*Hi, Hope you are doing great!* *Please go through the below requirement & if you feel comfortable forward your updated resume so that I can get back to you.*
*Please send me your resumes at **b...@corpemail.generalconsulting.us*<b...@corpemail.generalconsulting.us> * or call me at 484-725-6002** **for further details* * * *Requirements Details:* ***Title: Senior Security Engineer* Location: Santa Clara,CA Duration: Contract Responsibilities: - Proactively look for ways to improve network and infrastructure security practices - Take a leadership role in driving internal security and privacy initiatives to secure a SaaS environment - Run vulnerability assessments, using Qualys, and conduct security reviews on a regular basis - Define configuration and hardening standards for systems, databases and applications - Management/review of *nix & Windows host security configuration and architecture - Management/review of database and middleware (Apache, Tomcat, Jboss) security configuration and architecture - Perform Vulnerability assessments & penetration testing and validating of aspects of SaaS applications and infrastructure - Proactive research to identify and understand new threats, vulnerabilities, and exploits - Review IDS, Firewall, and log correlation tools for potential threats - Definition and enforcement of system and network security policies - Assist with evaluation of proposals and the implementation of best security practices - Assist in the definition and implementation network security policies and procedures - Provide risk analysis for vulnerabilities, incidents, and change requests *Required Skills/Qualifications:* - Degree & 5+ years of related experience - Strong security foundation (e.g. CISSP, GIAC,) - Experience securing large-scale web applications - Experience with one or more scripting or programming languages (e.g. Perl, C, Shell, Python, Ruby) - Exposure to open source infrastructure management, automation, and security tools. - Good understanding with standard security/ and networking troubleshooting tools (e.g. Nessus, Nmap, tcpdump/wireshark, snort, burp, etc) - Working knowledge with Oracle, mysql, and mssql - Good understanding of ISO 27001 and PCI-DSS v2.0 - Experience with Splunk, OSSEC, McAfee ePolicy Auditor, RedSeal, MVMD, and web application firewalls - Positive attitude and ability to think and work independently - Ability to handle conflicting priorities of different stakeholders, conduct difficult conversations and deliver results in a fast moving SaaS environment - In-depth understanding of exploiting and protecting web applications and services against security vulnerabilities including OWASP top 10 * * ************************************************************* * * *Title: Senior Security Engineer* Location: Santa Clara, CA Duration: Contract Research, design, implement, and troubleshoot information systems and technology solutions in support of business needs. Document help desk troubleshooting procedures, operations manuals, and user guidance. *Responsibilities:* - Respond to incoming security-related issues - Daily review of security logs from McAfee ePolicy, Splunk, and OSSEC - Perform vulnerabilities testing and penetration testing - Generate Qualys and MVMD reports as necessary - Validate vulnerabilities based on reports through Qualys and RedSeal - Proactively look for ways to improve network and infrastructure security practices - Take a leadership role in driving internal security and privacy initiatives to secure a SaAS environment - Functions as technical lead during a security incident response - Assist in developing technology to automate security monitoring - Provide technical security recommendations and identifies requirements based upon need or as the result of a security issue that puts organizations systems at risk. - Proactive research to identify and understand new threats, vulnerabilities, and exploits - Assist with evaluation of proposals and the implementation of best security practices - Provide risk analysis for vulnerabilities, incidents and change requests - Monitoring IDS, Firewall, and log correlation tools for potential threats - Assist in configuration and hardening standards for systems and applications - Assist in vulnerability assessments & penetration testing of all aspects of our infrastructure - Assist in defining, implementing and enforcing system and network security policies - Create, maintain, and document security baselines - Management/review of *nix & windows host security configuration and architecture - Assists in developing a model for our vulnerability program and event logging, monitoring program *Required Skills/Qualifications:* - Degree + 7 years of experience are required. - 3+ years of experience in network, server or application security positions and solid working hands-on of Unix/Linux operating systems - Strong security background with industry certifications, including Certified Ethical Hacker, Global Information Assurance Certification (GIAC) and CISSP, among others. - Knowledge of regulatory and compliance such as PCI, ISO, & SSAE16 - Experience with developing and implementing IT security plans and Internet security - Exposure to open source infrastructure management, and automation, and security tools. (Nessus, Nmap, tcpdump/wireshark, snort, burp, etc) - Experience with Splunk, OSSEC, McAfee ePolicy Auditor, RedSeal, and MVMD - Experience and expertise with ethical hacking, firewall and intrusion detection/prevention technologies, secure coding practices and threat modeling - Ability to perform threat, vulnerability and risk assessments against environment - Ability to perform security tool administration providing risk analysis of Vulnerability scanners (Qualys), and incidents - Security event logging & monitoring analyzing Intrusion Detection/Prevention System (IDS/IPS) and firewall logs, sys logs, event logs, etc - Positive attitude and ability to think and work independently * * *Please fill these details**:* *Consultant’s Details:* *Full Name: * *Contact Number:* *Current Location & Address:* *Email ID:* *Availability:* *Visa Status:* *SSN (Last 4 Digits):* *DOB (MM/DD/YY):* *F2F interview:* *Relocation:* *Highest Degree & passing Year**:* * * * * *Employer’s Details:* * * * * *Regards:* *Bill Gary** **Technical Recruiter* *GENERAL CONSULTING SERVICES 400 East Lancaster Avenue, Suite # 3, Wayne, PA - 19087 Desk: **484-725-6002** Fax: 610-482-9315** Email: **b...@corpemail.generalconsulting.us*<b...@corpemail.generalconsulting.us> *Website: **www.generalconsulting.us* <http://www.generalconsulting.us/> *ytalk:gcs.bill* *Gtalk:billgarry7* *P* *Save a tree! Print this message only if it's absolutely necessary*** -- You received this message because you are subscribed to the Google Groups "Oracle-Projects" group. To unsubscribe from this group and stop receiving emails from it, send an email to oracle-projects+unsubscr...@googlegroups.com. To post to this group, send email to oracle-projects@googlegroups.com. Visit this group at http://groups.google.com/group/oracle-projects. For more options, visit https://groups.google.com/groups/opt_out.
