SoluStaff

Information Security Engineer

Job Locations US-PA-Philadelphia
Posted Date 1 year ago(7/2/2019 10:53 AM)
ID
2019-1458
# of Openings
1
Category
Information Technology

Overview

SoluStaff is actively recruiting for an Information Security Engineer for a large government customer in Philadelphia. The Information Security Engineer will manage, troubleshoot and provide technical solutions in efforts to improve our customer’s overall information security posture.  The Information Security Engineer is responsible for the analysis of security measures in place; determines how effective these measures are given the current threat environment; takes steps to remediate vulnerabilities; and recommends and implements changes for risk mitigation.  The ideal candidate will have experience providing services including cyber incident response, vulnerability assessment, management and mitigation, policy and procedures development, conducting risk assessments, cybersecurity test and evaluation, security analysis and program protection planning standards, architecture, engineering and integration support, and system access controls.  The Information Security Engineer must have demonstrated experience with intrusion detection tools and methodologies; experience with Linux, Windows and MacOS; experience with computer incident response; experience performing penetration tests; proficiency using SIEMs for log analysis; proficiency using various products/ tools for security orchestration and automation activities.

Responsibilities

  • Analyze and monitor systems to ensure that all security measures employed are current and adequate to protect information and assets.
  • Utilize a suite of security tools to assess security posture and the ability to meet evolving threats; including the review of vulnerability scans and penetration testing done in conjunction with our external monitoring service.
  • Develop and produce reports, assessments, and recommendations to share with management and technical staff related to the efficacy of security mechanisms, controls, processes, systems, and services.
  • Ensures that all technical and business-related configurations and changes meet, or exceed minimum, industry standards and mandated security standards set forth by state and federal statutes.
  • Lead in the development, implementation and testing of appropriate security plans and control techniques.
  • Act as a liaison with external entities to maintain and enhance information and data security.
  • Review technology acquisitions, including open source products/services for potential security issues and provide recommendations.
  • Respond to any information security incidents; providing an assessment of the incident, while working with executive management to determine at what level and with whom the communication of the event should be; what the immediate actions are that need to be taken; and what steps should be performed to contain, manage, and appropriately document and report the incident.

Qualifications

  • Bachelor’s degree in Computer Science or a related field is required. Any and all degrees must be from a regionally accredited institution of higher education.
  • CISM, CISA, CISSP, Security + certifications preferred.
  • At least six years of work experience in computing and information security required.
  • Previous information security experience in a large enterprise network environment required.
  • Strong experience in Internet and network security products and platforms, including intrusion detection, intrusion prevention, incidence response, vulnerability assessments and penetration testing required.
  • Proven ability to communicate security-related concepts to technical and non-technical staff required.
  • Strong analytical and problem-solving skills required.
  • Effective verbal and written communication skills required.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed