Sr. Security Engineer

Global Publicly held Investment firm is expanding its IT Security team. There is an immediate for a broad based Sr. Security Engineer.

This position requires the ability to architect, design, and build secure IT systems. Security engineers are responsible for working with business and IT stakeholders to gather requirements, develop use cases and user stories, document the system design and operating procedures, perform threat and risk assessments, and conduct training and knowledge transfer sessions with Operations teams. Security engineers may need to build, rack, and cable servers and appliances; load and configure operating systems and applications; upgrade firmware; harden system configurations; perform test and acceptance; automate manual processes with scripts; and configure monitoring and alerting functions, backups, authentication, encryption, etc.
Security engineers assess and report on risk in many contexts.
This position requires strong analytic and written communications skills, such as those that would be required to enable non-technical business managers to make informed, risk-based decisions supporting the safe adoption of new technologies and enhancements of existing security systems. Security engineers also perform independent verification and validation activities to ensure devices and processes are configured and performed in accordance with policies, standards, best practices, and contractual requirements.
.
Security engineers should have strong working knowledge of network protocol analysis, symmetric cryptography, public key infrastructure, SSL, securityinformation and event correlation, Microsoft Windows and Active Directory, Microsoft Exchange, Microsoft SharePoint, Linux, VMware, database management, programming or scripting, network security, web application security, anti-virus, web proxy, remote access VPN and securing voice and video systems with previous hands-on experience building and supporting at least several of these technologies.
Security Engineers should have working knowledge and experience ensuring compliance with security frameworks (PCI DSS, CIS, SANS Critical Controls, etc.)
High-performing security engineers act decisively and exhibit strong leadership and other interpersonal skills, which promotes higher performances from those around them.

Responsibilities:
Responsible for project-based security engineering.
Responsible for performing risk assessments in various contexts.
Responsible for improving relevant knowledge, skills, and abilities through research, lab work, mentoring others, training, and other professional development activities.
Desired Skills and Experience
Four-year college degree, or equivalent years' of relevant experience, required
Master degree in a related technical field or finance, preferred
GIAC, CISSP, or other vendor agnostic security certifications
7+ years of overall IT experience with emphasis on information security, required
3+ years of working experience building and integrating systems
Strong verbal and written communication skills to both technical and non-technical audiences
Strong problem solving and decision making skills
Blend of business and technology skills
Attention to detail
Experience with system administration
Experience performing risk assessments
Experience handling information security incidents
Experience with network and host intrusion detection systems
Experience with remote access VPN deployments
Experience with firewalls
Experience with SIEM deployments
Experience with vulnerability scanning tools
Experience with network protocol analysis
Experience with educating others on security topics
Knowledge of web proxy deployments
Knowledge of cloud services such as Amazon Web Services
Knowledge of malware persistence techniques
Knowledge of HTTP and web programming
Knowledge of web application firewalls
Knowledge of symmetric cryptography and public key infrastructure
Proficiency with Windows and Linux
Proficiency with programming or scripting
Proficiency with SQL and other query languages
Proficiency with network security and management tools
Proficiency with log analysis software and techniques
Proficiency with vulnerability assessment tools
Proficiency with anti-virus tools
Awareness of wireless security tools
Awareness of reconnaissance research, and investigation tools
Awareness of exploitation tools
Awareness of wireless security attacks
Awareness of anti-forensics techniques

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Sr Officer, Security (Adjudicator)- Senior
Herndon, VA General Dynamics Information Technology
Software Engineer-Sr. Manager/Team Lead
McLean, VA Capital one
Vendor and Internal Security Risk Sr Analyst
Reston, VA Maximus, Inc.
Systems Engineer Entry Level Intel Analyst TS/...
Herndon, VA Lockheed Martin Corporation
Program Support Analyst (Homeland Security) HL...
Arlington, VA E3 Federal Solutions, LLC
Radio Frequency Ground Systems Engineer TS/SCI...
Fort Belvoir, VA General Dynamics Information Technology