Sr. Security Engineer

Genesis10 is currently seeking a Sr. Security Engineer Consultant with our client in the transportation industry in their Atlanta, GA location. This is a 12 + month contract position.

Description:
Seeking a Sr. Security Engineer Consultant
Our client is on a journey to becoming the best IT organization in the airline industry, a journey of transformation. They are changing the way we do business from top to bottom as we strive to create meaningful and innovative solutions and are looking for team members to help us realize our vision.

Responsibilities:

• Responsible for the design, testing, evaluation, implementation, support, management, and deployment of security systems/devices used to safeguard the organization's information assets
• Responsible for analyzing the information security environment and assisting with the development of security measures to safeguard information against accidental or unauthorized modification, destruction, or disclosure
• Work with the technical team to recover data after a security breach
• Configure and install firewalls and intrusion detection systems
• Develop automation scripts to handle and track incidents
• Investigate intrusion incidents, conduct forensic investigations and mount incident responses
• Deliver technical reports and formal papers on test findings
• Install firewalls, data encryption, and other security measures
• Maintain access by providing information, resources, and technical support
• Ensure authorized access by investigating improper access; revoking access; reporting violations; monitoring information requests by new programming; recommending improvements
• Update job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
• Accomplish information systems and organization mission by completing related results as needed
• Build, deploy, and track security measurements for computer systems and networks
• Mitigate security vulnerabilities by implementing applicable solutions and tools
• Perform vulnerability testing, risk analyses, and security assessments
• Collaborate with colleagues on authentication, authorization, and encryption solutions
• Test security solutions using industry standard analysis criteria
• Respond to information security issues during each stage of a project's lifecycle
• Perform risk assessments and testing of data processing systems
• Establish system controls by developing framework for controls and levels of access; recommending improvements
• Establish computer and terminal physical security by developing standards, policies, and procedures; coordinate with facilities security; recommend improvements
• Safeguard computer files by performing regular backups; developing procedures for source code management and disaster preparedness; recommends improvements
• Determine the sensitivity of the data in order to recommend the appropriate security needs
• Develop proposals for, and consider cost effective equipment options to satisfy security needs
• Communicate with the technical team, management team and users companywide if data security is breached
• Design infrastructure to alert the technical team of detected vulnerabilities
• Evaluate new technologies and processes that enhance security capabilities
• Supervise changes in software, hardware, facilities, telecommunications and user needs
• Define, implement, and maintain corporate security policies
• Analyze and advise on new security technologies and program conformance
• Create, test, and implement network disaster recovery plans
• Recommend security enhancements and purchases
• Train staff on network and information security procedures
• Develop security awareness by providing orientation, educational programs, and on-going communication
• Recommend modifications in legal, technical and regulatory areas that affect IT security
• Assess the impact of emerging security threats on the enterprise risk level, recommend technology direction and/or adjustments to incorporate in the business plans
• Consult with other members of team, client, and end users to identify PKI requirements and develop requirements documentation
• Support and mature client's PKI (Public Key Infrastructure) program, including strategy, governance, implementation, operations and continuous alignment with compliance and regulatory requirements
• Engage with system owners, business teams, and IT stakeholders in strategic discussions to provide best in class PKI security strategy and industry guidance to maximize long-term business objectives
• Review, patch, the Red Hat Certificate System source code for defects
• Develop Red Hat Certificate System source code to implement new capability
• Conduct technical research and set cloud security direction and strategy

Requirements:

• High performing and self-motivated, extensive professional experience in designing, implementing and managing PKI and security solutions
• Solid understanding of PKI concepts and security properties
• Support PKI-based products (including Web servers and certification authorities) and Common PKI-based protocols (including SSL and TLS, HTTPs, or LDAPs)
• Experience with certificate authority (CA) implementation in compliance with the Federal PKI (FPKI) Common Policy Authority
• Strong expertise in PKI Engineering Support and troubleshooting
• Experience with HSM design and implementation
• Working knowledge with OSI layer 2-7 security tactics and different kinds of attacks
• Demonstrated abilities in working with team to deliver projects to clients within specified timeframe and as per specifications
• Good working experience with scripting platforms (PowerShell, Batch, Json, Python, YAML, etc.)
• Expert in PKI design, implementation, administration, and provisioning in AWS
• Extensive experience in AWS PKI services: KMS, CloudHSM, ACM, CloudFront, Secrets Manager, CloudTrail
• Experience with PKI-based products (including Web servers and certification authorities) and Common PKI-based protocols (including SSL and TLS, HTTPs, or LDAPs)
• A solid understanding of Public Key Infrastructure (PKI) including technology, standards, and implementations, with experience managing, configuring, or supporting a PKI certificate authority
• Experience with certificate authority (CA) implementation in compliance with the Federal PKI (FPKI) Common Policy Authority
• Experience in automating certificate renewal and certificate life cycle management
• Experience with Microsoft's PKI Technologies and latest Windows and Linux server platforms
• Experience with integration of Venafi with Microsoft PKI Technologies and Public PKI Providers
• Experience on IBM Mainframe platforms Encryption (TKE, UKO, SGKLM, etc.)
• Experience in areas such as identity management, provisioning, authentication, authorization, certification/governance, monitoring along, including HSPD-12 compliance
• Experience developing and implementing IT Contingency Plans
• Strong communication skills
• Strong attention to detail
• Keen diagnostic and problem solving skills

Desired skills:

• Bachelor's Degree in Information Security, Computer Science, or related field
• 5+ years of professional experience in PKI, Venafi, digital certificates management, IBM-Mainframe, Scripting and Information Security domains
• Experience with Agile software development methodologies
• One or more certifications: CISSP, AWS Cloud Certificates, CISM or other Cyber Security related certification

If you have the described qualifications and are interested in this exciting opportunity, please apply!

About Genesis10:
Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.

For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:
Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
Behavioral Health Platform
Medical, Dental, Vision
Health Savings Account
Voluntary Hospital Indemnity (Critical Illness & Accident)
Voluntary Term Life Insurance
401K
Sick Pay (for applicable states/municipalities)
Commuter Benefits (Dallas, NYC, SF and Illinois)

For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.

Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.