Enterprise Holdings Engineer 2, Security in St. Louis, Missouri
Enterprise Holdings, operating the National, Enterprise, and Alamo car rental brands is looking for a Engineer 2, Security to join our amazing Information Technology team! Enterprise Holdings is the largest and fastest growing privately owned automotive rental and leasing company in the North America.
Enterprise Holdings is powered by technology, and IT is a critical area of the business. As a diverse team of idea enablers and problem-solvers, our innovative IT professionals design, develop and drive the tech that is redefining how customers rent, buy and share vehicles from our family of brands. Here, you will be part of a team that creates and delivers powerful technical solutions for our branch locations and employees across the world with the resources and support to develop in a variety of career paths.
As you are considering a position with Enterprise Holdings, we invite you to learn more about our business. Today – and every day – the safety and wellbeing of employees, customers and the communities we serve is our top priority. For the latest on our COVID-19 response, please click here.
If you're a team player, influencer, and active participant in engaging conversations about security, we have an opportunity for you. The Vulnerability and Exploit Services Team (VEST) has an exciting opening for a person who is eager to learn about diverse technologies at Enterprise Holdings, and play an integral part in reviewing vulnerabilities, controls, and how they impact the organization.
The Engineer 2 – Security will possess a passion for information security and will assist leadership in influencing the organization in understanding vulnerabilities and respective treatment options. The individual is expected to guide, consult and support the organization in responsible and effective vulnerability management practices Additional responsibilities include:
Research vulnerabilities and EHI applicability, apply organizational context, and assist teams in remediation in support of organizational risk appetite.
Listen to, analyze, and partner with IT Teams to assess the implementation of security controls and how those controls mitigate or reduce the risk of vulnerabilities.
Ongoing management and support of vulnerability scan platform.
Vendor interactions in support of vulnerability scanning capabilities.
Shepherd and present vulnerability treatment options to IT Governance.
Takes ownership, executes and supports vulnerability scanning discovery and delivery of results.
Influence IT Management and peers driving priorities within and outside the department.
Provide outstanding customer service
Other duties as assigned.
Equal Opportunity Employer/Disability/Veterans
Must be presently authorized to work in the U.S. without a requirement for work authorization sponsorship by our company for this position now or in the future
3 or more years of experience in a technical IT role
Excellent relationship building experience with proven ability to partner with technical staff and peers to collaboratively solve problems
Foundational knowledge of IT security controls
Experience configuring and administering network, infrastructure, or application development
Ability to think holistically and identify areas of technical and non-technical risk
Ability to write technical reports and communicate technical content to non-technical audiences
Willing to quickly learn new technologies, platforms, and applications
Excellent communication skills with the ability to be an active listener and fully engaged communicator
Ability to work off-hours, though it is required rarely
Must be committed to incorporating security into all decisions and daily job responsibilities
Bachelor's degree in Computer Science, Computer Information Systems, Management Information Systems, or related field preferred
Experience in multiple technical disciplines including application development, cloud, networking, systems, data, etc.
Working knowledge of risk and security frameworks, standards, and best practices (e.g. NIST, SANS Critical Security Controls, National Vulnerability Database CVSS Scoring)
Application Engineering background