Information Security Engineer

Responsibilities: 

  • Leads and conducts audits of corporate information systems to ensure compliance with security policies, NIST security controls, PCI-DSS and applicable state and federal laws and regulations
  • Identifies functionality requirements, performs implementation and advanced security administration of tools (e.g. SIEM, vulnerability management, Web application firewall)
  • Trains and transitions day-to-day support of security tools to information security analysts
  • Establishes control-related standards and procedures and prepares project status reports for senior management
  • Designs and coordinates business resumption and recovery test and evaluation plans for security, in support of disaster recovery and business continuity plans
  • Identifies potential risk items and subsequent remediation of vulnerabilities in the environment.
  • Supports day-to-day monitoring of logs and alerts from firewalls, log management, intrusion detection systems and content filtering controls, etc.
  • Performs forensic analysis and investigation of log alerts and malware
  • Provides advanced security analysis and guidance to the information security analyst and administrator team members
  • Provides advanced technical problem solving in configuration and utilization of all security enabled applications, systems and network devices
  • Provides advanced technical analysis of commercial and government customer requirements and controls

Experience: 

  • 7+ years’ experience in information security or system administration
  • Advanced knowledge of information security principles and practices, intrusion detection systems, installation, configuration, monitoring and response to security systems,
  • Advanced knowledge of security protocols and standards, software and security architectures, risk management, control techniques and frameworks
  • Ability to plan and perform project management and leading teams
  • Ability to collect and analyze complex data, use data extraction and analysis tools
  • Ability to use active listening skills; effective verbal and written communication
  • Strong understanding of security related regulations, and laws
  • Bachelor’s degree in information technology or a related field
  • CISSP certification is required (or the ability to obtain one within 12 months of employment)
  • Will accept any suitable combination of education, training, or experience.
Experience: Senior
Job Type: Contract
Job Location: Hybrid

Apply for this position

Allowed Type(s): .pdf, .doc, .docx
Back to listings