Job Description :
Shift Timings: 08.00 AM – 05:00 PM CST
Location: Dallas, TX 75261
Job Description:
The person will be working on a McAfee DLP project deployment and management. DLP is Data Loss Prevention.
McAfee DLP experience in policy management. McAfee EPO experience on tasks management, McAfee ePO and DLP host and troubleshooting, McAfee DLP Incident and Case management.
SIEM (Security Information and Event Management): Must have experience extracting pertinent security data, setting up SIEM solutions and troubleshooting connectivity issues.
Install and maintain SIEM, IPS, DLP and APT tools like RSA Netwitness, Cisco Sourcefire, McAfee DLP, Whole Disk Encryption, BeyondTrust, Shavlick, Cylance, Proofpoint Email Gateway, Skyhigh, Landesk MDM,
BCWipe, Shavlick, Tripwire, Cloudvisory
Monitor system logs, SIEM tools and network traffic for unusual or suspicious activity. Interpret such activity and make recommendations for resolution with the help of InfoSec Team Lead
Firewalls/IPS/IDS – Must have In-depth knowledge of how they work and are used to protect an enterprise
Excellent understanding of PKI Technologies, Keys and Certificates Management, IdM (NetIQ), multi-factor authentication
intrusion incidents, conduct forensic investigations, and mount incident responses
Collaborate to create robust authentication, authorization, and encryption solutions that can be verified to implement company''s Information Security Policy
Evaluate new technologies and processes that enhance security capabilities in the areas of data classification and handling, DLP, IDS/IPS, end-point protection (mobile and desktop), monitoring, incident
management, etc.
Ensure appropriate security access and protection against unauthorized access, modification, or destruction
Understanding of encryption, hashing, secure random number generation, key derivation, digital signatures, etc.
Knowledge of network based, system level and application layer attacks and mitigation methods, and TCP/IP, HTTP/S, and related protocols.
Have working experience and knowledge of UNIX, and Linux (Redhat, Centos) operating systems and Windows 2012 & 2016 operating systems
Test security solutions using industry standard analysis criteria
Deliver technical reports and formal papers on test findings
Respond to information security issues during each stage of a project''s/incident''s lifecycle
Provide technical security advice
Implement or coordinate remediation required by audits, and document exceptions as necessary
Perform installation and configuration management of security systems and applications, including policy assessment and compliance tools, network security appliances and host-based security systems
Collate security incident and event data to produce monthly exception and management reports
Report unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation processes.
Assist team members in the use of security tools, the preparation of security reports and the resolution of security issues.
Research, recommend, evaluate and implement information security solutions that identify and/or protect against potential threats, and respond to security violations with the help of Infosec Team Lead
Recommend, schedule and/or apply fixes, security patches and any other measures required in the event of a security breach
Tests and recommends security measures to reduce and mitigate risk
Qualifications and Education Requirements:
BS degree required, preferably a degree in computer science, engineering, cyber security, or a related subject
3 - 8 years'' experience implementing Security solutions
2+ years McAfee DLP experience and understand DLP 11.
MUST have Hands on, direct experience with McAfee DLP:
Experience with a broad range of security technologies, including NextGen Firewalls, DLP, NAC, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management
SIEM Technologies (RSA Netwitness, ArcSight, QRadar,etc)
IDS/IPS, penetration and vulnerability testing
Working experience with industry frameworks (ISO 27001, ISO 27002, NIST 800-171
Strong knowledge of technology and security topics including network security, wireless security, application security, infrastructure hardening and security baselines, web server and database security
Knowledge of network infrastructure, including routers, switches, firewalls, and associated