*Security Engineer with PCI Needed in TX for 6+ Months Contract !!* Position: Security Engineer Location: Dallas, Texas Duration: 6+ Months
*Reply me on rachel.l...@itbtalent.com <rachel.l...@itbtalent.com> * A general Sys Admin is not a fit for this role. This person will be a focused Security Engineer. They must have experience running vulnerability assessments. It is a vulnerability and threat management role from a security perspective. Need to understand security inside and out. 10 domains of the security model learned in CISSP. CISSP is highly desired. If they have it, they must supply their cert #. They need PCI 3.0 or at minimum 2.0. 1.0 is too old and outdated. Key areas of strength are Firewall, Network, OSI, identifying and mitigating vulnerabilities. They will have an understanding of both Sys Admin(LINUX, Servers, etc…) and Network Admin (OSI, network operating systems, etc…) Top 3 skillsets 1. Security (avoid risk) 2. Vulnerability management (at least one vulnerability tool) 3. PCI (not on regulatory/audit perspective, but from a vulnerability perspective. They will remediate the vulnerability, not audit and patch PCI systems or answering questions about PCI disaster recovery) Requirements: The candidate must be an experienced information security analyst possessing advanced experience with the following: • 2+ years prior experience supporting, ideally leading, a Level 1 or Level 2 organization's PCI-DSS 2.0 compliance effort, working with ISA or QSA. • Deep understanding of PCI-DSS 3.0 requirements. • Analysis and review of security events until closure; this includes investigating and recommending appropriate corrective actions. • Conducting internal vulnerability assessments and scheduling of third party external scans. • Management and verification of user PCI security awareness & training. • Hands-on implementation of security devices and applications to monitor and review network, servers, and applications. Required: • The candidate must be a skilled information security professional with advanced knowledge and direct experience developing and implementing information security policies, standards and procedures for large organizations. Three+ years of progressive experience in computing and information security, including specific experience with Internet technologies and related security issues is required. • The candidate must have 2 years experience supporting & implementing security for a large organization assessed against PCI-DSS 2.0, and advanced familiarity with PCI-DSS 3.0. That organizational experience must be PCI-DSS Level 1 or Level 2. • Knowledge of regulatory compliance including but not limited to: OWASP, ISO 27001 and NIST • Two+ years experience with security technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls & Log Analysis, Security Information and Event Management (SIEM), Network Behavior Analysis tools, Antivirus, Network Packet Analyzers and malware analysis. • Experience implementing and executing security incident response. • BA or BS in Computer Science, Management Information Systems, or equivalent experience. • Must have excellent communication skills (written and verbal) and have the ability to communicate with all levels of staff and management. Preferred: • Previous or current PCI QSA or ISA certification. • CISSP, GIAC, CEH, Security+ and related security certifications. Regards Rachel Lian Technical Recruiter Desk No :201-855-4204 Princeton Forrestal Village 116 Village Blvd, Suite 200 Princeton - New Jersey 08540 rachel.l...@itbtalent.com | Gmail:rachel.lain...@gmail.com www.itbrainiac.com If you prefer not to receive emails from us, simply reply to this e-mail with the word "REMOVE" in the subject line. -- You received this message because you are subscribed to the Google Groups "SAP or Oracle Financials" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-or-oracle-financials+unsubscr...@googlegroups.com. To post to this group, send email to sap-or-oracle-financials@googlegroups.com. Visit this group at http://groups.google.com/group/sap-or-oracle-financials. For more options, visit https://groups.google.com/d/optout.
