---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security Engineer
Location: McLean, Virginia, United States
Type: Permanent F/T
Closing Date: 2005-09-14
Network Security Engineer II – McLean, VA
Remember the late 90’s, the “.com days”, when there were
100’s of companies with new technologies that were changing the way we did
business on the Net. Unfortunately such career opportunities just don’t
exist any more….NOT!!!
RSA Security (NASDAQ:RSAS) is soon to launch a major new Internet initiative
that will change the Security landscape of the Internet! RSA Security's strong
reputation is built on our history of ingenuity, leadership, proven
technologies and our more than 17,000 customers around the globe. RSA Security
is a public company with 2004 revenues of $307.5 million.
The following engineering position is hands-on and requires previous experience
with an Internet based high availability 24x7 environment:
JOB SUMMARY:
A successful candidate will play a key role in the operational support and
security of RSA’s Internet Service production environment. Major
responsibilities include: Design, engineer, implement, maintain, and monitor
our system security environment. On a regular basis, gather and refine
requirements with internal and external customers. Evaluate, test, and choose
security products and services to implement. Plan the implementation of
best-practice procedures regarding the IT security program. Maintain detailed
expert-level knowledge on IT security as it pertains to our environment.
JOB REQUIREMENTS
---------------------------------------------------
PRINCIPAL DUTIES AND RESPONSIBILITIES:
1. Installs, configures, maintains security equipment / infrastructure to
include: Firewall, IDS/IPS, Vulnerability scanners, and other security software
& appliances
2. Adhere to change management procedures and ensure all configurations are
properly documented.
3. Primary contributor for the divisions input to the corporate Security Policy.
4. Assesses division’s IT & physical security procedures and best
practices to ensure compliance with Security Policy
5. Ensures / conducts regular security audits and assessments per Security
Policy
6. Leads/participates in team security discussions to formulate new or enhance
existing processes, policies, and standards.
7. Helps define security baseline of hardware, software and information systems.
8. Adhere to change management procedures and ensure all configurations are
properly documented & archived..
9. Regularly reviews logs / reports for evidence of security events.
10. Performs product evaluations of security technologies (e.g., Firewalls,
Automated Vulnerability Scanners, etc)
11. Evaluates, procures, and maintains hardware and software tools used to
support Information Security function.
12. Monitors IT security intelligence and keeps abreast of pertinent events,
research, and developments.
13. Leads incident response team during security events.
14. Develops methodology and metrics, and track security effectiveness
15. Participates in the development and maintenance of security awareness
program
16. Assists with Data Center Operations
17. Ability to train and mentor more junior technical staff.
18. Member of on-call rotation providing 24x7 support for system environment.
POSITION QUALIFICATIONS:
1. B.S. Computer Science, Information Systems or equivalent experience.
2. 3-5 years hands-on Network & Systems Experience that includes Unix systems.
3. Experience in a production Web based 24x7 operation.
4. In-depth knowledge with multiple security hardware/software/technologies;
(e.g., Firewalls/VPN, IDS/IDP, Vulnerability Scanners, Application Layer
Firewalls, encryption, PKI, authentication systems, access-lists, etc)
5. Knowledge of network management and system monitoring applications
6. Experience providing key input to a Operations Security Policy.
7. Ability to take a Security Policy and turn it into an actionable
architecture & configuration.
8. Familiarity with SAS-70 process desired but not required.
9. Appropriate Industry Security Certification desired (etc, CISSP, CCSP, CISM,
GIAC, etc)
10. Strong written, communications, and problem solving skills.
11. Good organizational skills, the ability to multi-task and to work
independently
Position REQUIRES location at RSA’s Northern Virginia center of operations.
CONTACT
---------------------------------------------------
If your looking to be a part of a team building a major new Internet Service
please contact Jeff Oliveto via e-mail at joliveto (at) rsasecurity (dot) com.
RSA Security, Inc.
Jeff Oliveto
joliveto@rsasecurity.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
