---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security Engineer
Location: New York City, , United States
Type: Permanent F/T
Closing Date: 2005-08-20
The Senior Information Security Engineer monitors HIDS and NIDS for anomalous
traffic and events, correlates event data with vulnerability assessment data,
and escalates incidents as needed for quick response. New tools, signatures,
and malicious code are evaluated in a test environment for analysis regarding
the impact to the production environment. The Sr. Engineer will help design,
develop and administer security systems and processes to protect the bank's
information resources.
· Contributes to the design, implementation, and support of
Security Information Mgmt implementation for IDS and scanning solutions.
· Manages the project plan and activities for successful delivery
and enhancement of SIM.
· Monitors Host and Network based Intrusion Detection Systems,
and other real-time security solutions.
· Runs Vulnerability Scans, Generates reports for management and
technicians, and analyzes results for both short term responses and long term
trending
· Performs detailed technical analysis of firewall, system, and
application logs
· Performs forensics and detailed technical investigations
· Performs quick response activities for security incidents
· Monitors Internet based information sources to keep current on
recent information security events, research and developments within the
community
· Participates in the bank's projects, contributing to the
design/architecture
· Functions to triage events to determine which events require
escalation
· Maintains various network maps, asset information, and
vulnerability data sources for event correlation
· Maintains shift log to document all internal investigations as
legal documentation
· Participates as a professional member of a 24X7 monitoring team
· Maintains hardware and software tools used to support
Information Security functions
· Assist in global Information Security implementations
JOB REQUIREMENTS
---------------------------------------------------
Requirements:
The responsibilities specific to this position, as part of the Information
Security Services & Controls Team, will include, but are not limited to:
· 4 year college degree or equivalent experience
· Experience conducting penetration studies and vulnerability
assessments of hardware, software and information systems
· 7 or more years experience in Information Security (and/or
equivalent experience and understanding of general and technical controls)
· Knowledge of UNIX, Linux, Windows OS family, TCP/IP and
networking technologies required
· CISSP certification a plus
· Hands-on experience with 24hour/7day network monitoring and
remediation
· Hands-on experience with IDS
· Experience with the ISS product suite or other SIM products
· Knowledge of state-of-the-art security software packages and
techniques
· Hands-on working knowledge of network/internet security
· Proven experience and ability to identify vulnerabilities,
recommend and implement security solutions
· SQL programming and database administration
· PostgreSQL, Access, or MS SQL server experience desirable
· Packet level analysis experience a plus
· Perl programming a plus
· Honeypot implementation experience a plus
CONTACT
---------------------------------------------------
Vishal Mehta
Senior Technical Recruiter
Andiamo Partners
44 Wall Street - 12th Floor
New York, NY 10005
Phone: 212-461-2195
Cell: 201-207-2474
vishal.mehta@andiamopartners.com
www.andiamopartners.com
Andiamo Partners
Vishal Mehta
Senior Recruiter
vishal.mehta@andiamopartners.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
