*Title*: *Security Engineer* *Work Location San Jose, CA Duration 6 months *
* * *Description*: Role : Security Engineer Mandatory Technical Skills • Requirements include experience with developing and implementing IT security plans and Internet security • Exposure to open source infrastructure management, and automation, and security tools. (Nessus, Nmap, tcpdump/wireshark, snort, burp, etc) • Experience with Splunk, Qualys, RedSeal, and MVMD • Strong security background with industry certifications, including Certified Ethical Hacker, Global Information Assurance Certification (GIAC) and CISSP, among others. • Experience and expertise with ethical hacking, firewall and intrusion detection/prevention technologies, secure coding practices and threat modeling • Ability to perform threat, vulnerability and risk assessments against environment • Ability to perform security tool administration providing risk analysis of Vulnerability scanners (Qualys), and incidents • Security event logging & monitoring analyzing Intrusion Detection/Prevention System (IDS/IPS) and firewall logs, sys logs, event logs, etc • Solid working experience and knowledge of Unix/Linux operating systems 5 - 7 years of experience in network, server or application security positions. • Knowledge with Unix shell scripting, Bourne shell • Knowledge with Oracle DB mysql and mssql • Fundamentals of network routing & switching and understanding of L2/L3 network layers • Security related experience included Data-at-rest encryption, certificate validation, IDS/IPS, Firewalls, SEIMs and Log Management, syslog analysis, HTTP and TCP/IP analysis, and vulnerability assessment to include; cross-site scripting, SQL injection, cross-site request forgery, HTTP response splintering, the OWASP Top 10 and SANS Top 25. • Knowledge in TCP/IP; web architectures and technologies such as HTML, JavaScript, XML, REST, PHP • Web application penetration testing experience identifying architectural design weaknesses from analyzing a web application Responsibilities: • Develop and maintain hardening guidelines in partnership with infrastructure teams including CentOS, MySql, Tomcat, etc. • Support the security architects to investigate new technologies, replicate application testing scenarios, validate infrastructure remediation • Analyze Qualys and MVMD reports as necessary • Validate vulnerabilities based on reports through Qualys and RedSeal • Proactively look for ways to improve network and infrastructure security practices • Take a leadership role in driving internal security and privacy initiatives to secure a SaaS environment • Proactive research to identify and understand new threats, vulnerabilities, and exploits • Provide risk analysis for vulnerabilities, incidents and change requests • Monitoring IDS, Firewall, and log correlation tools for potential threats • Perform vulnerability assessments & penetration testing on infrastructure and applications • Management/review of unix & windows host security configuration and architecture • Assists in developing a model for our vulnerability program and event logging, monitoring program Desirable Technical Skill/ Responsibilities Teamwork and interpersonal skills Problem-solving skills Desirable Functional Skills * Pro-active * Self starter * Shows initiative * Keen to learn * Thorough, checks their own work and regularly asks for others input * Well organized * Excellent written & verbal communication Total Experience Required 6+ yrs *Thanks,* *Jay Chauhan* *Technical Recruiter, **e**Team, Inc.* *efficiency. synergy. expertise* *732-248-1900 X 522* <732-248-1900%20X%20522>* (T)* *908-757-0800* <908-757-0800>* (F)* [email protected] <[email protected]> www.eteaminc.com -- You received this message because you are subscribed to the Google Groups "Associate Programs" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/associate_programs?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
