Title: Sr. Information Security Engineer
Location: Danbury, CT
Direct Hire w/Client
The Sr. Information Security Engineer will be responsible for security platform engineering and operation - the testing, engineering and development of the Information Security Systems and Controls that are in place. The Sr. Information Security Engineer will be vendor agnostic and well versed in methodologies across the Information Security Eco-System. Will perform a wide variety of duties in support of technical or administrative assignments using established procedures. The Sr. Information Security Engineer will also be responsible for the maintenance, and troubleshooting of all security technologies, development and enforcement of security practices. As a member of the Security Incident Response Team, the Sr. Information Security Engineer, in the case of an incident, will work with the SOC to monitor and analyze security alerts and logs. They will perform remediation and mitigations actions in accordance to established security practices. The Sr. Information Security Engineer will be required to speak to all security related incidents. Will interact daily with peer groups, and customers and provide mentorship to junior security engineers.
25% Manage security responsibilities, including firewalls, proxy systems, logging, and other security devices.
25% Able to test and report on new security technologies. Performs product evaluations, recommends and implements products/services for network security. Understanding of industry best practices for security architecture frameworks, tools, standards and guidelines.
20% Maintaining security compliance operations and infrastructure. Performs computer and/or network security vulnerability assessments to identify, evaluate and mitigate security risks, threats and vulnerabilities.
10% Develops technical and programmatic assessments.
10% Evaluates engineering and integration initiatives and provides technical support to assess security policies, standards and guidelines. Implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications. Provides enforcement of security directives, standards, plans and procedures. Able to assess and validate compliance to acknowledged security standards through routine self-audits.
10% Conveys, documents, and remediates security incidences effectively and timely. Provides mentorship lower level security engineers.
Education and Experience Requirements:
Bachelor's Degree in Computer Science or Related Field, or 10 + years of Information Technology Experience.
10 or more years of IT work experience with a broad exposure to infrastructure/network, host, data and/or application security, and multi-platform environments.
5 or more years of Information Security experience from at least one of the Information Security Domains as described by ISC2 for the Certified Information Systems Security Profession examination.
Minimum Knowledge, Skills and Abilities Requirements:
Demonstrate working knowledge of Network Security Technologies.
Proven track record designing, building, and maintaining highly available fault-tolerant systems
Advanced knowledge and understanding of Security Infrastructure.
Expert understanding of defense-in-depth designs and security layers.
Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies.
Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, firewalls, IPsec, PKI, VPNs, proxy services, DNS, electronic mail and ACL's.
Experience working with internet, web, application and network security techniques.
Experience working with relevant operating system security (Windows, Linux, etc.).
Python experience preferred.
Exceptionally self-motivated, directed and detail-oriented.
Superior analytical, evaluative and problem-solving abilities.
Ability to motivate in a team-oriented, collaborative environment.
Ability to accept responsibility willingly.
Be available on an on-call basis to respond to pending issues or problems arising during non-business hours and provide support and response.
SIEM design and administration preferred.
CISSP or highest level of technical security certification preferred.
BACHELOR'S LVL DGRE Yes
Be a part of the ConsultNet difference. As a leading national provider of IT staffing and solutions, ConsultNet delivers exceptional services to startup, midmarket and Fortune 1000 companies across North America. Since 1996, we've partnered with clients to create rewarding opportunities for our consultants, successfully building teams that have surefire results.
In the past two years alone, we have placed more than 1,500 consultants in contract, contract-to-hire, or direct placement opportunities. We understand communication is key to finding the right job that matches your skills and career goals. For us, it's not just the work that we do; it's how we do the work. Our breadth of offerings extends to multiple IT positions in major markets throughout the country, see more at - www.consultnet.com