Sr Information Security Engineer

The Judge Group Lake Forest, CA
Our client is currently seeking a Sr Information Security Engineer.
Provides leadership and development of new or existing corporate information security projects, including requirements definition, documentation, and communication. Works directly with customers, business, and other IT entities to create, document, implement, and manage security controls, policies, procedures, and practices that ensure the availability, integrity and confidentiality of information assets.
Please contact Gabriel at [Click Here to Email Your Resumé] for immediate consideration!

This job will have the following responsibilities:
  • Security Design and Implementation
    • Leads the planning, design, documentation, and engineering of security and compliance solutions across the enterprise.
    • Defines, develops, documents, and implements new security components and integrations.
    • Provides techniques and patterns for securing integration with external vendors or cloud providers.
    • Subject matter expert/contributor measurably improving the overall security framework and program.
    • Leads regular design reviews for requirements implementation.
    Security Administration
    • Evaluates and plays an active role in life-cycle management of multiple hardware and software technologies designed to protect information.
    • Create and maintain process and or procedures for security technologies.
    • Prepare periodical reports on risk analysis reviews, security compliance reviews, and security incidents, etc.
    Incident Response
    • Lead activities of the Computer Security Incident Response Team (CSIRT).
    • Monitor for new security threats and makes recommendations for additional controls.
    • Identify security risks to the organization and recommend corrective actions.
    • Provide oversight of complex security incidents and escalations, performing advanced analysis and troubleshooting, and resolving incidents.

Qualifications & Requirements:
  • Exceptional knowledge and understanding on the creation/implementation of secure networks, firewalls and intrusion-detection/prevention systems
  • Advanced knowledge regarding common attacks, attack methods, and defense architectures.
  • Expert level experience in four or more of the following Enterprise Security Technologies:
    • Network Intrusion Prevention/Detection (IPS/IDS) (Tipping Point, Forcepoint)
    • Security Information and Event Management (SIEM) (Splunk, QRadar, ArcSight)
    • Virtual Private Networks; SSL, IPSec and Site-to-Site
    • Public Key Infrastructure (PKI)
    • Network Access Controls (NAC)
    • Next-Gen enterprise class firewalls (Cisco ASA, Checkpoint, Fortinet, Palo Alto)
    • Encryption technologies
    • Vulnerability scanning tools (Nessus, Qualys, Nexpose,etc.)
    • Application scanning tools (AppScan, Qualys WAS, Metasploit, etc.)
  • Extensive ability to estimate, plan, lead and execute complex technical projects while working independently and/or in a team, undertaking and completing project tasks on schedule with minimal to no supervision
  • Outstanding interpersonal skills, effectively communicate with internal and external personnel at peer and executive management level.
  • Highly adept in interfacing with engineering, airline customers and aircraft OEMs.
  • Experience with Information Security Policy and Procedure development and implementation
  • Knowledge of Information Security risk assessment methodologies and standards
  • Experience developing technical documentation, including reports, proposals, statements of work, and whitepapers.
Education/Experience Requirements:
  • Bachelor of Science Degree in Systems Engineering, Electrical Engineering, Computer Sciences, Computer Engineering, Information Security, or other related engineering degree, or equivalent experience.
  • Industry recognized security certifications; CISSP: Certified Information Systems Security Professional, CISM: Certified Information Security Manager, GIAC: SANS Global Information Assurance Certification etc.
  • 10+ years experience in an Information Technology, with 5+ years specific to an Information Security role with expertise in design, development, and deployment of complex highly available, and secure, integration solutions.


Similar jobs you might like