---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security System Administrator
Location: Mt. Laurel, New Jersey, United States
Type: Permanent F/T
Closing Date: 2007-03-16
Security Systems Administrator
Job Responsibilities
This position is responsible for administering network security systems that
protect critical service delivery network infrastructure including but not
limited to managing performance, operation and performing as primary systems
administrator for assigned production security assets and network security
events. This position will resolve or investigate issues through closure and
will assist the Manager of Security Administration with ensuring the security
tools, for which they are assigned, are effectively operated to fulfill the
goals of the Comcast security policy.
 Develop and maintain security system fault management support
procedures for assigned systems.
 Develop and maintain security incident management procedures for
assigned systems.
 Investigate opportunities to update security system capabilities or
perform policy updates based upon system performance reports and observed
incidents or threats.
 Perform configuration updates, such as modifying configurations,
signature definitions or implementing new policies.
 Perform daily OS and application level administration for assigned
security elements, support regularly schedule maintenance and change requests.
 Provide advanced application level support for the resolution of
security system faults, including system patches and software upgrades.
 Respond to security incidents and report on incident handling and
resolution.
 Be able to leverage other network management tools for the
identification and response to security incidents and faults.
 Ensure timely proactive identification and reporting of security gaps
and vulnerabilities to the network infrastructure.

 Assist with the preparation of quarterly, monthly, and weekly reports,
and trend analysis, based upon network security incidents, faults and
performance data.
 Assist with exception security audits to verify completeness of
security required configurations and verify system hardening.
 Participate in the post-mortem investigation of catastrophic network
security incidents and prepare security incident reports documenting the
findings
 Other duties as assigned
Punctual, regular, and consistent attendance.
JOB REQUIREMENTS
---------------------------------------------------
Minimum Requirements
• Bachelor’s degree in Computer Science, MIS, Network Security
Engineering, or related field.
• Minimum 2 years of experience with Security Systems Engineering /
Security System Administration in an ISP, large-scale network environment, or
Large Enterprise, or equivalent.
• Proven analytical and problem solving ability.
• Excellent oral/written communication and inter-personal skills.
• At least two years of experience administering Unix or Linux based
applications (or) at least one year of experience administering Unix or Linux
systems in secure environments
• At least one year experience with TCP/IP and UDP/IP networking.
• Experience with the following SSL, HTTPS, PGP, DES, SSH, SCP, Kerberos,
IPSEC, PKI.
• Excellent understanding of the Internet protocol suite, e.g. Radius,
BOOTP, ARP, IP, ICMP, BGP, OSPF, TCP, UDP, LDAP, DNS, DHCP, SNMP, SMTP, SIP,
GRE, Netflow/cflowd and POP3
• Experience with firewall IOS/OS installation, configuration and backup
and restoration.
• Policy creation and rule design and updates, firewall administration
experience preferred.
• Must be able to review and document firewall rule designs for
large-scale network pre-deployment approval.
• Experience with Radius system administration, including patch
installation and software upgrades, Installation of vendor approved modules,
familiarization of bulk administration utilities, creating and modifying user
and group access rights, PAM configurations and reporting.
• Testing and certification of Radius configurations for new IP based
services and devices.
• Configuration, implementation, testing and administration of shared
private key, PKI and other access and authentication control technologies a
plus.
• Working knowledge of operating, administering and troubleshooting
Tripwire applications.
• TW duties include device and policy file creation, new device/IOS/OS
certification, implementation of policy and scheduling of checks.
• Should have strong process and procedure ownership experience for audit
and control systems
• Technical working knowledge of network signature-based IDS, network
anomaly detection and behavioral analyzers.
• Should be able to create and implement new system signatures for
signature based tools, should also be able to report and make recommendations
for signature changes based upon network conditions.
• Knowledge of incident response procedures.
• Should be able to conduct exception audits to confirm current security
posture
• Good understanding of DOCSIS or DAVIC network principles, a strong plus.
• Experience with Concord eHealth, Netcool Omnibus, Spectrum Infinity or
other network management software a plus.
Comcast is an Equal Employment Opportunity/Affirmative Action/Drug-free
workplace employer.
CONTACT
---------------------------------------------------
Please email resumes to michael_peters2@cable.comcast.com or apply online at
www.comcast.com/careers and apply to requisition number 42533BR
Comcast
Michael Peters
Recruiter
michael_peters2@cable.comcast.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
