Security Production Engineer

Your Opportunity

Your opportunity

At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.

We believe in the importance of in-office collaboration and fully intend for the selected candidate for this role to work on site in the specified location(s).

Security Production Engineering (SPE) plays a critical role in enhancing the efficiency, effectiveness, scalability, and resilience of our cybersecurity applications and supporting infrastructure. SPE integrates deep cybersecurity knowledge with IT expertise to deliver unique business value and ensure robust digital defenses.

As a member of the SPE team, you will contribute to the implementation, design, and support of cybersecurity applications and infrastructure, focusing on resiliency and operational excellence.

Core Responsibilities

• Serve as an informal leader, making an impact beyond your immediate environment.
• Demonstrate high standards of technical and interpersonal judgment to influence peers and support organizational security objectives.
• Design and maintain infrastructure for cybersecurity applications and platforms, addressing technical issues and managing IT security risks.
• Identify solutions to ambiguous problems requiring prioritization across business and team objectives.
• Detect and respond urgently to technical security issues, perform root cause analysis, and implement preventive improvements.
• Enhance documentation, processes, and execution of key deliverables within assigned technologies.
• Develop into a subject matter expert by creating technical operating procedures and gaining comprehensive product suite knowledge.
• Deliver on technical program initiatives within time and resource constraints.

What you have

Required Qualifications

• Demonstrated experience in application support and development engineering, including infrastructure design, deployment, lifecycle maintenance, monitoring, automation, and production support of security or business applications.
• Familiarity with Linux system administration, including server hardening, user rights management, system log interpretation, and task automation.
• Familiarity with Windows system administration, including system logs, registry, LDAP, Active Directory integration, and task automation.
• Experience with automation tools such as Python, Ansible, Salt, or similar CI/CD technologies.
• Strong troubleshooting skills with IP and TCP network protocols.
• Experience planning, installing, configuring, deploying, and supporting applications in multi-datacenter enterprise environments.
• Knowledge of load balancing and high availability/disaster recovery (HADR) solutions.
• Understanding of ITIL Change Management practices.
• Effective written and oral communication skills across all organizational levels.
• Familiarity with Active Directory structures and authentication.
• Experience creating documentation using Atlassian tools such as Confluence and Jira or equivalents.
• Experience supporting third-party cybersecurity applications (e.g., phishing response, orchestration, automation, security data sources).
• Experience supporting third-party data protection applications (e.g., Database Activity Monitoring, Encryption/Tokenization).
• Experience deploying and supporting applications using Docker containers and images.
• Experience integrating on-premises applications with cloud-based solutions.

Education & Certifications

• Bachelor’s degree in Computer Science, Information Technology, or equivalent.
• Relevant IT or Security certifications such as Security+, CISSP, Network+, SANS, MCSE, RHCE, Linux+, Server+, or equivalent.
• Knowledge of compliance and legal requirements including PCI, SOX, GLBA, GDPR.
• Understanding of cybersecurity frameworks such as NIST CSF, CIS Critical Security Controls, and NIST 800-53.

In addition to the salary range, this role is also eligible for bonus or incentive opportunities.

What you are good at

What you have

Required Qualifications

• Demonstrated experience in application support and development engineering, including infrastructure design, deployment, lifecycle maintenance, monitoring, automation, and production support of security or business applications.
• Familiarity with Linux system administration, including server hardening, user rights management, system log interpretation, and task automation.
• Familiarity with Windows system administration, including system logs, registry, LDAP, Active Directory integration, and task automation.
• Experience with automation tools such as Python, Ansible, Salt, or similar CI/CD technologies.
• Strong troubleshooting skills with IP and TCP network protocols.
• Experience planning, installing, configuring, deploying, and supporting applications in multi-datacenter enterprise environments.
• Knowledge of load balancing and high availability/disaster recovery (HADR) solutions.
• Understanding of ITIL Change Management practices.
• Effective written and oral communication skills across all organizational levels.
• Familiarity with Active Directory structures and authentication.
• Experience creating documentation using Atlassian tools such as Confluence and Jira or equivalents.
• Experience supporting third-party cybersecurity applications (e.g., phishing response, orchestration, automation, security data sources).
• Experience supporting third-party data protection applications (e.g., Database Activity Monitoring, Encryption/Tokenization).
• Experience deploying and supporting applications using Docker containers and images.
• Experience integrating on-premises applications with cloud-based solutions.

Education & Certifications

• Bachelor’s degree in Computer Science, Information Technology, or equivalent.
• Relevant IT or Security certifications such as Security+, CISSP, Network+, SANS, MCSE, RHCE, Linux+, Server+, or equivalent.
• Knowledge of compliance and legal requirements including PCI, SOX, GLBA, GDPR.
• Understanding of cybersecurity frameworks such as NIST CSF, CIS Critical Security Controls, and NIST 800-53.

In addition to the salary range, this role is also eligible for bonus or incentive opportunities.