Please let me know if you have anyone who would be a good fit for this Windows Security Architect/Engineer in Rockville, MD. This is for a 9 month contracting position and the bill rate range is open currently so please send me your best candidates. The consultant needs to have excellent communication skills and face to face interviews are required.
Major Purpose of Job: The Security Engineers task includes involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines and procedures as well as conducting vulnerability audits and assessments. The security engineer is expected to be fully aware of the enterprises security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals. Essential Job Functions: Strategy & Planning o Participate in the planning and design of enterprise security architecture, under the direction of the Assistant Vice President of Security, where appropriate. o Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines and procedures) under the direction of the Assistant Vice President of Security, where appropriate. Acquisition & Deployment : o Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors. o Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security. Operational Management : o Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). o Review logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution. o Participate in investigations into problematic activity. o Participate in the design and execution of vulnerability assessments, penetration tests and security audits. Technology Leadership: o Knowledge of Data Loss Prevention tools in the DAR (Data at Rest) and DIM (Data in Motion) area ; end point security for protecting USB ports, etc. o Knowledge and ability to develop security metrics Education/Experience Requirements: Experience: At least 10 years IT experience, with at least 5+ years information security experience Education: Bachelor’s degree in engineering or information systems. Masters preferred. Certifications: One or more of the following certifications: GIAC Information Security Fundamentals, CISSP, CISA, CISM, Platform: Experience with Windows 2003, Unix Solaris (9 and 10 is preferred). Databases: Experience with Oracle and MS SQL Server. Security Skills: Tools such as Vulnerability Scanner (Qualys, GFI Languard, Nessus, etc.), AD Security Tools like Hyena, etc. PII scanners, MS Tools, Log analysis tools. AV Tools such McAfee ePO, ISS IDS, SEIMs, etc. Extensive experience with securing networks, applications, servers, databases, etc. Experience with network and application vulnerability Experience with network and application vulnerability assessments Working technical knowledge of open source and commercial penetration testing tools Strong understanding of IP, TCP/IP, and other network administration protocols. (optional) Strong understanding of application security principles, software development lifecycle, change management, and auditing activities. (optional) Familiarity with application development, scripting, .NET General Skills: Excellent analytical, organizational, time management and problem solving skills are essential. Communication Skills: Excellent oral and written communication skills a must, including ability to interact effectively with executives, vendors, application business owners, technical project teams, and others. Working Conditions: Work is normally performed in an office environment. Extended hours and weekend work may be required Thanks & regards, Kuldeep Singh Purview IT, Inc. 4800 Braddock Knoll Way, Fairfax, VA 22030 Phone: (703) 880-3299 x203 | Cell: (703) 338-9879 | Fax: 1 (888) 268-7270 | Email: [email protected] | www.PurviewIT.com <http://www.purviewit.com/> |Yahoo IM: bluecooldeep Purview IT is SWaM Certified by State of VA. This transmittal is intended only for the sole use of the individual or entity to which it is addressed and may contain information that is privileged, confidential and exempt from disclosure under applicable law. Any review, copying, use, disclosure or distribution of this email (or any attachments hereto) by others is strictly prohibited. If you are not the intended recipient, please contact the sender immediately and permanently delete the original and any copies of this email and any attachments hereto. If you are the intended recipient, please be advised that the content of this message is subject to access, review and disclosure by the sender's Email System Administrator. All messages sent and received by Purview IT Inc are monitored for viruses, high-risk file extensions, and inappropriate content. cid:[email protected] --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "US_IT.Groups" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.co.in/group/us_itgroups?hl=en -~----------~----~----~----~------~----~------~--~---
<<inline: image001.png>>
