---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Evangelist
Location: San Francisco Bay Area, Kansas, United States
Type: Permanent F/T
Closing Date: 2005-10-21
A global leader in helping clients manage risk and uncertainty, from the
boardroom to the network is seeking a Senior Manager, Network Security. They
provide a broad array of services that allow clients around the world to better
measure, manage and control risk to enhance the reliability of systems and
processes throughout the enterprise. With core competencies encompassing
capital markets, control assurance, internal audit, regulatory consulting, and
security services, their professionals offer a wealth of experience across a
wide spectrum of industries.
Digital information security is a management issue with global business
implications. To succeed in today's network economy requires more than simply a
focus on IT issues — it also requires a focus on security strategy and
management. The associated risks of business today need to be clearly
understood and managed in order to make the most of a company's opportunities.
This requires a global perspective, industry and business insight and a deep
technical knowledge of security products and solutions.
Their practitioners have hands-on experience not only in assessing complex
networks and systems, but also in the design and configuration of complex
security controls. They have developed, tested, and refined their methodologies
to efficiently provide high-quality and cost-effective services that help
clients develop an enterprise approach to information security.
Through these services they help companies determine how best to address and
manage risks while taking advantage of the global business economy. The
enterprise-wide approach focuses on security through five areas:
· Application Integrity
· Data Privacy
· Identity Management
· Infrastructure Security
· Security Strategy and Management
· Identity management services provide clients with solutions to
improve security and reduce cost through an integrated identity management
approach, including secure access authentication, directory services and single
sign-on and resource provisioning software. This area includes a solution they
offer with IBM Tivoli Identity Manager software that helps large and mid-sized
businesses automate the task of managing user identities and enforcing security
policies.
· Application integrity provides end-to-end integrity of business
transactions and enables the effective use of new technologies. It includes
security and controls in ERP and e-Business application implementations,
including SAP, Oracle, PeopleSoft, Siebel and Ariba.
· Infrastructure security addresses confidentiality, availability, and
reliability of the infrastructure and provides the foundation for many
risk-mitigating activities. They help their clients with risk assessments,
development and enforcement of security policies, performance of attack and
penetration testing, and design and implementation of infrastructure security
solutions.
JOB REQUIREMENTS
---------------------------------------------------
They are currently looking for security professionals with Identity Management,
SAP, PeopleSoft, or Infrastructure security experience.
* 10-15 plus years system security and controls experience
* Ability to develop security baseline strategies and security
methodologies.
* Demonstrated project management and leadership skills.
* Successful business development and client relationship management
skills.
* Prior Big 5 or professional services consulting experience a huge plus
* Prior management experience.
* Excellent verbal and written communication
* Strong technical, analytical, interpersonal, and communication.
* CISSP, CISA, and/or CCNA certification.
Job Duties:
* Provide managerial and technical guidance and manage all aspects
security projects in complex networked environments.
* Develop security policies and procedures.
* Perform risk and security assessments, as well as tool evaluation.
* Design and implement information protection architecture and security
or cryptographic solutions.
* Play lead role in client retention, relationship building, and
communication.
* Play lead role in internal and external communication/deliverable
quality including technical content of reports, proposals, etc.
* Mold the individuals on the engagement into a team.
* Play lead role in management planning, economics, and billing.
* Identify opportunities to cross-sell other services.
* Meet assigned sales target/team sales targets.
* Membership and visibility in professional & civic organizations
* Develop proposals
* Publication in designated areas
* Public speaking.
* Evaluate, counsel, mentor and provide feedback on performance of others
* Play substantive/lead role in retention of professionals and in
building staff complement, mix, and recruiting.
Required Skills:
* Security Audit experience
* Deep Penetration Testing experience-Network-level, Host-level,
Application-level
* Have led teams of "white-hat" hackers in Red Team types of engagements
* Vulnerability Assessments-Network-level, Host-level, Application-level
* Enterprise IDS Design, Implementation, Deployment and Testing
experience
* Operating System and Application Hardening
* Incident Response Training
* Information Security Education
* Experience with secure coding
* Operational experience running security lab environments
* Experience applying control frameworks such as ISO17799 and COBIT in
complex business and technology environments
* System security and controls including:
* Attack and penetration security
* Firewall
* Identity management
* Encryption technology
* Assessment of network vulnerability
* Network configuration and administration
* Virus software
* Security auditing techniques
* Computer control environments
* UNIX Security
* NT/Windows 2000
* Contribute to a strong client relationship through interactions with
client personnel.
* Prepare detailed written reports at the engineering level, manager
level, and executive levels
* Prepare executive level briefings to CIO, CTO, CSO level
* Contribute to engagement planning and ensuring that
products/deliverables meet contract/work plan specifications.
* Contribute to a positive team attitude
* MUST have Bachelors degree
* US Citizen or permanent resident ONLY
CONTACT
---------------------------------------------------
If you meet the above criteria and would like to learn more about this exciting
opportunity please send me a confidential copy of your resume. To learn about
additional opportunities please visit our constantly updated web site:
www.tscouts.com
I look forward to being able to assist you in any manner possible.
Sincerely,
Brian Hunter
Executive Recruiter
Talent Scouts, Inc.
www.tscouts.com
brianh@tscouts.com
Brian Hunter
brianh@tscouts.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
