The Senior Technical Security Engineer position is within client's IT Security group whose mission is to deliver information security solutions and services to protect client information assets, computing infrastructure, applications and data. The Sr. Engineer will work within the compliance and vulnerability management team helping to identify and mitigate risks against client.
What You Will Be Doing
The Sr. Engineer will perform technical security engineering activities including the following:
Perform vulnerability scans, analysis, validation and remediation activities
Perform network and application penetration testing
Classify and prioritize the risk of new vulnerabilities according to the specifics of client environment's risk level, mitigating factors, and assessment of the impacts of internal and external threats
Engineer application, system and network security solutions to meet security requirements for varied operating environments
Research and assess new threats, vulnerability security trends and security alerts, recommend remedial action
Work with customers to oversee remediation of identified security issues
Perform technical and non-technical compliance activities
Provide security subject matter expertise to client product teams including developers and system administrators
Perform security validation for configuration settings on different systems
What You Will Need for this Position?
Bachelor’s degree with a minimum of 5 years of information security work experience
A strong interest in the field of information security
Strong Understanding of common network vulnerabilities, OS vulnerabilities (Linux, Window and OSX), patching and attack patterns
Good written and verbal communication skills.
Solid organizational skills and strong customer service skills
Fluent in a variety of web application protocols, operating systems and networking technologies.
Experience in system administration, software engineering, or related technologies.
Experience with parsing / analysis of large data sets (e.g. vulnerability scan results).
Strong analytical skills
Certified Information Systems Security Professional (CISSP)
Expertise with OWASP/NIST security concepts and common application security risks, such as
XSS, XSRF, SQL Injection, Cookie Manipulation among others.
Familiarity with Enterprise Vulnerability Management tools such as Rapid 7 Nexpose, Nessu and Qualys.
Familiarity with Amazon Web Services security
Apple MAC Infrastructure Engineer
Fort Worth, TX - desktop, apple, directory, hardware, administrator,...
Lead Security Engineer - Temp to Perm
Herndon, VA - security, engineer, it security, network security,...
Senior Analyst (ITSM/ITIL)
Dallas, TX - itsm, itil, change management, analyst, servicenow,...
Data Center/Migration Architect
Dearborn, MI - migration, mainframe, architect, data, vmware,...
Security Admin/Analyst (mobile)
Irving, TX - cio, admin, information security, anti, security,...
Information Security Awareness Coordinator
Tempe, AZ - security, coordinator, mis, information security,...
Cyber Security Engineer (NIST 800 series, NEI 08-09, NEI 13-10)
Carrollton, TX - nuclear, cyber, engineering manager, security,...