IT Security Engr Consultant Surrex
Job TypeContract Full-Time
Well established firm in the financial services industry and located within walking distance of quality eateries and shops has an immediate long term consulting opportunity for an accomplished IT Security Engineer as follows:
The Security Engineer will be responsible for the confidentiality, integrity, and availability of all systems at the enterprise. This includes analysis and review of events escalated from our automated detection systems, analysis of traffic flows utilizing SIEM/IPS technology and other tools to detect malicious activity, and completion of tasks associated with security monitoring, detection, and incident response on an as needed basis.
Provide primary support for Websense Web Security. Support the firm's Internet URL content filtering security policy, respond to incidents, and assess business requirements and resolution.
Conduct and schedule regular vulnerability assessment scans, reports and remediation plans.
Analyze and investigate suspicious activity using log files, IPS, SEIM, network monitoring tools, and remediate accordingly.
Monitor and research current industry security threat metrics, technology best practices, security posture, tools, threat detection and counter measures, and formulate process improvement.
Maintain and coordinate security controls for Windows servers/workstations, and Unix/Linux servers.
Security project management and monitor Helpdesk ticketing system for issues related to Security.
Work with Windows, UNIX, and other business teams with regards to OS and application level patch management. This includes conducting system security reviews, patch management plans, risk mitigation and conformance plans.
Required Skills (minimum 3 years)
Advanced knowledge and working experience with Websense web content security filtering technology.
Experience with one or more of the following security vulnerability assessment and management tools (Foundstone, Qualys, GFI LanGuard).
Excellent written, verbal, and presentation communication skills.
Experience with endpoint security methodologies. Strong incident handling background is required.
Strong understanding of TCP, UDP, security protocols, IP protocols and packet analysis.
Experience with Microsoft Windows server and client administration.
Experience and/or exposure to SIEM technologies including event correlation and syslog analysis.
Experience with mobile and smart device security and management framework.
Experience with security risk assessment, risk management, compliance, and security policy formulation.
Project management background with good multitasking and prioritization skills.
Experience with network firewalls, intrusion prevention systems, and network architecture.
Experience with computer forensics methodologies.
Experience with Linux and UNIX operating systems.
Prior financial industry experience is a plus.
Academic Qualifications (minimum requirements):
CISSP, GCFA, CISA or CISM security certificates is required
Knowledge of standards, rules and regulations related to information security and data confidentiality
Strong analytical and problem solving skills
College degree preferred
If you would like to be considered seriously for this role, please respond with your resume in MS Word format.
||Pasadena, CA |