Job Description :
We have urgent requirement of 16-00392 - Security Engineer @ Tyson’s Corner, VA 12+ months Contract

LOCALS ARE PREFERRED

Job # : 16-00392
Job Title : Security Engineer
Job Location : Tysons Corner, VA
Travel Required : w/some travel to Baltimore 1x/month
Overtime Required : No
Position Type : Contract
Remote: No

Job Description :

Position Summary
Reporting to the Director of Information Security, the Security Engineer is a member of the IT Information Security department within Client Education Information Technology organization. The Security Engineer should be a highly technical and proficient with Information Security practices. The incumbent will be a self-driven technologist who works closely with others within the Security department as well as members of other Information Technology departments and business stakeholders to design, build, operate and monitor bleeding-edge security infrastructure, platforms, applications and tools to meet strategic and tactical security objectives as outlined in Client''s security information program. The Security Engineer will also leads security vulnerability assessments and work with technical managers, software development, and IT operations staff to mitigate or remediate vulnerabilities and manage technology risks across the enterprise.
The Security engineer will be responsible for the evaluation and implementation of a broad range of security technologies, processes and best practices. This calls for an experienced and resourceful engineer with the ability to interpret complex information and develop solutions to address security concerns in a timely manner. This role will also contribute to strategic information security operations and planning.

Major Responsibilities
Assist in the development of technology security requirements and standards aligned to business strategy, security policies and objectives, and technology development and operations processes
Provide evaluation, analysis, development and implementation of IT Security systems/technologies across all security domains, including the necessary documentation to ensure manageability of the systems post implementation
Enforce compliance with set controls, standards, policies and procedures while carrying out IT activities
Search for and analyze security technology to reduce risks in every information security segment. Research and suggest measures to improve IT related procedures, operations, processes and systems, specific to information security concerns, throughout organization
Implement penetration testing along with ethical hacking. Suggest and execute IT technologies, strategies and policies to guard company''s and customer''s information assets
Assist in the security risk analysis for current and new systems and recommend solutions for reducing exposure areas
Implement security program plans from the strategic unit of the security organization.
Support and provide consultancy for audit compliance actions. Implement periodic, on-demand project audits plus vulnerability analysis
Perform security vulnerability assessments to identify technical weaknesses; work with IT operations and software development staff to create mitigation and/or remediation plans, and manage regular and ad-hoc reporting to appropriate business and technology risk owners.
Develop security processes, procedures and performance metrics; deliver regular and ad-hoc security reports and briefings to management and technical audiences, as needed.
Develop and maintain documentation related to security processes, systems, procedures and events.
Analyze system logs/interact with external SOC to identify suspicious activities and take appropriate action
Assist infrastructure and application teams with prioritization of patches and security fixes following the vulnerability classification program
Coordinate with different groups to ensure that all application, network and OS environments are patched on a regular basis
Provide recommendations to mitigate risks through the appropriate use of technical, procedural, and administrative controls in accordance with legal and regulatory compliance standards and established industry best practice
Serve as an information security engineering subject matter expert; deliver guidance and awareness of security standards and requirements in cross-functional technology project settings and through development and delivery of formal and informal information security training
Experience
Bachelor''s Degree in Computer Science or Engineering, Management Information Systems, or a related technical field
6+ years of combined hands-on experience in technical security engineering, research and/or consulting
Demonstrated ability to build and operate technical security solutions at a global enterprise level
Strong understanding of enterprise, network, system/endpoint, and application-level security issues and risks
2+ years of experience with securing cloud platforms and services
Strong understanding of TCP/IP networking; comfort working with Linux and Microsoft Windows-based system platforms
Demonstrated experience with the following types of security technologies: distributed denial of service (DDoS) tools and services, network access control systems, network and application firewalls, IDS/IPS systems, data loss prevention, web proxy, vulnerability assessment platforms and tools, antivirus and malware prevention and analysis tools, and log management, correlation and security information and event management platforms and tools.
Understanding of network, system and application hardening techniques, processes, tools, standards and benchmarks
Experience with automating and scripting tasks in engineering or security incident handling scenarios
4-year degree or job-related certification required with advanced degree or additional certification preferred. (e.g. CISSP, CISA)
Knowledge of IS27001 and similar standards is preferred
Distinguishing Characteristics
Excellent communication skills.
Propensity and willingness to learn new technologies.
Self-starter, able to work in a fast paced environment and comply with tight deadlines.
Detail-oriented, organized and analytical approach to performing work
Client Education, Inc. is an equal opportunity employer.


Thanks & Regards
Andy
Keylent INC.
Phone: 4 0 7 5 4 5 5 1 8 0
E-Mail: andy AT keylent DOT com