Senior Security Engineer

At Kelly Services®, we work with the best. Our clients include 97 of the Fortune 100™ companies, and more than 70,000 hiring managers rely on Kelly annually to access the best talent to drive their business forward. If you only make one career connection today, connect with Kelly.

Kelly IT has an opening for an Sr. IT Security Systems Engineer with our client in Rancho Cordova, Ca The Senior IT Security Systems Engineer is responsible for designing, developing, analyzing, troubleshooting, and documenting the network enterprise security infrastructure and is responsible for the deployment, engineering/configuration and maintenance of network security infrastructure and monitoring tools. Further, this position ensures that network operations are safe and efficient by monitoring network performance, coordinating planned maintenance, adjusting hardware components and responding to network connectivity issues related to firewall/VPN/SSL infrastructures. The Senior IT Security Systems Engineer also participates in and may lead major network projects to support capacity growth, upgrades and new products/features, and integration, as well as assists in the planning, forecasting and implementation, and identification of resource requirements for network systems.

* Analyzes, troubleshoots, and investigates security-related, information systems’ anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts * Maintains, configures, analyzes and tunes network and host-based security platforms which includes: * Vulnerability scanning systems and tools * Network-based Intrusion Detection/Prevention Systems (IDS/IPS) * Host-based Intrusion Detection/Prevention Systems (HIDS/HIPS) * File integrity verification and monitoring software * Security Information & Event Management (SIEM) platform * Application (Layer 7) Firewall * Network Access Control (NAC) * Data Loss Prevention (DLP) * Log Indexing and Correlation platform * Anti-virus and anti-spyware console * Firewall and network access controls lists * Web and E-mail proxy and filtering systems * Physical access control systems * Evaluates systems using vulnerability scanners and manual techniques to verify system security settings and configurations * Leads system or network vulnerability assessment and remediation * Assists in the development of the architectural direction and strategy for the systems environment * Provides Security Operations Center support as needed in response to information security related events * Assists in the design, implementation, support, and evaluation of security-focused tools and services, including project leadership roles * Assists in the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes * Develops and maintains security policies * Investigates and respond to security violations. * Participates in on-call 24/7 security systems engineering rotation; available for after-hours troubleshooting in the event of a problem with a security tool (e.g., security tool adversely impacting legitimate network traffic). * Guides and mentors junior members of the team * Performs other duties as assigned

* Bachelor’s Degree in Computer Science, Information Security, Mathematics or other related field * An industry recognized information security certification, such as a CISSP (or Associate), SSCP, CEH, or equivalent * National Agency Check (NAC) background clearance required * Minimum 7 years’ experience with increasing responsibility in a multi-vendor-computing environment * Experience in project management, implementation, monitoring and management of large scale computing environments * Hands-on experience with five of the following: vulnerability scanning, firewall, antivirus& malware analysis, proxy, IDS/IPS, log correlation tools, SIEM, DLP, NAC, and application firewall solutions * In depth knowledge of IT system management practices and processes including troubleshooting, optimization, system hardening and change management. Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols and application security * Ability to work on both Linux-based and MS Windows-based system platforms with a strong IT technical understanding and aptitude for analytical problem-solving * Strong understanding of enterprise, network, system and application level security issues * Working knowledge of log management, security event, and application monitoring practices * Knowledge of Linux and Windows operating systems and internals * In depth understanding of network architecture fundamentals including TCP/IP, DNS, firewalls, routing, and troubleshooting. * Expertise with all phases of product life cycle from definition, design, development and test to deployment, field support and end of life. * Deep understanding and expertise with networking technologies from the link layer to the application layer. * Excellent organizational skills, technical writing skills, as well as written and verbal communication skills. * Expertise with industry standard frameworks (NIST, PCI, SOX, Safe Harbor, ISO) * Ability to clearly communicate Information Security matters to executives, auditors, end users, and engineers, using appropriate language, examples, and tone * Excellent interpersonal, organizational and technical writing skills * Ability to be a self-starter who is accountable, requires minimal supervision and is open to new ideas * Ability to work in a large, dynamic and complex organization, requiring creativity and flexibility * Possess the personal characteristics of professionalism, credibility, commitment to high standards, innovation, discriminating judgment and accountability. * Excellent leadership skills and teamwork skills