.

The perks of working at Nelnet go beyond our benefits package. When you join the Nelnet team, you're part of a community invested in the success of each individual. That support comes through in our work, as we are united by our mission of creating opportunities for people where they live, learn, and work.

Nelnet's Cybersecurity Engineers work closely with our various business lines and our IT shared services team to help run, administer, and implement our application development environment securely. It is imperative that our engineers understand the business, the goal, information technology, and cybersecurity.

This position requires work in support of the Company's contract with the United States Department of Education ("ED"). As such, the United States Government requires that any applicant for this position must complete United States Government security clearance. Effective June 1, 2018, ED has informed Nelnet that security clearance applications for foreign nationals are not being accepted or processed. In light of this direction from ED, Nelnet will be unable to hire applicants without United States citizenship for such positions.

The successful Nelnet Vulnerability Operations, Cybersecurity Engineer:

  • Is a self-starter and can consistently produce outstanding results with minimal supervision.

  • Has exceptional troubleshooting skills and is extremely detail oriented.

  • Monitors and works with logs in Splunk and other log aggregators.

  • Works closely with system owners to recommend, schedule and/or apply fixes, security patches, and any other measures required.

  • Collaborates on IT projects to ensure that security issues are addressed throughout the project life cycle.

  • Verifies if findings are actual threats or false positives.

  • Participates in department-wide change control and IT governance processes, on behalf of the Nelnet Cyber Security Group (CSG).

  • Stays up to date on the latest global vulnerability landscape and published compliance guidelines.

  • Responds to audit findings, directing remediation, tracking progress, providing status reporting, and creating/maintaining evidence documentation.

  • Develops and maintains documentation for security related systems.

  • Is flexible and nimble in a fast paced environment.

  • Maintains a positive, customer centric attitude.

***Pay Rsnge for this position is: $75k-115k

Job Description

Required Qualifications

  • Bachelor's degree in cybersecurity, computer science, systems administration, information systems, or related areas.

o Related work experience may be substituted for this requirement.

  • Minimum four years IT operations experience working with SIEM products and threat detection.

  • Minimum four years experience implementing and supporting cybersecurity technologies, such as:

o SIEM

o SOAR

o Database Monitoring

o Threat detection mechanisms

o Alarming mechanisms

  • Hands on experience with SIEM, SOAR, and Database Monitoring products.

  • Ability to work with a remote team via collaboration tools (Microsoft Teams, E-Mail, and Video Conferences).

  • Experience with PowerShell, Python, BASH, Chef or Ansible a plus.

Desired Qualifications

  • Any relevant Cybersecurity certifications, such as: Security+, SSCP, CISSP, GSEC, GCIA, GCI, CEH, etc.

  • Any relevant IT certifications, such as: server, desktop, network, virtualization, and/or storage.

  • Enterprise level experience with:

o SIEM Products

? Splunk

? Imperva

o Logging and Monitoring Products

? Sysmon

? Syslog

o Linux

o Atlassian products Jira and Confluence

o ServiceNow, preferably including SNOW security related modules (VR, GRC, etc.)

o Agile methodology

Additional Job Description

Our benefits package includes medical, dental, vision, HSA and FSA, generous earned time off, 401K/student loan repayment, life insurance & AD&D insurance, employee assistance program, employee stock purchase program, tuition reimbursement, performance-based incentive pay, short and long-term disability, and a robust wellness program. Click here to learn more about our benefits: LINK.

Nelnet is an Equal Opportunity Employer, complies with Executive Order 11246, and takes affirmative action to ensure that qualified applicants are employed, and that employees are treated during employment, without regard to race, color, religion/creed, national origin, gender, or sex, marital status, age, disability, use of a guide dog or service animal, sexual orientation, military/veteran status, or any other status protected by Federal or State law or local ordinance.

Qualified individuals with disabilities who require reasonable accommodations in order to apply or compete for positions at Nelnet may request such accommodations by contacting Corporate Recruiting at 4024865725 or [Click Here to Email Your Resumé].

Nelnet is a Drug Free and Tobacco Free Workplace.

JOB RESPONSIBILITIES:

A. Security Development - Technical Understanding

  1. Experience with SIEM products.

  2. Understands and demonstrates current job family technical skill expectations

  3. Explores and pursues technical skills outside of current job family

  4. Actively seeks to remain technically current and increase expertise and abilities

  5. Strives to align personal passion and career desires with opportunities and company needs

  6. Understands and Exhibits skills to protect data, systems and networks and maintains secure, reliable, redundant systems.

B. Innovation

  1. Challenges prevailing assumptions when appropriate

  2. Brings forward technology options that provide long-term business value

  3. Identifies short-term, tactical technology alternatives that result in immediate business value

  4. Strives continually for improvements in delivery of services and solutions

  5. Balance the need for experimentation and managed risk with the desire to maintain the existing systems and processes

C. Agility

  1. Willing to adapt to changing technology and business landscapes

  2. Remains present and engaged while working through ambiguity

  3. Considers change as opportunities to be challenged and grow

  4. Helps others adapt to changing environments

D. Problem Solving

  1. Uses analytical ability and creative thinking to break problems down into manageable components

  2. Thinks open mindedly and considers all alternatives

  3. Identifies well thought out, comprehensive alternatives

  4. Takes responsibility for ensuring problems are worked to a complete resolution

E. Collaboration

  1. Explores concepts, ideas, and alternatives to reach outcomes that gain acceptance and support of all participants

  2. Strives to foster an environment of teamwork and unity that allows for constructive conflict, deliberation of ideas and appreciation of diversity

  3. Seeks out opinions and thoughts of others without regard for organizational boundaries

  4. Strives to be self-aware of personal behaviors that limit collaboration and teamwork

  5. Influences, motivates and inspires others through direct and indirect means to accomplish organizational and team objectives and goals

F. Communication Skills

  1. Adapts style of communication to match audience and information sharing needs

  2. Actively pursues bi-directional sharing of ideas and information

  3. Speaks and writes effectively with cohesion and clarity

  4. Asks for input, listens actively and seeks to ensure all opinions are heard

G. Strategic Focus

  1. Understands Nelnet's overall business and technology goals and objectives

  2. Strives to view things from a business perspective and a genuine desire to do what's right

  3. Strives to consistently deliver the right solutions and services

  4. Acts as a trusted adviser while seeking short-term wins and long-term benefits

EDUCATION:

Knowledge equivalent to the completion of a Bachelor's degree in Computer Science or a related field of study.

EXPERIENCE:

  1. Highly proficient in multiple development languages (C#, Java, PHP)

  2. Experience with continuous integration and DevSecOps

  3. Three to Five years' experience with Application Security code analysis tools running within enterprise environments and configurations

  4. Familiarity and experience with various regulations governing IT environments.

  5. Must have demonstrated industry experience and or leading certifications in the relevant field.

  6. Experience must be applicable to one of the following:

  7. 3-5 years in Developer/Application Security role

  8. 3-5 years CyberSecurity Analyst / Generalist

COMPETENCIES - SKILLS/KNOWLEDGE/ABILITIES:

  1. Knowledge of security, control and computer technology.

  2. Knowledge of how to lead and/or motivate others.

  3. Knowledge of and ability to apply concepts of statistics and probability to identify and address problems, trends, and relationships in work related data.

  4. Knowledge of various computer systems and software - PC and/or online - to input, access, modify or produce information or to execute preprograms

  5. Knowledge of industry relevant to job.

  6. Knowledge of at least one computer development language, methodology, and techniques.

Our benefits package includes medical, dental, vision, HSA and FSA, generous earned time off, 401K/student loan repayment, life insurance & AD&D insurance, employee assistance program, employee stock purchase program, tuition reimbursement, performance-based incentive pay, short- and long-term disability, and a robust wellness program. Click here to learn more about our benefits: LINK (http://nelnetinc.com/careers/benefits/) .

Nelnet is an Equal Opportunity Employer, complies with Executive Order 11246, and takes affirmative action to ensure that qualified applicants are employed, and that employees are treated during employment, without regard to race, color, religion/creed, national origin, gender, or sex, marital status, age, disability, use of a guide dog or service animal, sexual orientation, military/veteran status, or any other status protected by Federal or State law or local ordinance.

Qualified individuals with disabilities who require reasonable accommodations in order to apply or compete for positions at Nelnet may request such accommodations by contacting Corporate Recruiting at 402-486-5725 or [Click Here to Email Your Resumé] .

Nelnet is a Drug Free and Tobacco Free Workplace.

You may know Nelnet as the nation's largest student loan servicer - but we do more than that. A lot more. We're also a professional services company, consumer loan originator and servicer, payment processor, renewable energy innovator, and K-12 and higher education expert (and that's just a shortlist). For over 40 years, we've been serving our customers, associates, and communities to make dreams possible.

EEO Info (https://nelnetinc.com/wp-content/uploads/EEO-poster.pdf) | EEO Letter (https://nelnetinc.com/wp-content/uploads/EEO-Jeffs-Letter.pdf) | EPPA Info (https://nelnetinc.com/wp-content/uploads/Employee-Polygraph-Protection-Act-Poster.pdf) | FMLA Info (https://nelnetinc.com/wp-content/uploads/FMLA-Leave.pdf)