---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Sr. Security Engineer
Location: Tempe, Arizona, United States
Type: Permanent F/T
Closing Date: 2006-04-14
Security Operations Center (SOC) is a secure, highly available environment
staffed by IT Security Analysts. The analysts monitor the health, status, and
availability of security devices. In addition, they run vulnerability scans,
manage and monitor Network Intrusion Detection (NID), respond to anomalistic
events and manage crisis/incident response. The analysts are the cornerstone of
the company’s incident response and proactive threat detection
capabilities.
• Candidates must have strong understanding of incident response
methodologies and technologies.
• Senior SOC Analysts will be involved in process improvements and
identifying opportunities for new processes and procedures, as well as,
managing small projects to identify new solutions to improve SOC’s
detections and response capabilities.
• Perform detailed computer forensic analysis in support of IT Security
incidents
Technical Skill Required:
Individual must have hands-on proficiency in at least four of the following
areas:
- Experience in the administration of Windows NT systems and/or UNIX systems
- Proficiency with SNORT/SourceFire NID implementations
- Experience in reviewing and analyzing tcpdump files.
- Strong scripting skills a plus (e.g., PERL, shell scripting)
- Experience performing security reviews/vulnerability risk assessments of
network environments using both manual procedures and automated analysis tools.
- Possesses a solid understanding of the TCP/IP protocol suite, security
architecture, and remote access security techniques/products.
- Experience with enterprise anti-virus solutions, virus outbreak management,
and the ability to differentiate virus activity from directed attack patterns.
- Experience in building sandbox/test lab environments to evaluate malicious
code.
- Ability to perform high level Malware analysis
JOB REQUIREMENTS
---------------------------------------------------
• Minimum 5 years experience in Information Technology
• Minimum 3 years experience in NID monitoring and response
• Strong network architecture background required
• Strong verbal/written communication and interpersonal skills are
required to document and communicate findings, escalate critical incidents, and
interact with customers
• Strong research background and an analytical approach, especially with
respect to event classification, event correlation, and root cause analysis
• Willingness to serve as a member of a Incident Response Team (IRT) and
respond to emergency calls during non-business hours, as needed
• Ensure the confidentiality, availability, and integrity of SOC data
sources
• Experience driving vendors and co-sourcing partners to successfully
resolve problems
• Candidate must be able to react quickly, decisively, and deliberately
in high stress situations
• Strong verbal/written communication and interpersonal skills are
required to document and communicate findings, escalate critical incidents, and
interact with customers
• Highly motivated individual with the ability to self-start, prioritize,
and multi-task
• Participate in on-call rotation
Education Required:
BS in Computer Science or equivalent experience
.
Reporting Relationship:
Reports to the Manager, Security Operations Center — Global Technology
Services
• Minimum 5 years experience in Information Technology
• Minimum 3 years experience in NID monitoring and response
• Strong network architecture background required
• Strong verbal/written communication and interpersonal skills are
required to document and communicate findings, escalate critical incidents, and
interact with customers
• Strong research background and an analytical approach, especially with
respect to event classification, event correlation, and root cause analysis
• Willingness to serve as a member of a Incident Response Team (IRT) and
respond to emergency calls during non-business hours, as needed
• Ensure the confidentiality, availability, and integrity of SOC data
sources
• Experience driving vendors and co-sourcing partners to successfully
resolve problems
• Candidate must be able to react quickly, decisively, and deliberately
in high stress situations
• Strong verbal/written communication and interpersonal skills are
required to document and communicate findings, escalate critical incidents, and
interact with customers
• Highly motivated individual with the ability to self-start, prioritize,
and multi-task
• Participate in on-call rotation
Education Required:
BS in Computer Science or equivalent experience
.
Reporting Relationship:
Reports to the Manager, Security Operations Center — Global Technology
Services
CONTACT
---------------------------------------------------
If interested and qualified, please send your Word Version resume to:
erin@altaassociates.com
Job Order #1020-EF
Alta Associates, Inc
Erin Fallon
Executive Recruiter
erin@altaassociates
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
