[ALE-jobs] Network Engineering

[Jim Kinney]

---------- Forwarded message ----------
From: Gene Smith <gsmith at vereduscorp.com>
Date: Tue, Mar 2, 2010 at 5:09 PM
Subject: FW:
To: jim.kinney at gmail.com


  Jim,





It was good talking with you earlier.  Here is the job description for the
position I mentioned.  Let me know if you can recommend someone.



Additional Info:

*Must haves include Network Engineering exp, CCNA, CISSP.  Focus will be
more on network layer than infrastructure layer.  Must be experienced with
accessing, recommending, and implementing security measures for the network
layer.  PCI exp is HIGHLY preferred.




Job Summary
The responsibilities of the position include (1) Assessing existing
infrastructure and architecting appropriate security controls; (2) Working
to discover vulnerabilities and translating into business risks (3) Advising
and designing secure solutions to facilitate strengthened security posture;
(4) Liaising with technical counterparts to recommend, guide and assist in
remediation activities.

The incumbent will be able to demonstrate expertise in
indentifying/remediating problems within existing systems,
architecting/implementing new systems and enhancing existing systems.
Working knowledge should include but is not limited to: Firewalls, VPN,
Encryption, LAN/WAN Connectivity, MPLS, IDS, IPS, web filtering, web
proxies, ACL, log consolidation, encryption, mal-ware, patch management,
vulnerability detection and remediation, and incident response.


RESPONSIBILITIES INCLUDE
• Provide advanced technical security expertise and consultancy to the
infrastructure
• Evaluate, assess and recommend network security controls and solutions
• Lead and assist with documentation creation and establishment of
network/infrastructure standards
• Participate in security design reviews of systems and software
• Demonstrate senior level support for installation, changes and monitoring
of network security systems
• Perform security engineering analysis, risk and vulnerability assessment
• Develop and conduct penetration testing on the infrastructure and its
components
• Expand and report on network and infrastructure metrics to document
security posture
• Implement and maintain documentation and processes related to Payment Card
Industry Data Security Standards (PCI) and other regulatory requirements

Complementary Duties
• Direct system certification and accreditation planning and testing
activities
• Assess and mitigate system security threats/risks throughout the program
life cycle;
• Determine/analyze and decompose security requirements at the level of
detail that can be implemented and tested;
• Review and monitor security designs in hardware, software, data, and
procedures;
• Support secure systems operations and maintenance
• Monitor and analyze security functional tests
• Create, document, implement, maintain and test IPS business continuity and
disaster recovery plans.
• Leverage risk based approach to report remediation activities and
corresponding priorities.
• Participate in security incident response activities and investigations of
security related incidents.
• Support internal audits on procedures to ensure compliance with audit
objectives
• Assist with the review, updating, and documentation of relevant data flow
diagrams
• Perform other Information Security projects / duties as needed


MINIMUM QUALIFICATIONS
Transferable Skills (Competencies)
• Extensive working experience with the Payment Card Industry Data Security
Standard
• Strong working knowledge of Information Security theory
• Strong working knowledge of analysis and design of wired and wireless
network systems
• Strong working knowledge of Windows XP/2000/2003, Active Directory, and IT
Infrastructure security and recovery methods and concepts
• Working knowledge of Web-based application security and recovery methods
and concepts
• Strong multi-tasking and analytical/troubleshooting skills
• Strong verbal and written communication skills
• Working experience in meeting with management to discuss and address
security concerns
• Working knowledge of security architecture and recovery methods and
concepts
• Working knowledge in troubleshooting information security-related problems
and incidents
• Working knowledge of anti-virus systems, vulnerability management, and
violation monitoring
• Basic knowledge of ISO 9001:2008, COBIT, EU/Safe Harbor requirements a
plus
• Basic knowledge of Linux security, audit, and control methods and concepts
a plus
• Basic Programming and MS SQL and Oracle relational database knowledge a
plus
• Proficient in MS-Office suite of products
• Professional, team oriented

Qualifications
• Bachelor’s Degree (B.A.), or equivalent combination of education and
experience in Information Security, Computer Science, Management Information
Systems or related curriculum
• Professional certifications from CISCO, Microsoft, ISACA, (ISC)2, or SANS
preferred
• Aptitude to prioritize and load balance sensitive projects concurrently
• Strong organizational, time management, decision making, and problem
solving skills
• Strong initiative and self motivated professional
• 5 years of relevant general Information Technology experience preferred
• 3 years of Windows Server administration experience preferred
• Some LINUX administration experience preferred







Regards,


 Gene Smith

Veredus Corporation

950 East Paces Ferry Road Suite 1585

Atlanta GA 30326

(678) 420-7492 phone

(404) 846-9385 fax


*See our hot jobs:* www.veredusatlanta.com

*Directions:* http://www.vereduscorp.com/map_atlanta.asp

*Connect with me on LinkedIn*: http://www.linkedin.com/in/genesmith







-- 
-- 
James P. Kinney III
Actively in pursuit of Life, Liberty and Happiness
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale-jobs/attachments/20100302/8df49b2c/attachment.html