Senior Security Engineer

XSell Resources

(Philadelphia, Pennsylvania)

Full Time

Job Posting Details

About XSell Resources

Xsell Resources specializes in the placement of contract, contract to direct and permanent IT professionals that include Project/Program Managers, Business Analysts, QA/Test, Developers/Programmers and Infrastructure professionals.

Summary

Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.

Responsibilities

* Performs and evaluates vulnerability scans within a multi-platform, large enterprise network.  Reacts to and initiates corrective action regarding security violations, attempts to gain unauthorized access and virus infections that affect the network or security.
* Assesses the impact on the health system caused by theft, destruction, alteration or denial of access to information and reports to senior management.
* Reviews, recommends and oversees the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security.
* Provides complex technical oversight and enforcement of security directives, orders, standards, plans and procedures.  Ensures system support personnel receive/maintain security awareness and training.
* Act as a liaison with other engineering groups to ensure that security issues are addressed as systems are being designed and implemented.
* Provide on-call operational support for complex security issues that are escalated.
* Designs, tests, and manages firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools/capabilities.
* Provides complex engineering analysis and support for firewalls, routers, networks and operating systems.
* Oversees user access process to ensure operational integrity of the system.  Enforces the information security configuration and maintains system for issuing, protecting, changing and revoking accounts and passwords.
* Develops technical and programmatic assessments, evaluates engineering and integration initiatives and provides technical support to assess security policies, standards and guidelines. 
* Implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications.
* Performs complex product evaluations, recommends and implements products/services for network security.
* Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies.
*

Performs and evaluates vulnerability scans within a multi-platform, large enterprise network. Reacts to and initiates corrective action regarding security violations, attempts to gain unauthorized access and virus infections that affect the network or security.
Assesses the impact on the health system caused by theft, destruction, alteration or denial of access to information and reports to senior management.
Reviews, recommends and oversees the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security.
Provides complex technical oversight and enforcement of security directives, orders, standards, plans and procedures. Ensures system support personnel receive/maintain security awareness and training.
Act as a liaison with other engineering groups to ensure that security issues are addressed as systems are being designed and implemented.
Provide on-call operational support for complex security issues that are escalated.
Designs, tests, and manages firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools/capabilities.
Provides complex engineering analysis and support for firewalls, routers, networks and operating systems.
Oversees user access process to ensure operational integrity of the system. Enforces the information security configuration and maintains system for issuing, protecting, changing and revoking accounts and passwords.
Develops technical and programmatic assessments, evaluates engineering and integration initiatives and provides technical support to assess security policies, standards and guidelines.
Implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications.
Performs complex product evaluations, recommends and implements products/services for network security.
Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies.

Ideal Candidate

* Bachelor's degree, preferably in Computer Science, Computer Engineering, or allied disciplines.
* Five or more years of experience with incident response planning and execution, as well as extensive experience with computer forensics and operating systems (Unix and Windows).
* Five to seven years in a role with responsibility for assessing and managing the security of a large IT enterprise.  Must have experience with end-to-end security analysis tools. Must have extensive experience with continuous monitoring activities (vulnerability scanning, security assessments, security alert reviews)
* Excellent verbal, written, and interpersonal communication skills. Ability to constructively resolve issues and conflicts as they arise. Strong listening skills.
* Proven ability to lead projects from inception to successful implementation.
* Demonstrated ability to own success of projects and to instill a sense of individual ownership for project success in all team members.
* Ability to work within deadlines and with multiple priorities; ability to adapt to changing priorities.
* Orientation to teamwork and achievement of company and departmental goals.
* Excellent problem analysis skills and articulate communicator of complex technical and business topics.
* Process security certification (CISSP, CNNA) preferred.

Bachelor's degree, preferably in Computer Science, Computer Engineering, or allied disciplines.
Five or more years of experience with incident response planning and execution, as well as extensive experience with computer forensics and operating systems (Unix and Windows).
Five to seven years in a role with responsibility for assessing and managing the security of a large IT enterprise. Must have experience with end-to-end security analysis tools. Must have extensive experience with continuous monitoring activities (vulnerability scanning, security assessments, security alert reviews)
Excellent verbal, written, and interpersonal communication skills. Ability to constructively resolve issues and conflicts as they arise. Strong listening skills.
Proven ability to lead projects from inception to successful implementation.
Demonstrated ability to own success of projects and to instill a sense of individual ownership for project success in all team members.
Ability to work within deadlines and with multiple priorities; ability to adapt to changing priorities.
Orientation to teamwork and achievement of company and departmental goals.
Excellent problem analysis skills and articulate communicator of complex technical and business topics.
Process security certification (CISSP, CNNA) preferred.