CISSP Jobs - Senior Security Engineer, 13243

at ICONMA
Location McLean, VA
Date Posted March 13, 2019
Category Default
Job Type Contractor

Description

Location: McLean, VA

Duration: 12 months

Description:

Responsibilities:

The Information Security Engineer (ISE), will be responsible for working with Information Security and our organization’s Lines of Business (LOB) Project teams to assist in the design, implementation and subsequently support secure business systems and solutions. 

The ISE shall:

- Function as an InfoSec subject matter expert (SME)

- Collect, interpret, evaluate, and validate business requirements, functions and processes associated with assigned implementations

- Implement security solutions that are in compliance with the organization’s InfoSec policies, standards, non-functional requirements, reference architectures and patterns

- Identify security risks and then implement solutions to best mitigate those risks

- Have a thorough understanding of industry standard InfoSec control frameworks such as ISO 27001/27002, NIST, and CIS The ISE shall have experience implementing solutions in at least three of the following areas:

- Cloud security (IaaS, PaaS, and SaaS) across multiple cloud platforms such as Azure, AWS, and Google.

- Network security and segmentation

- Data security

- Application security (Container, Micro Services, Multi-Tier Web and Client-Server)

- End-Point Security (desktops, laptops, servers, etc.)

- Mobile device security (smartphones, tablets, iPads, etc.), to include Bring Your Own Device (BYOD)

- Authentication and Authorization models and techniques (to include multi-factor authentication) The ISE shall have a thorough understanding of one or more of the following technologies:

- Azure, AWS, and GCP

- Container and Microservices Security

- An expert in Linux shell scripting would be a plus

- SSH Key Management

- Encryption (Symmetric and Asymmetric)

- Email security including Malware Detonation and Spam/Phishing Detection/Prevention

- Antimalware on the endpoint, servers, and/or storage

- Security Information and Event Management (SIEM)

- Identity and Access Management (IAM)

- ADFS and other federated technologies

- Mobile Device Management & Mobile Application Management Experience:

- BA/BS degree in Computer Science, Information Systems or a related technical field, or the equivalent combination of education and experience.

- 10+ years of information technology experience, preferably within the financial services industry

- Minimum of 6 years’ experience working as an Information Security Professional, preferably within the architecture or engineering practices

- Minimum 4 years’ experience working as an InfoSec Engineer Preferred:

- CISSP (+ ISSAP), CCSP, GIAC