Monday, July 8, 2013

[KITlist-Tech] Sr. Security Engineer (Santa Clara, CA)

 

Please direct your responses to: kimchi.nguyen@experis.com

Experis IT Professional is looking for a Sr. Network Security Engineer with the below background.

Title: Senior Security Engineer
Location: Santa Clara, CA
Duration: Contract

Research, design, implement, and troubleshoot information systems and technology solutions in support of business needs. Document help desk troubleshooting procedures, operations manuals, and user guidance.

Responsibilities:
- Respond to incoming security-related issues
- Daily review of security logs from McAfee ePolicy, Splunk, and OSSEC
- Generate Qualys and MVMD reports as necessary
- Validate vulnerabilities based on reports through Qualys and RedSeal
- Proactively look for ways to improve network and infrastructure security practices
- Take a leadership role in driving internal security and privacy initiatives to secure a SaAS environment
- Functions as technical lead during a security incident response
- Assist in developing technology to automate security monitoring
- Provide technical security recommendations and identifies requirements based upon need or as the result of a security issue that puts organizations systems at risk.
- Proactive research to identify and understand new threats, vulnerabilities, and exploits
- Assist with evaluation of proposals and the implementation of best security practices
- Provide risk analysis for vulnerabilities, incidents and change requests
- Monitoring IDS, Firewall, and log correlation tools for potential threats
- Assist in configuration and hardening standards for systems and applications
- Assist in vulnerability assessments & penetration testing of all aspects of our infrastructure
- Assist in defining, implementing and enforcing system and network security policies
- Create, maintain, and document security baselines
- Management/review of *nix & windows host security configuration and architecture
- Assists in developing a model for our vulnerability program and event logging, monitoring program

Required Skills/Qualifications:
- Degree + 7 years of experience are required.
- 3+ years of experience in network, server or application security positions and solid working hands-on of Unix/Linux operating systems
- Strong security background with industry certifications, including Certified Ethical Hacker, Global Information Assurance Certification (GIAC) and CISSP, among others.
- Knowledge of regulatory and compliance such as PCI, ISO, & SSAE16
- Experience with developing and implementing IT security plans and Internet security
- Exposure to open source infrastructure management, and automation, and security tools. (Nessus, Nmap, tcpdump/wireshark, snort, burp, etc)
- Experience with Splunk, OSSEC, McAfee ePolicy Auditor, RedSeal, and MVMD
- Experience and expertise with ethical hacking, firewall and intrusion detection/prevention technologies, secure coding practices and threat modeling
- Ability to perform threat, vulnerability and risk assessments against environment
- Ability to perform security tool administration providing risk analysis of Vulnerability scanners (Qualys), and incidents
- Security event logging & monitoring analyzing Intrusion Detection/Prevention System (IDS/IPS) and firewall logs, sys logs, event logs, etc
- Positive attitude and ability to think and work independently

Please email resume to the below contact for immediate consideration.

Thank you,

Kim Nguyen
Technical Recruiter at Experis
408-369-4109
kimchi.nguyen@experis.com

__._,_.___
Reply via web post Reply to sender Reply to group Start a New Topic Messages in this topic (1)
Recent Activity:
********************************************************************

Read the new KIT List blog at www.kitlist.wordpress.com for job tips and to connect to our community!

Please go to www.KITlist.org to join, post jobs, or get answers to common questions.  If you have any comments or questions, you can reach us directly at KITtechmoderator@KITlist.org.

By using the KIT List you agree to comply with the Terms of Use on the site, and will not use discriminatory employment practices.  The KIT List is a service of Connelly Communications, Inc.
   
TO UNSUBSCRIBE:    
Replying to KIT emails with an "unsubscribe" request does not work.
Instead, just send an email (from the same account you used to subscribe) to KITlist-Tech-unsubscribe@yahoogroups.com. If you are still receiving emails after a few days, please email us at KITtechmoderator@KITlist.org and we will manually remove you. Thanks!
        
.

__,_._,___

No comments:

Post a Comment