Lead Cyber Security Engineer

This position has been filled or has expired. To search all open positions, visit our Job Board.

Wyndham Capital Mortgage (WCM), founded in 2001, is a Fintech Mortgage Lender headquartered in Charlotte, North Carolina. Our cultural belief is to empower our team members to enrich their lives and careers while working with modern technology, robotics, and automation to eliminate repetitive work and leverage our employee’s human potential and highest-value work. At Wyndham Capital, we intend to facilitate a greater sense of purpose in our jobs and lives. Your involvement will translate directly to continuous improvement in our systems, processes, and customer experience. We believe your experience at WCM will catapult your career growth and nurture your life’s journey.

Wyndham Capital Mortgage is seeking a Lead Cybersecurity Engineer to drive the cybersecurity roadmap forward and provide advanced designs for complex security solutions. This position exists to critically form and maintain a company-wide security policy to ensure that systems are protected and meeting all regulatory requirements. The role is both strategic and hands-on and includes ownership of the firm’s Cloud Security program.

This role may include a fully remote selection process and remote onboarding. Post-Covid this role is expected to work 90% remotely

• Perform information security assessments, prepare information systems security action plans, evaluate information security products, and perform other activities necessary to ensure a secure environment.
• Design and craft the full Cloud Security program
• Implement the requirement of all information systems security policies, standards, baselines, guidelines, and procedures. NIST, COBIT
• Review current system security measures and recommend and implement enhancements.
• Conduct after action reviews into any alleged computer or network security compromises, incidents, or problems and provide mitigating controls.
• Actively monitor systems for indications of security compromise.
• Build security requirements for security projects
• Expert knowledge in information security areas such as access control, network security, operations security, application security, computer forensics, security architecture, and design, mobile device security, cloud security

• IT Security Architecture experience within Cloud Security. AWS preferred.
• Expert knowledge of Cloud Security methodologies, implementation, and deployment.
• Ability to engage and manage relations with Cloud Security vendors and providers
• Solid understanding of security protocols, authentication, authorization, and security
• Good working knowledge of current IT risks and experience implementing security solutions
• Candidate will work closely with the Risk Management department and act as the SME for all security-related incidents
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures
• Ability to maintain proficiency in vulnerability and threat management best practices
• Ability to develop and implement security procedures and control
• High level hands-on monitoring used to uncover issues and then create business cases around why it needs to get done and presenting that to management.
• Case management experience – creating a case from an issue and then tracking that to completion to make sure the issue is resolved
• Bachelors degree required, 10 years equivalent experience without a degree
• Extensive knowledge of NIST framework, CSC framework, CSF framework, ITIL, COBIT, PCI, HIPAA, SOX and ISO 2700x. Experience deploying, managing or developing processes in one of these frameworks is preferred.
• One or more of the following certifications preferred: SSCP, CCSP, CISSP-ISSEP, CISSP ISSAP, GCED, GCCC
• Successful candidates will have the ability to work autonomously and be able to bridge the gap between deep technical knowledge and senior management engagement to influence strategy and information security management.

About you:
• Strives to provide +1 Service to ensure success, to both internal teams and external clients
• Has the upmost integrity, period
• Is naturally curious – you enjoy seeking out and applying new things in your job
• Knows how to make smart, informed decisions
• Has passion for your job and positive energy that is infectious
• Cares about your work and performance, and you want to provide impact across the organization
• At times, can be innovative and not afraid to bring big thinking and ideas to the table
• Is able to deliver influential communication to others
• You take your work seriously, but not yourself. You like to have fun at work

• Group health coverage (medical, dental, & vision)
• Paid Time Off
• Employee Assistance Programs
• Pre-tax health spending account (HSA)
• 401(k) plan (with company match)
• Company provided life insurance
• Pet Insurance
• 8 hours of Volunteer Time Off
• Employee discounts (fitness, phone)
• Wellness events