Charles Schwab Technical Director - Web Access Security in Other, California


Other - CA, TCOMMUTE, , 94105

Christine Marie Hill


We believe that , when done right, investing liberates people to create their own destiny. We are driven by our purpose to champion every client’s goals with passion and integrity. We respect and appreciate the diversity of our employees, our clients, and the communities we serve. We challenge conventions strategically to create value for our clients, our firm and the world. We live and bring to life the concept of ‘own your tomorrow’ every day. We champion our employee strengths, guide their development, and invest in their long-term success. We hire optimistic, results-oriented, curious, innovative, and adaptable people with the desire to help our clients and one another succeed.

As a company, we were established by Chuck at over 40 years ago to champion Main Street over Wall Street, and to help Americans transform themselves from earners to owners. Through advocacy and innovation, we work to make investing more affordable, accessible and understandable for all. As we enter our fifth decade, we are looking for talented, innovative and driven people who believe they can help themselves, and our clients, create a better future.

Our Opportunity:

The Technical Director of Web Application Security is primarily responsible for analyzing and directing the security capabilities and methodologies relating to potential threats to the firms external facing infrastructure. You will be responsible for developing strategy and implementing web application firewall protections as well as securing API infrastructure and cloud environments. You will ensure web security controls are tuned to properly detect, alert and prevent threats to Charles Schwab. As a Technical Director within InfoSec Threat Management group, you will be expected to partner and consult on emerging security tools and processes across organization.

What you’ll do:

  • Partner with DevOps teams to maintain and build out our security controls utilizing web application firewall technologies deployed in the cloud and on-premises

  • Work with security architecture and application owners to develop web application security policies

  • Develop/improve automated onboard of digital properties and domains to cloud and implement security policies

  • Develop processes to test security controls utilizing web application firewall technologies in development, quality assurance and production environments

  • Work with Security Operations team to develop monitoring and detection controls

  • Work with application and network engineering teams to implement change tickets to implement security controls

  • Partner with vendors to optimize our current security controls while tracking emerging technologies

  • Complete assigned tasks by working with individuals and application and network engineering teams that are geographically dispersed

  • Motivating cross functional teams to align on industry best practices and ensure compliance

  • Responsible for the oversight and process management for cloud security suites to include configuration management

  • Act as a consultant to assist internal customers with developing a long-term web application and data center security strategy

  • Experience with data processing, Real Time Reporting and Analytics a plus

  • Engage in internal projects that help scale the group, implement best practices, and improve methodologies

  • Maintain customer focused protection strategies

What you have:

  • Bachelor's degree in Computer Science, Engineering, or 10 years of relevant work experience

  • 6+ years of Project coordination and project management

  • 6+ years demonstrated experience building and managing high-preforming programs

  • 5+ years of experience working on one or more security domains

  • 4+ year’s industry experience in a large, mission-critical environments

  • 4+ years working with cloud and on-prem web application firewall technologies

  • 4+ years of experience working with Java and .NET platforms

  • 4+ years of experience working with machine data analytics solutions

  • Ability to coordinate, work with and gain the trust of business stakeholders, technical resources, and third-party vendors

  • Strong knowledge of network and web based related protocols (e.g TCP/IP, UDP, IPSEC, HTTP, HTTPS)

  • Knowledge of routing protocols (e.g. BGP, OSPF, EIGRP)

  • Knowledge with common IP/application attacks such as SYN, UDP, NTP and ICMP floods, HTTP GET and POST Experience in PCI, FFIEC, SOX, NIST and FRB compliance frameworks and standards a plus

  • Excellent communication skills both written and verbal

  • Strong analytical abilities and process-driven orientation

  • Fluent in at least one scripting language, such as Perl, Python or Shell

  • CISSP or similar certification preferred

  • Work well in a geographically dispersed team environment

You demonstrate these behaviors:

Curious: Constantly learns more about our clients, competitors, industry and the broader market to drive insights and decisions

Innovative: Defines a compelling vision of the future, and develops breakthrough ideas, whether big or small, that support that vision

Disciplined: Highly disciplined in how resources are used; designs and champions ideas to drive efficiency

Talent Magnet: Seeks out and attracts strong internal and external talent

What you’ll get:

  • Comprehensive Compensation and Benefits package

  • Financial Health: 401k Match, Employee Stock Purchase Plan, Employee Discounts, Personalized advice, Brokerage discounts

  • Work/Life Balance: Sabbatical, Paid Parental Leave, New Mothers returning to work Program, Tuition Reimbursement Programs, Time off to volunteer, Employee Matching Gifts Program

  • Everyday Wellness: Health and Lifestyle Wellness Rewards, Onsite Fitness Classes, Healthy Food Choices, Wellness Champions

  • Inclusion: Employee Resource Groups, Commitment to diversity, Strategic partnerships

  • Not just a job, but a career, with an opportunity to do the best work of your life

Learn more about Life@Schwab at" .

Charles Schwab & Co., Inc. is an equal opportunity and affirmative action employer committed to diversifying its workforce. It is Schwab's policy to provide equal employment opportunities to all employees and applicants without regard to race, color, religion, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), gender identity or expression, national origin, ancestry, age, disability, legally protected medical condition, genetic information, marital status, sexual orientation, protected veteran status, military status, citizenship status or any other status that is protected by law. Schwab also does not discriminate against applicants or employees because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. At Schwab, we believe that every employee, through their diverse abilities and experiences, can contribute to our growth, innovation and client loyalty. We embrace diversity and are committed to providing equal opportunity to all employees and applicants. If you have a disability, and require reasonable accommodations in the application process, call Human Resources at 800-725-3535. We will be happy to assist you. Schwab will only share your accommodation request with those individuals who have a specific need to know. The request for an accommodation will not affect Schwab's hiring decisions. All other submissions should be performed online.

Job Specifications

Relocation Offered?: No

Work Schedule: Days

Languages: English - spoken

Current Licenses / Certifications: None

Relevant Work Experience: IT-Management/Technical Project Mgmt-6+ yrs, IT-Other Specialty Engineering-6+ yrs

Position Located In: US - Telecommute

Education: BA/BS

Job Type: Full Time

Category:Information Technology

Activation Date: Friday, July 6, 2018

Expiration Date: Saturday, September 29, 2018

Apply Here