OneMain Financial Jobs

Job Description

The Network Engineering Security Analyst will design, monitor, and maintain secure network architectures while ensuring continuous alignment with NIST cybersecurity frameworks (e.g., NIST SP 800-53) and SOC 2 Type II compliance requirements. You will be responsible for translating high-level compliance mandates into technical network configurations and serving as the primary liaison during security audits.

Core Responsibilities:

• Network Security Engineering: Design and implement robust security solutions, including next-generation firewalls (NGFW), VPNs, and Intrusion Detection/Prevention Systems (IDS/IPS).

• Compliance Management: Lead the technical implementation of controls required for SOC 2 and NIST compliance, performing regular gap analyses and internal audits.

• SOC Operations: Monitor real-time security alerts via SIEM platforms (e.g., Splunk, Sentinel) to detect and mitigate network-based threats.

• Vulnerability & Risk Assessment: Conduct regular vulnerability scans and penetration tests to identify and remediate network weaknesses.

• Incident Response: Act as a Tier 2/3 responder for network-related security incidents, conducting root cause analysis and documenting resolutions for audit trails.

• Policy & Documentation: Develop and maintain Standard Operating Procedures (SOPs), network diagrams, and security policies that fulfill compliance documentation needs.

Priority 1: Audit, Policy, & NIS2 Methodology (40%)

• NIS2 Translation: Act as the primary architect for translating NIS2 Directive requirements into actionable internal technical standards.

• Methodology Development: Author and maintain the Incident Handling Methodology, providing step-by-step procedures for the SOC to follow during a network breach.

• Audit Ownership: Lead the preparation and evidence collection for SOC 2 Type II and NIST-based audits. Maintain an "Always Audit-Ready" state for all network infrastructure.

• Policy Governance: Develop, review, and enforce Network Security Policies, including Zero Trust architecture principles and micro-segmentation strategies.

Priority 2: Technical Configuration & Platform Delivery (40%)

• Platform Requirements: Produce detailed technical requirements documentation for platform delivery teams to ensure all new infrastructure meets NIS2/SOC compliance from day one.

• Hardening & Configuration: Design and implement secure configurations for routers, switches, and firewalls (e.g., Cisco IOS Hardening) to mitigate identified audit gaps.

• Network Defense Implementation: Configure and manage NGFWs, WAFs, and VPN gateways, ensuring all configurations map directly back to a specific NIST SP 800-53 or SOC control.

• Vulnerability Remediation: Take ownership of network-layer vulnerability scan results, coordinating with engineering teams to patch or apply compensating controls.

Priority 3: SOC Operations & Incident Management (20%)

• Tier 3 Escalation: Provide expert-level analysis for complex network security events identified by the SOC.

• Post-Mortem Reporting: Lead technical root-cause analysis for incidents, ensuring documentation meets the strict reporting obligations required by NIS2 authorities.

• Detection Engineering: Create and tune SIEM rules based on network traffic patterns to improve detection of lateral movement.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

-3-5 years of experience in network engineering with a heavy focus on security or as a Senior SOC Analyst

-Strong Compliance Knowledge: Proven track record of successfully navigating a SOC 2 audit or implementing NIST frameworks.

-Expert knowledge of TCP/IP, routing/switching (Cisco/Juniper), and network security zoning.

-Proficiency with SIEM, SOAR, and vulnerability management tools (e.g., Tenable Nessus, Qualys).

-Scripting skills (Python, PowerShell, or Bash) for automating compliance checks.

-Ability to correlate disparate logs from firewalls, routers, and servers to identify sophisticated attack patterns.

-Ability to explain complex technical vulnerabilities to non-technical stakeholders and auditors.

-Meticulous documentation of configuration changes to maintain "audit-ready" status at all times. -CISA (Certified Information Systems Auditor) or CISSP

-Portfolio examples of "Process/Methodology" documentation or "Platform Delivery Requirements."