Advance your potential – and reach your goals

Position Overview:
The Principal Cybersecurity Engineer is ideally based Baltimore, MD.  Candidates may also be considered in Irving TX, Evansville IN, and Fort Mill SC.  The Principal Cybersecurity Engineer will be responsible for designing, documenting, and reviewing the implementation of security controls across on-premises and cloud environments. 

Description:
The Principal Cybersecurity Engineer will collaborate across several business and technology organizations to provide technical guidance to ensure alignment with regulatory and organizational standards.  The Principal Cybersecurity Engineer will create conceptual and technical design artifacts with emphasis on long-term technology planning, risk reduction, and regulatory compliance. The Principal Cybersecurity Engineer will also evaluate enterprise IT designs for their alignment with the enterprise security architecture and NIST 800.53 controls. The Principal Cybersecurity Engineer has a demonstrated mastery in multiple security and non-security technology platforms, with the ability to both lead and advise on the overall designs and strategies of both security and non-security technologies. Along with security platform mastery in more than one platform area (IDS/IPS, firewall/WAF, access and identity, malware defense, threat modeling, exposure management, among others), the Principal Cybersecurity Engineer is formally trained in enterprise IT design and architecture practices.

• Collaborate with and mentor enterprise architects in security best practices, fostering a collaborative and high-performance work environment.
• Prepare architectural designs and strategies for key security investments as required.
• Provide subject matter expertise in the evaluation of enterprise security technology platforms and products.
• Maintain and update the enterprise security architecture and relevant cybersecurity standards.
• Collaborate with stakeholders to perform tool rationalization, capability mapping, and gap analysis.
• Collaborate with stakeholders to gather requirements and develop comprehensive security solutions that meet business needs.
• Review and evaluate solution designs and deployments for proper security capability implementation.
• Ensure inclusion of security standards and alignment with technical and reference architectures.
• Manage, develop, and collaborate on threat models to identify and assess potential security risks within the organization's systems and applications.
• Ensure threat models are regularly updated and integrated into the solution design process to enhance proactive risk management.
• Develop and implement metrics to measure the effectiveness, efficiency, coverage, and maturity of the enterprise security architecture and the security architecture processes.

Required Skills and Qualifications:

• Excellent verbal and written communication skills.
• Ability to organize and facilitate planning and demonstrations.
• Ability to track, manage, and ensure project tasks are completed in a timely manner.
• Ability to prioritize multiple simultaneous projects.
• Self-motivated to seek out and discover security gaps or weaknesses in existing implementations.
• Deep working knowledge of NIST 800.53 controls, NIST CSF, and other industry security best practices.
• Demonstrated knowledge of secure build and configuration standards in a highly regulated environment.
• Formalized training in industry-standard architectural frameworks and techniques (e.g., NIST, GDPR, CCPA, PCI/DSS).
• Experience designing or developing Cardholder Data Environments to ensure compliance with PCI/DSS standards.
• Certified Information Systems Security Professional certification (CISSP) or equivalent certification.

Preferred Technical Knowledge

• Experience with Zero Trust Architecture and modern security models
• Familiarity with DevSecOps and infrastructure-as-code security Cloud Architecture (AWS, Azure)
• Certified Cloud Security Professional certification (CCSP)
• AWS Certified Security (SCS-C02)
• Microsoft Cybersecurity Architect (SC-100)

Experience Requirements:

• Minimum of 8 years' experience in the Cybersecurity field
• Minimum of 8 years' experience as an engineer or enterprise IT solutions architect

Education Requirements:

• Bachelor’s Degree in Computer Science or similar field of study

Travel:

• Limited to none

Who we Are

OneMain Financial (NYSE: OMF) is the leader in offering nonprime customers responsible access to credit and is dedicated to improving the financial well-being of hardworking Americans. Since 1912, we’ve looked beyond credit scores to help people get the money they need today and reach their goals for tomorrow. Our growing suite of personal loans, credit cards and other products help people borrow better and work toward a brighter future.

Driven collaborators and innovators, our team thrives on transformative digital thinking, customer-first energy and flexible work arrangements that grow lives, careers and our company. At every level, we’re committed to an inclusive culture, career development and impacting the communities where we live and work. Getting people to a better place has made us a better company for over a century. There’s never been a better time to shine with OneMain.

Because team members at their best means OneMain at our best, we provide opportunities and benefits that make their health and careers a priority. That’s why we’ve packed our comprehensive benefits package for full- and some part-timers with: 

• Health and wellbeing options including medical, prescription, dental, vision, hearing, accident, hospital indemnity, and life insurances 
• Up to 4% matching 401(k)   
• Employee Stock Purchase Plan (10% share discount)   
• Tuition reimbursement   
• Paid time off (15 days’ vacation per year, plus 2 personal days, prorated based on start date) 
• Paid sick leave as determined by state or local ordinance, prorated based on start date 
• Paid holidays (7 days per year, based on start date) 
• Paid volunteer time (3 days per year, prorated based on start date) 

 [Geographies that require compensation posting] Target base salary range is xx-xx, which is based on various factors including skills and work experience. In addition to base salary, this role is eligible for a competitive compensation program that is based on individual and company performance