Deadline is Monday. security tools (e.g., ISS, SATAN, CyberCop, Netsonar, sniffers, war-dialers etc.), internally and externally to identify network security weaknesses in order to recommend system enhancements.
Direct experience with personal computers, networks, routers, mid-range computers and client/server computing environments is required. Also requires experience and some level of familiarity or experience with Internet protocols, services and languages (TCP/IP, SSH, Telnet, FTP, HTML), MS-Windows (Win-NT, Win 2000, Win XP), MS-Office, UNIX, Netegrity SiteMinder, NetIQ tools, SYBASE, ORACLE, BEA WebLogic, Visual Basic, C++, Powerbuilder and other development languages. Direct experience with personal computers, networks, routers, mid-range computers and client/server computing environments is required. Also requires experience and some level of familiarity or experience with Internet protocols, services and languages (TCP/IP, SSH, Telnet, FTP, HTML), MS-Windows (Win-NT, Win 2000, Win XP), MS-Office, UNIX, Netegrity SiteMinder, NetIQ tools, SYBASE, ORACLE, BEA WebLogic, Visual Basic, C++, Powerbuilder and other development languages. Systems Architect - Information Protection Business Unit Location US-New Jersey RESPONSIBILITIES The Systems Architect - Information Protection works with management to research, design, and assist in the development, specification, communication and implementation of the security architecture in conjunction with the corporate architecture plan. In addition to the architecture plan, the individual in this position will also be responsible for assisting with development of toolsets to permit security monitoring, vulnerability analysis, and security incident response and follow-up. The Systems Architect - Information Protection will periodically perform or assist with risk assessments to either confirm the adequacy of security controls or to identify the improvements necessary in order to both ensure compliance with company policies, procedures and regulatory requirements, and to protect the overall accuracy and reliability of company data. This position will also help to direct and update existing security administration policies, standards and procedures, and mentor security administration functions under direct control of the Information Protection Team. Specifically, the Systems Architect - Information Protection will be responsible for the following: � Devoting a minimum of 25% of time to the Enterprise Architecture process to assist senior staff in the development and maintenance of the corporate architecture including the security roadmap and plan. Assist in the analysis and recommendation of new technologies and methodologies. � Assist the Director of Information Protection in developing and maintaining an overall information security program to provide coverage to all information systems functions within the company. This will include: � Development of the Security Roadmap and plan. � Recommending, developing and implementing internal security policies, standards or procedures. � Developing cost/benefit analysis or justification for any new security related expenditures. � Helping to maintain adequate security settings in/on all systems components to comply with established policies and/or best practices. � Establishing platform specific security policies and procedures wherever required. � Assisting in rollout, training and Team Player awareness for all information security related policies. � Working with external audit to identify security related exposures for purposes of general controls improvement or obtaining or maintaining ratings or certifications (e.g., TruSecure ICSA certification). � Utilizing security tools (e.g., ISS, SATAN, CyberCop, Netsonar, sniffers, war-dialers etc.), internally and externally to identify network security weaknesses in order to recommend system enhancements. � Test, install and maintain security infrastructure tools. � Ensure that patches and fixes for security vulnerabilities are analyzed, tested and installed. Qualifications EDUCATION REQUIREMENT: B.S. in Computer Science preferred, (CISSP, MCSE or similar designations are strongly preferred). EXPERIENCE REQUIREMENT:As an experience base, the following background is desired: � Five to seven years of prior information technology experience with a concentration of that experience in a technical and/or security related capacity. � At least three, typically five or more years experience in information security and/or systems architectural methodologies, design and analysis or an equivalent combination of education and experience. Requires some knowledge of architecture (applications, data and/or technology), consultative and communication skills, the ability to work effectively with IT management and staffs.
