This position exists primarily to ensure access to the company’s systems via security measures, along with performing general administration of the security applications and operations.
Incumbents design and develop automated functions, processes and tools for the security organization. The Senior Security Engineer evaluates industry benchmarks and measures and applies them to enterprise processes and implementation of security processes, provides technical leadership and training for all security domains, serves as consultant in the area of security, evaluates and recommends security systems and software, maintains knowledge of emerging technologies in the information security discipline, develops, and publishes, security procedures and policies for the enterprise.
Principal Job Responsibilities :
Develop, update and maintain Information Security documentation
Gather and organize data.
Design and develop the documentation.
Perform reviews and edits.
Publish and distribute documentation
Manage Individual Projects
Perform needs assessment and direct requirements gathering.
Develop the project plan and identify resource requirements.
Schedule work activities and implement the plan.
Control and monitor the plan activities to ensure plan is on track.
Test and validate the completed plan to ensure initial requirements have been met.
Resolve Customer Security Issues
Receive and analyze customer request(s)
Develop and provide a solution or alternatives to customer.
Acquire customer concurrence and approval of the solution / alternative.
Lead in implementing the solution
Perform Proactive Risk Assessments, Security Reviews and Consulting
Receive and analyze requests.
Perform review / investigation / interview and provide findings and / or recommendations for mitigation or remediation of risks.
Receive customer's and / or management concurrence and approval of the solution / recommendation.
Lead in the implementation of the recommendation / solution, if required.
Gather pertinent data and evidence.
Interact with Legal, HR and law enforcement agencies, when required.
Prepare final reports for management.
Job Requirements : Knowledge Requirements
Strong platform knowledge (UNIX, Network devices,etc.)
Strong written and oral communication skills
Strong analytical skills
Strong knowledge of MS Office
Certification as a CISSP, CISA and / or CFE, or GIAC certification(s) (desired)
Strong influence skills
Strong troubleshooting skills
Knowledge of Security Policies / Practices
Extensive Security Application knowledge
Strong industry knowledge
Database knowledge (Access, Oracle, MySQL)
Skilled in the use of Application Reference Material
Strong programming and scripting skills
Strong ability to use logic concepts
Advanced browser, browser security, online commerce knowledge
BS in Computer Science, Information Systems, related field or equivalent work experience
3+ years of experience as a system engineer or security practitioner, preferred
3+ years of relevant professional experience in an Operations Support or Production Support environment
Strong analytical, business logic and problem resolution skills
Strong oral and written communication skills
Strong horizontal leadership skills, including conflict resolutions
Strong decision-making and follow-up skills
Experience working with geographically distributed teams
Additional Req Info (Role Specific) :
Strong experience working with RedHat operating systems
Experience with Oracle products such as WebLogic and Oracle Databases
Experience working with UNIX shell scripting ksh, php, or perl.
Experience working with Windows operating systems
Experience with Restful API and / or VMware
General knowledge of Network, VPN & network knowledge
Moderate Security Application knowledge
Moderate level of awareness of current attack vectors
Working knowledge of Project Management discipline and process
Experience in Cyber Security and Data Protection concepts, desired
Experience working with J2EE containers desired
Certification as a RHCE, RHCT, CISSP or GIAC certification(s), desired
Experience working with LDAP desired
The qualifications we are looking for are considered a mix of you work experience as well as your education.
Minimum Qualifications :
3+ years of experience working in network security (CISSP is a plus)
3+ years of experience working in Oracle environment.
3+ years of experience in Linux (RHEL is a plus)