Job Details

Email to Friend Save Back

Senior Security Engineer

PURCHASE-10577, NY, US
11/02/2016

-

Required Skills

CISSP

Company

Infinity Consulting Solutions, Inc

Experience

5 to 7 Year(s)

Job Description

Seeking a talented Senior Security Engineer to improve security controls and conduct vulnerability assessments against web applications and infrastructure.

Duties and Responsibilities of Senior Security Engineer:

The position will encompass maintaining integrated programs to protect the integrity, confidentiality, and availability of the organization's technology infrastructures and information resources. Support detailed risk analysis assessment of applications, networks and systems.

Oversee overall system design for IT Security technologies. Design and oversee implementation of hardening strategies for IT Security systems, backup and recovery, high availability, scalability and performance

Research and evaluate new technologies and solutions and present recommendations. Work with solution vendors to coordinate proof of concept testing of proposed solutions.

Participate in development of requirements and RFPs.

Oversee engineering aspects of network security monitoring environment (IDS, malware sandboxing, packet capture) including scalability, performance, and tuning. Design, present, and implement strategies to maintain ongoing effectiveness of these systems.

Oversee security engineering aspects/design issues for content filtering/interception (Bluecoat, WAF) including SSL interception, authentication, and ICAP.

Design strategies for security monitoring of new systems as they are introduced

Work with architecture group to design security schemes for infrastructure projects

Review technical designs and proposals for adherence to information security principles and standards

Provide guidance and education to other groups within the Information Technology function, including Infrastructure Architecture, Application Architecture, Network Operations, System Operations, and Application Development groups.

Preferred Qualifications of Senior Security Engineer:

The qualified candidate must have at least 7 years experience working with Network
Infrastructure and at least 5 years experience in IT Security

Strong understanding of the TCP/IP protocol suite, OSI model, IP, UDP, and network services such as DHCP and DNS

Strong understanding of standard authentication protocols

Strong experience with layer 2 and 3 networking technology and protocols, routing and switching, SPAN/Tap technology

Implementation experience with Cisco ASA firewalls, routers, VPN and other devices including switches, wireless access points, DMZ, IP addressing, and VPN solutions is desired

Strong understanding of SSL/TLS is required

Experience with Intrusion Detection/Prevention technology and writing signatures

Experience with implementing multifactor authentication technology

Experience with TACACS/RADIUS is strongly desired

Understanding of Syslog/SNMP is strongly desired

Experience with Active Directory security is required.

Experience with digital certificate technology including CA management, SSL encryption and key protection.

Experience with implementing and maintaining PKI strongly desired

Experience with OAUTH desired

Experience with secure configuration of IIS, Microsoft SQL Server desired.

Bluecoat Proxy experience strongly desired

Experience with the following products is desired: Riverbed Cascade, ArcSight ESM and Logger; Tripwire; SNORT, Gigamon, FireEye, Cisco Client, Cisco Client, Cisco IOS, and
general network security management and logging applications.

Experience with SPAN port replication/aggregation technology is desired.

Experience with auditing wireless security is desired.

Experience assessing and implementing security mechanisms and monitoring systems

Experience with scripting (e.g. Python/Perl/Powerhell) is desired

B.S. Degree in Computer Science or related field and/or 5 to 7 years related experience.

Diagramming with Visio or similar tools desired

Excellent oral and written communication skills.

Must be able to translate technical security concepts into Client terms

Must be comfortable presenting in front of technical and non-technical audiences

Understanding of NIST standards for Information Security strongly desired

CCIE Security, CISSP, GIAC or similar security certification strongly desired.