Job Description :
Title: Information Security Engineer
Duration: 6 months contract with potential extensions
Location: Foster City, CA, Ashburn, VA, Denver, CO, or Austin, TX.
Must have skills: Must have Direct ISE experience 3-4 years. Must have experience with TACACS 802.x. Must have AAA and CMS (Card Management System) HID Product experience.
Nice to have skills: Linux and Windows experience.
Roles and responsibilities
Will be updating all CMS''s. Creating and managing the process.
Job Description
This is an individual contributor role, working closely with multiple teams distributed globally. This position requires the candidate to be flexible in the ability to coordinate various responsibilities and duties in order to properly support the various corporate authentication solutions. This position serves as a Staff Information Security Engineer, who can work independently with minimal guidance, as well as closely with multiple teams and teammates in other regions; executing on a wide range of deliverables and ownership of authentication infrastructure and services, common examples would be deployment of new servers and network appliances. Ability to read and understand complex network designs. Operational and engineering support is required for Cisco security appliances (Cisco Client/Client) and Windows 2012 hardware. Candidate should have a strong understanding of public key infrastructure, Microsoft certificate authorities. Additional skills would include experience with 802.1X, RADIUS and TACACS, complete solution delivery to work with many different types of endpoints. Candidate should also possess a strong understanding and experience in the following, wired and wireless 802.1X authentication from both server and client perspective. Knowledge of network based ACLs on switching, wired and wireless devices and an advanced understanding of how firewall technologies function.
Responsibilities:
Plan and execute changes and updates involving complex Windows engineering tasks
Plan and execute changes and updates involving complex Cisco Appliance engineering tasks (ISE2.x, ACS5.x)
Comprehensive understanding of Windows registry, IIS, Apache/Tomcat
Security Patching on Windows and other solutions
Familiarity with ITIL concepts
Work closely with other senior level analyst/team mates as functions are related
Work closely with other senior level team mates in exercising security best practices across the various authentication products we support
Maintain high level of technical acumen
Support for hardware based authenticators (Key Fobs, Smartcards, etc
Provide technical advice and input for the support of integrated security systems and solutions
Collaborating with other departments, teams for providing best end user experience while managing and minimizing risks to our environment
Provide third level support for Visa’s global network security and end user authentication technology
Responsible for Visa Client BYOD/Guest Wifi environment including process and customer experience
Monitoring of Incident, Problem and Change Management Queues
Documentation of procedures on Sharepoint and or Wiki
Practice of good communication skills within team and organization
Focus on customer experience
Other duties as assigned
Qualifications
7+ years of experience in knowledge/familiarity of various information security systems
Professional information security certification (i.e. CISSP, Security +, GIAC, etc
7+ years system administrative experience on mixed environments
7+ years demonstrated competence in a variety of IT concepts, practices and procedures
3+ years of enterprise networking
Knowledge/Familiarity with Networking, Cisco Client, Cisco Client, AAA, TACACS and 802.1X concepts
Solid experience and understanding of scripting languages
Familiar with ITIL concepts such as Incident, Change, and Problem Management