SoluStaff

Returning Candidate?

Information Security Engineer

Information Security Engineer

ID 
2018-1414
# of Openings 
1
Job Locations 
US-PA-Philadelphia
Posted Date 
6/27/2018
Category 
Information Technology

More information about this job

Overview

SoluStaff is actively recruiting for an Information Security Engineer for a client in Philadelphia. The Information Security Engineer position functions as the subject matter expert in providing expertise in all areas of information security related to the clients’ systems. The Information Security Engineer is responsible for the analysis of security measures in place; determines how effective these measures are given the current threat environment; takes steps to remediate vulnerabilities; and recommends and implements changes to improve the clients’ long-term security posture. This position provides technical guidance to other network staff, and coordinates with staff and management, including the Chief Information Officer, on all matters related to information security; while assisting in training efforts to ensure staff are aware of proper security procedures.

Responsibilities

  • Analyze and monitor systems to ensure that all security measures employed are current and adequate to protect the client’s information and assets.
  • Prepare and submit reports as required by ITS Policy.
  • Utilize a suite of security tools to assess the clients’ security posture and the ability to meet evolving threats; including the review of vulnerability scans and penetration testing done in conjunction with our external monitoring service.
  • Develop and produce reports, assessments, and recommendations to share with management and technical staff related to the efficacy of security mechanisms, controls, processes, systems, and services.
  • Ensures that all technical and business-related configurations and changes meet, or exceed minimum, industry standards and mandated security standards set forth by state and federal statutes.
  • Lead in the development, implementation and testing of appropriate security plans and control techniques.
  • Act as the liaison with external entities to maintain and enhance information and data security.
  • Review technology acquisitions, including open source products/services for potential security issues and provide recommendations.
  • Respond to any information security incidents; providing an assessment of the incident, while working with executive management to determine at what level and with whom the communication of the event should be; what the immediate actions are that need to be taken; and what steps should be performed to contain, manage, and appropriately document and report the incident.
  • Assist in conducting training for technical staff and client staff related to information security best practices.
  • Maintain sensitivity, understanding and respect for a diverse academic environment, inclusive of students, faculty and staff of varying social, economic, cultural, ideological and ethnic backgrounds.
  • Perform other duties as assigned.

Qualifications

  • Bachelor’s degree in Computer Science or a related field is required. Any and all degrees must be from a regionally accredited institution of higher education.
  • CISM, SSCP, CISA, CCNA, PMP, Security +, and ITIL certifications preferred.
  • At least six years of work experience in computing and information security required.
  • Previous information security experience in a large enterprise network environment required.
  • Strong experience in Internet and network security products and platforms, including intrusion detection, intrusion prevention, incidence response, vulnerability assessments and penetration testing required.
  • Proven ability to communicate security-related concepts to technical and non-technical staff required.
  • Demonstrated working knowledge of applicable laws and law enforcement community activities and initiatives required.
  • Strong analytical and problem-solving skills required.
  • Effective verbal and written communication skills required.