Job Description :
Hi,

Hope you are doing well.

Please find the job description below and let me know your interest.

Position: Sr. Security Consultant

Location: Fredrick, MD

Duration: 6+ months

Mode of Interview: Phone and F2F

Job Description:

ob Description:

As a Subject Matter Expert (SME) design, engineer and implement Web Access, Federation Services, Directory Services & Identity Management solution.
Also, provide support which could include instructions, documentation, service & troubleshooting in the environments that are supported to maintain key aspects of Service Delivery.


Position Overview:

Eight or more years of experience in an Information Security or Information Technology discipline with demonstrated experience in one or more the following:
Experience providing and validating security requirements related to cloud security for private, public and hybrid
Experience with providing security consulting services for global deployments
Experience providing and validating security requirements related to information system design and implementation
Experience providing and validating security requirements related to a broad range of operating systems and databases
Experience conducting risk assessments, vulnerability assessments, vendor and third party risk assessments and recommending risk remediation strategies
Experience in the use of tools and methods to identify security exposures and business risks
Knowledge of common information security standards, such as: ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT
Knowledge of OWASP top 10 and remediation’s of attacks against web applications. The ability to convey the risks to IT and business stakeholders
Familiarity with information system attack methods and vulnerabilities
Working experience with the design and engineering of web-based multi-tier information systems and architecture design
Working experience with web technologies, application firewalls and programming languages
Working experience with operating systems and database platforms
Working experience with mobile applications and mobile enterprise application platforms
Penetration Testing


Relevant Certifications / Qualifications:

One or more of the following certifications are required:

CISSP
ISO27001 Lead Auditor
CCP IA Architect / SIRA / IA Auditor
PCI QSA
CISM/CISA
CEH