Tm Ldr & Lead Information Security Engineer

US-IA-Des Moines
Job ID
Information Technology
Requires Non-Compete?

Job Summary

Wellmark is looking for a Team Leader & Lead Information Security Engineer to join our growing team! In this position, you will lead and direct information security engineering in the implementation of requirements to support information security technologies including intrusion detection/prevention, application/data security, encryption, forensics, log analysis, authentication systems, identity management and access control. You will apply industry best practice technology, design and methodology approaches to implement system solutions to support business processes. You will also research and recommend new emerging technologies, techniques and tools that will add value to the organization.


Core Competencies:

  • Accountability: Owning and taking responsibility for one’s actions.
  • Business Acumen: Understanding industry, market, financial and company specific operations.
  • Collaboration and Communication: Working together; listen to other’s ideas; communicate accurately and concisely.
  • Decision Making: Consider all facts and impacts when making decisions.
  • Focus on the Customer: Consistently doing what is in the best interest of our customer. Leaving a positive impression on the customer by elevating their experience; making it simpler and educating to helping them understand.

Minimum Qualifications Required (all must be met to be considered)

  • Bachelor’s degree in Computer Science, Information Systems, a related field. 
  • Minimum 7+ years of information technology experience, with a minimum of 4+ years in information security.
    • Hands-on experience installing and administering a variety of security systems including firewalls, IDS/IPS, SIEM, manage antivirus/antimalware, patch management, NAC, DLP, and Group Policy.
    • Strong knowledge in the following areas: IAM, system virtualization, Windows and Linux Security, Cloud Security, Network and Network Security, Hadoop, DBMS, Application Whitelisting, Vulnerability Management, or endpoint security controls.
    • Knowledge of compliance and regulatory program requirements, such as HIPAA, ISO 27000, NIST, FISMA, and SOC standards.
    • Experience using security tools such as log analyzers, network tracers, and vulnerability scanners.
  • Formal or informal leadership experience typically gained through a combination of project or informal leadership that demonstrates competencies
  • Demonstrated interpersonal skills, with the ability to effectively develop relationships, both internally and externally, to produce maximum results
  • Strong communication skills, both verbal and written, with the ability develop and execute creative solutions
  • Demonstrated project management skills and ability to track and report progress against established milestones, metrics and deliverables.
  • Strong analytical and problem-solving skills.
  • Excellent written and verbal communication skills, demonstrating the ability to write with purpose, clarity, and accuracy to both technical and non-technical audiences.
  • Travel required intermittent, up to 5%.

Hiring Specifications Preferred

  • Bachelor’s Degree
  • Certifications:
    • GIAC Security Essentials
    • GIAC Certified Incident Handler
    • Certified Security Administrator (firewall)
    • Certified Information Systems Security Professional (CISSP) - ISC2
    • Certified Information Security Manager (CISM) - ISC2
    • Certified Information Systems Auditor (CISA) - ISC2
    • Certified Ethical Hacker
  • Formal leadership/management experience in leading, developing and managing a team.

Job Accountabilities

a. Provide leadership and day-to-day management of financial and human resources, primarily focusing on employee coaching, development, performance improvement, coordination and budgeting for workforce and departments specific functions/services. Support business objectives and produce results that are effective, accurate, and timely and on target to meet stakeholder needs.

b. Oversee and drive implementation of solutions for Wellmark's Corporate Information Security CIS engineering and standards. Provide transformational and strategic guidance to a team of Engineers, Analysts and Administrators. Manage IT standards and systems engineering through IT governance controls including project reviews and standards adherence monitoring. Serve as the Lead Information Security Engineer by ensuring the implementation of practical business engineering strategies that are aligned with Wellmark's strategic goals and objectives. Work to define technology engineering standards, guidelines and principles, including associated reference the implementation of solutions.

c. Develop security strategy plans and roadmaps based on sound enterprise architecture and security practices.

d. Review security technologies, tools and services, and make recommendations to the broader security team for their use, based on security, financial and operational metrics.

e. Exhibit a strong engineering knowledge by leveraging technology and transformational frameworks in developing a best-in-class security technology to meet business objectives.

f. Develop strategies for migrating systems and data into the new architecture, through defined enterprise initiatives and the adherence to enterprise standards.

g. Prepare and facilitate executive level briefings and proposals on IT strategies and direction for business stakeholders and/or senior leadership.

h. Stay current on and evaluate emerging tools, techniques and technologies for potential Wellmark applications. Understand and use appropriate tools to analyze, identify and resolve business and/or technical problems.

i. Other duties as assigned.


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed