---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Sr. Security Engineer
Location: New York, New York, United States
Type: Permanent F/T
Closing Date: 2006-07-30
Position Summary:
The Security Engineer,(CISSP Certification) is responsible for the protection
of the firm’s physical and non-physical Information Technology assets
using various tools. This includes, but is not limited to network equipment,
firewalls, IDS etc. Main duties include designing, implementing and maintaining
network and computer security policies; ensuring that all systems are
safeguarded against all forms of malicious intrusions; assisting other groups
within the firm in developing secure systems.
Principal Responsibilities:
Evaluate network architecture and hardware/software configurations for security
vulnerabilities.
Participate in the review and analysis of internal projects and external
connectivity issues that may have an impact on security
Ensure effectiveness of security controls i.e. firewall, IDS, ACL, anti-virus
etc.
Perform vulnerabilities assessments to identify both architectural and
platform-specific vulnerabilities
Coordinate with all concerned parties to ensure the implementation of all
security patches and updates, as well as anti-virus software.
Coordinate and support information security efforts, to include, but not
limited to: (a) work with application developers and database administrators to
plan and implement application security on intranet and extranet (in the DMZ)
servers; (b) provide guidance on risks and vulnerabilities related to common
application protocols and web services security; and (c) participate in
planning, design, and implementation of VoIP management and protection schemes.
Conduct periodic network/application penetration tests, using either in-house
or outside resources.
Review security audits and bring awareness to security problems and issues;
improve security settings of network devices, create baseline configuration
standards for various platforms.
Keep abreast of emerging security technologies and make appropriate
recommendations regarding their implementation.
Provide support to analyze Firewall logs, network/host based syslog logs etc.
Participate in design reviews, document project plans for networks.
Participate in organization’s Threat & Vulnerability Assessment process.
JOB REQUIREMENTS
---------------------------------------------------
Experience:
Seven or more years of experience in technical information systems positions,
with at least 5 years experience in a pure information security position
(firewall engineer, IDS engineer, penetration tester, etc.)
CISSP Certification
Experience with information security policies, incident response procedures,
risk analysis, and significant experience administering the operations of a
complex security infrastructure.
Knowledge/Skills:
In-depth understanding of IP networking, networking protocols and
security-related technologies. These include encryption, IPsec, PKI, RADIUS,
VPN's, firewalls, proxy services, DNS, PGP, SSL, code signing, digital
signature and digital rights management.
Extensive knowledge with Cisco equipment (CCNA certification is a plus)
Excellent analytical, troubleshooting & interpersonal skills
Strong verbal and written communication skills
Knowledge of Storage Area Network (SAN) is a plus.
Education:
Degree (or higher) in a technical discipline or related experience preferred
CONTACT
---------------------------------------------------
If qualified, please submit a Word Version Resume to: john@altaassociates.com
Alta Associates, Inc
John Ahn
Senior Recruiter
john@altaassociates.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
