Senior Security Engineer

PRINCIPAL RESPONSIBILITIES:
* Perform network security audits and risk assessments; monitor Internet activity to ensure compliance with Company's Enterprise Information Security Policy. Work with both business and systems organizations to ensure timely resolution of any violations or findings and mitigate identified risks.
* Act as a point of contact for IDS incident handling. Perform investigations into network intrusions and access control violations.
* Work with Director on developing and updating security policies, procedures, and standards for the company.
* Identify and recommend new tools and technologies that could potentially identify and protect against attack. Perform R&D functions, exploring hardware and software security solutions with respect to attack and protection trends and new regulatory requirements.
* Consult on special projects that require effective security solutions. Assist with designing security infrastructure into new applications.
* Develop the annual security audit plan with the Director and manage plan to ensure proper priorities are established and maintained.
* Responsible for maintaining communication with security contacts at each subsidiary with respect to enhancing network security controls, disseminating information regarding advances in network security and newly identified risks.
* Analyze deficiencies in controls throughout the organization and design effective communication to reduce exposure for the company.
* Effectively interact with Human Resources and Legal to assure appropriate communications to the user community.
* Supports and consults with security administrators, network engineers, application developers and designers.

PROBLEM SOLVING:
* This position requires independent thinking and problem solving and the ability to resolve problems with minimal direction.
* This position will be required to participate in problem resolution and relationship building efforts in the applications development projects.

ACCOUNTABILITY/DECISION MAKING:
* The incumbent will have a high level of independence to implement standards and procedures within the area of enterprise information security.

SUPERVISORY RESPONSIBILITIES:
* This position will not have supervisory responsibilities but may act in a lead capacity on assigned projects.

EDUCATION/ EXPERIENCE:
* A degree in a technical discipline and/or 5 plus years experience in software information security.
* (ISC) Certified Information Systems Security Professional (CISSP).

TECHNICAL SKILLS:
* Expert understanding of the 10 Information Security Domains.
* Experience in network security designing, configuring, implementing security polices on firewalls, setting up DMZs, intrusion detection and response.
* Using security scanning and other security analysis tools.
* Experience in firewall log review and analysis to identify suspicious or malicious activity, system usage terms, and needed system modifications
* Ability to handle multiple and competing priorities.
* Software experience to include Microsoft Office, Visio, Microsoft Project, RDBMS, Development Platforms, and HTML.
* Working knowledge of Windows NT 4.0, Windows 2000, IIS and general TCP/IP networking and security concepts.
* Project management skills a plus.
* Ability to apply solid engineering principles to security problems.
* Experience in TCP/IP and network programming.

df-tc

Experience/Skills
Expert understanding of the 10 Info Security Domains. Exp in network security designing, configuring, implementing security polices on firewalls, setting up DMZs, intrusion detection and response. Using security scanning and other security analysis tools.
Exp in firewall log review and analysis to identify suspicious or malicious activity, system usage terms, and needed system modifications. Ability to handle multiple and competing priorities. Software experience to include Microsoft Office, Visio

Other desired skills:
Expert understanding of the 10 Info Security Domains. Exp in network security designing, configuring, implementing security polices on firewalls, setting up DMZs, intrusion detection and response. Using security scanning and other security analysis tools.