Position: Information Security Engineer/Consultant
Location: Parsippany, NJ
Duration: Long Term Contract
The Security Engineer is responsible for assisting in the planning, implementation and auditing of security solutions, policies, and procedures to safeguard the confidentiality, integrity, and availability of information. This position works with the members of the Information Security Team, IT Teams, business representatives, and vendors to help architect, implement, sustain, administer and operate technical solutions in support of our business interests. The Security Engineer’s role is to plan and design security solutions, execute assigned security operation functions, and operate and administer security tools and services.
20% Consult with Information Security staff, IT staff, business representatives, and service providers to help deliver appropriate security capabilities in projects and services. Conduct penetration testing, vulnerability assessments, and security event monitoring with internal tools and coordination with external service providers.
30% Review operation logs and event console activity to determine cause of security threat events or assess potential security threat related events. Assist in the implementation, delivery, and management of information security services in support of the IT organization and business entities.
20% Contribute to security incident response activities. Participate in investigations of suspected information security misuse or non-compliance. Develop and refine event detection, incident response and forensics technical capability and procedures.
30% Assist in responses to external audits, penetration tests, vulnerability assessments, and service requests. Recommend the application of controls, fixes, patches, incident response, disaster recovery procedures, and mitigating or remediation activity as needed.
LEVEL BASED COMPETENCIES
Good Customer Focus
Good Communication skills (verbal & written)
Good Decision Making skills
Good Collaboration skills
Good Customer Focus
Initiates Self Action
Good Service Management / Service Delivery skills
Good Business Acumen
Good Skills in Building Working Relationships
Good Stress Tolerance skills
Good Planning, Organizing & Follow-Up skills
Good Attention to Detail
Good Time Management skills
Strong Troubleshooting skills
KNOWLEDGE, SKILLS & ABILITIES
Technical knowledge/skills (entry, intermediate, advanced)
Knowledge of security systems and protocols
Knowledge of Security Standards
Knowledge of industry standard security tools
Knowledge and execution of IT Standards, Policies and Procedures
Knowledge of Information Security Awareness
Developing knowledge of General Project Management Methodology & Tools
General knowledge/skills (entry, intermediate, advanced)
Good analytical and communication skills
Ability to interface with internal customers at all levels of the organization
Good ability to Multi Task
Good skills in Prioritizing
Good Analysis & Problem Solving Skills
Some supervision and oversight required. Must be able to demonstrate leadership and expertise when representing
Information Security in project teams and committees.
Proactively work with manager to identify training needs to expand and improve skills
Provide on-the-job training/support to new/other team members
Proactively seeks guidance from other team members when needed.
Good ability to apply feedback received to day-to-day work and strives to improve performance
Experience with one or more of the following:
SIEM platforms, QRadar preferred
IDS/IPS, Sourcefire / Firepower preferred
Web proxy, Forcepoint preferred
Data leakage protection
Endpoint management technology, Microsoft SCCM and Carbon Black Defense preferred
Master’s or Bachelor’s Degree in Computer Science, Information Systems, or related experience
5+ years of Information Security work experience
Security certification (e.g. CISSP, CEH, CISM, CRISC, Security+) preferred