REquest ID:589756
Title : Information Security Manager 4
Location: Trenton, NJ,USA.
JOB description:
RESPONSIBILITIES:
· Performs and manages the implementation of countermeasures or mitigating controls. Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices, research, malicious code reverse engineering, penetration testing, and threat intelligence.
· Assists in performance and coordination of Security Incident Response activities.
· Monitors and analyzes logs from various systems including, but not limited to Intrusion Detection Systems, Intrusion Prevention Systems, Firewalls, Routers, Switches, PCs, Servers, VPN, AIX, and LINUX log files.
· Performs periodic and on demand system audits and vulnerability assessments, including user accounts, application access, file system, external Web integrity scans, and SSL Certificates scans to determine compliance.
· Provide clear communications to management on various cyber activity.
· Monitors and maintains systems and procedures to protect agency data from unauthorized users.
· Coordinates with users to discuss issues such as computer data access needs, security violations, and programming changes.
· Works closely with 3rd party security partner to secure Authority data and assets.
· Provides organizational wide cyber security oversight through the establishment of a comprehensive and sustainable governance, risk management and compliance (GRC) framework and IT security policies, standards, guidelines and procedures.
Required skills:
· Prior Experience in network security design, architecture and implementation
· Prior experience working with IT Security Architecture, designing & deploying security solutions
· Prior recent experience and Domain expertise in Windows platform security and log analysis
· Domain expertise UNIX/Linux platform security and log analysis
· Domain expertise threat management
· Domain expertise authentication technologies
· Experience and ability to perform systems security or vulnerability analysis and design recommendations
· Experience and understanding of Network Layer concepts and technologies
· Packet-level understanding of basic TCP/IP protocols
· Experience and understanding of VPN technologies to include GRE and IPsec.
· Through knowledge and experience of IPS/IDS and Web proxies
· Through knowledge and experience security threats and security tools.
· Hands on configuration experience with Cisco Identity Services Engine
· Hands on configuration experience with Cisco ASA and Firepower firewalls
· Hands on configuration experience with Splunk
· Bachelor's degree in Computer Science
· At least one of the following current certifications: CISSP, CISM, or CRISC
· Configuration experience with F5 Web Application Firewall
· Hands-on experience with ethical hacking and incident response
· Previous experience in a Lead or Management role
· Domain expertise application security
· Experience with Security Audit projects
· Domain expertise database security and log analysis
· Experience in application security, authentication and access management