Previous Job
Previous
Security Engineer
Ref No.: 18-00396
Location: Miami, Florida
Position Type:Contract
Start Date: 08/20/2018
Role: Security Engineer
Location: Miami, FL
Interview Mode: Skype
Duration: 12 Months
Mandatory Skills: SIEM Tools, Linux, PCI
Experience:

Description:

Experience
Key personal characteristics and competencies of the ideal candidate
  • At least 9-10 years of progressive IT experience in a highly competitive, large corporate organization with solid knowledge of Information Security, Systems Operations and Data Center support
  • At Least 5 years of experience in Information Security Management/Engineering in a Medium/Large Global Organization.
  • At Least 2 years of experience in Technical Leadership of medium to large IT projects
  • At Least 2 years of experience with information security frameworks and industry regulations (NIST, ISO, CSC-20, PCI, SOX)
Preferred Education & Training
  • Required Bachelor ´s Degree in Information Systems, Computer Science or related subjects.
  • Information Security certifications (CISSP, CISM and GIAC Certifications.
The Sr. IT Security Engineer is responsible research, analysis, design, testing, implementation, administration, and lifecycle management of enterprise security engineering solutions to meet business requirements. Assist in developing and implementing security policies, practices, technologies and tools to protect Client's critical global information resources. This role is a hands on technical security engineering position with collateral security program administration duties.
The candidate will be professional and approachable, provide support and guidance to the Global Incident Response team to ensure that all of Client's security products are brought together for an effective and advanced incident response program. Provides 3rd level escalation support to CSOC Analyst and Junior Analyst. Monitor for and respond to critical application and system vulnerabilities. Participate in system investigation efforts within established protocols and legalities.
Key responsibilities
  • Responsible for network penetration testing and ethical hacking within our global infrastructure by proactively executing manual and automated tests to identify threats. Assisting infrastructure owners in understanding how exploits were found, the level of risk for exploits (using a risk methodology), and validation testing to ensure exploits have been remediated.
  • Analyze, design, develop, test, install, document, implement and support of the IT Security strategic objectives
  • Serve as thought leader in security space, be advocate for security requirements in all phases of SDLCs.
  • Providing advanced operations and engineering support for critical security systems and services including Windows and Linux servers, endpoint security, computer forensics, vulnerability/penetration assessment/mitigation, and security event management (SIEM)
  • Participate in the evaluation, development, implementation, and communication of security standards, procedures, and guidelines for multiple platforms and diverse systems environments
  • Establish and lead technical coordination for Incident Response teams for any outages, penetrations / intrusions, virus outbreak, etc. Conduct root cause analysis and post review events
  • Act as a technical Subject Matter Expert (SME) on information security system development and best practices
  • Represent Information Security on organizational project teams and ensure adherence to existing security policies and standards
Skills
  • Ability to think with a security mindset. The successful candidate has a strong IT background with in depth knowledge of several key security practice areas: application security; network security, infrastructure security.
  • Solid working knowledge and experience utilizing Linux and Python for Security related items
  • Solid working knowledge with security tools such as NAC, Antivirus, File Integrity Management, Intrusion Presentation, Network & Application Firewalls, Web Proxy, Logging & Monitoring and DLP
  • Experience of Unix/Linux and Windows operating systems, databases and its security capabilities.
  • Diverse security engineering background with experience administering other types of security solutions
  • Several years of experience with Information/Network security/Security Operations
  • Ability to assist in the creation strategic plans for the Information Security department and technologies that may be required to fulfill our mission
  • Experience with security event response from key security products and services (network traffic analysis, PC forensics, kill chain, windows event analysis, etc.)
  • Ability to engage and influence team members as well as people external to the team
  • Service orientation: A passion for maintaining the highest standards of quality and a service oriented attitude