ISC2 Certified Authorization Professional (CAP).
Hands-on experience with and knowledge of IT security architecture and design (e.g., firewalls, intrusion detection systems, virtual private networking, virus protection technologies, LAN/WAN design, and/or general internetworking technologies).
Experience with one or more information security frameworks such as SAS70/SSAE No. 16, PCI, NERC CIP, Nuclear Energy Institute (NEI) 0809, HIPAA, GLBA, SOX, etc.
Broad understanding of risk management practices and security program development including change management, access control, and physical security.
Broad IP network and security engineering experience including a basic understanding of IP routing, quality of service mechanisms, MPLS, and IPsec architectures.
Hands on experience configuring, deploying, and managing mission critical network appliances such as routers, firewalls, IDS/IPS, DPI, etc.
Hands on system administration experience with various operating systems including Windows, AIX, BSD, z/OS, RHEL, SUSE, HPUX, QNX, etc.
Hands on system administration experience with DB2, MS SQL, Oracle, Sybase, etc.
Experience with various programming languages.
Experience with system development lifecycles (SDLCs).
Experience with change management processes.
Have a Security+ certification and actively working towards the CISSP.