*Hi I have following new requirements if you have any consultants send me resumes to [email protected] <[email protected]>*
*Needed Sr. IS Security Engineer * *Rate: $65/hr on C2C* *Location: Bowie MD* *Candidate's technical skills are re-verified the first day on the job to prevent fakes and candidate switching. Any candidates that does not have the same skills that they demonstrated on their video interviews will be terminated and sent home immediately at their expense.* We currently have long term positions for Sr. IS Security Engineers. Please advise if you have any candidates that fit the below skill set. *Please advise the following:* The Information Systems Security Engineer role is heavily weighted on the ability to successfully detect, eradicate and recovery from security threats to the organization. The successful candidate will be able to utilize industry recognized tools in the computer security incident handling process. Additionally the successful candidate will utilize their career experience managing various security countermeasures to aid in the intelligent correlation of events which may be precursors or evidence of an attack. *Responsibilities* - Develop formal, structured application assessment methodologies that can be used to uniformly and consistently assess applications; - Conduct application security reviews to assess the security posture of our applications and of the networks and systems supporting and hosting the applications; - Develop and present accurate and timely deliverables outlining vulnerability details, appropriate technical solutions, remedial steps, and accurate conclusions; - Schedule and manage third party application assessments of Inovalon applications by coordinating among vendors, product teams and product support teams; - Facilitate remediation/mitigation efforts by working with application development teams on vulnerabilities identified by internal reviews and 3rd party assessments with tracking to closure; - Serve as a technical resource to assist peer teams in understanding identified application security risks and advise on best practices for remediation; - Serve as a subject matter expert on secure application architectures, secure coding practices, code reviews and application threat assessment; - Maintaining a knowledge base of security attack vectors and common application vulnerabilities for the purposes of applying defensive controls and the development of security hardening standards; - Serve as team member in incident response engagements in the collection, analysis, and classification of malware artifacts; - Provide thought leadership in improving our assessment processes and the security posture of IT; and - Project responsibilities and other duties as assigned by management. *Qualifications* - 7+ years of experience of performing Information Security related duties; - Bachelor of Science degree in a Computer or Engineering related discipline. Master’s degree is preferred but not required. Experience can substitute education; - Must be a self-motivated individual who sees tasks to completion; - *Possession of an advanced Information Security Certification. Examples include OSCP, CISSP, CISM, CEH, or GIAC certifications;* - *Experience with Windows and Linux Operating Systems;* - *Experience with various security tools and products Nmap, Nessus, WebInspect, w3af, AppDetective, Burp Suite and other similar tools* - *Experience with firewalls, VPN, routers, switches, databases and servers;* - *Experience with Network Intrusion Detection/Prevention, Security Information Event Management products (SIEM);* - Have knowledge with planning, demonstrating, discussing, tracking and resolving security and compliance Issues; - Knowledge of current landscape and future trends in information security, compliance, and risk management; - Understanding of common security flaws in Web Applications (OWASP Top 10); - *Working knowledge of industry regulations like HIPAA, Hitech;* - *Strong written/verbal communications skills;* - *Knowledge of and practical experience with various Internet protocols (e.g., DNS, TCPIP, SMTP, HTTP, SSL); and* - *Theoretical knowledge of various programming and scripting languages (e.g., .Net, Java, Perl, C#).* *With Warm Regards* PAWAN, [image: logo_final] Genuineit LLC *Certified Women Owned Business* Making IT Happen… [image: cid:[email protected]] Ph: 512 298 3758 [email protected] [email protected] [email protected] http://in.linkedin.com/pub/pawan-kumar/a6/818/4b3/ URL: www.genuineitllc.com [image: cid:[email protected]] According to Bill S.1618 Title III passed by the 105th US Congress, this message is not considered as "Spam" as we have included the contact information. If you wish to be removed from our mailing list, please respond with "remove" in the subject field. We apologize for any inconvenience caused. [image: download] -- You received this message because you are subscribed to the Google Groups "Open Source J2EE frameworks" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/open-source-j2ee-frameworks. For more options, visit https://groups.google.com/d/optout.
