Job Description :
Job Description
Position: DLP Security Engineer
Location: Richmond, VA
Duration: 6+ months
Description:
Security Engineer needed (Infrastructure Department)
Key experience consultants must have:
Experience with Forcepoint DLP (data loss protection)
Trend Micro Antivirus experience
Extensive Vulnerability experience. - they use Nessus and Net Sparker (must have 1 of these)
Firewall experience (they use Palo Alton, ASA, and NSX)
Must be energetic and a true go-getter. Need someone who wants to learn new things and can make suggestions to improve the security of their networks
Must have 5+ years of True IT Security
Duties/Responsibilities:
Engineering, implementing and monitoring security measures for the protection of computer systems, networks and information
Secures and hardens VHDAs infrastructure including but not limited to systems, networks, endpoints, SaaS integrations, and cloud resources
Proactively protects the confidentiality, integrity and availability of information in the custody of or processed by the company by: Responding in a timely manner to a loss or misuse of network assets; participating in investigations of suspected network misuse or in compliance reviews as requested; communicating unresolved network security exposures, misuse, or noncompliance situations to management
Reviews network and system changes on a weekly basis, provides technical recommendation, risks and impact analysis
Analyzes reports from various reporting tools to identify potential faults and provides recommendation for improvements
Coordinates threat intelligence gathering and converts data into actionable detection and prevention methods
Performs internal and external penetration tests
Collaborates with operational teams to identify, resolves and mitigates risk and vulnerabilities
Monitors daily threat intelligence research and interacts with external security organizations
Maintains endpoint security baseline standards and policies and ensures compliance with Desktop Engineering
Reviews operation logs and event console activity to determine cause of network security-related events or to identify potential security-related events
Ensures all systems and networks are being monitored and logged
Implements automation for security tasks
Supervises the installation of new software and hardware
Analyzes and implements new security protocols and technologies
Maintains the integrity of hardware and software
Assists IT Operations with patching and vulnerability management
Stays informed of emerging security technologies and evaluates their value to the organization''s operations
Knowledge/Skill Requirements:
Experience with large scale systems, networking and security infrastructure
Hands on experience with Windows, Linux OS hardening and critical services like DNS, Active Directory, Proxy, etc.
Threat/Intrusion Detection, Vulnerability Management, & remediation techniques
Strong knowledge of security concepts and technologies such as IDS/IPS, VPNs, D/DoS
Experience of Security Controls in public cloud is a plus
Experience in supporting the security part of NSX is a plus
Experience in Microsoft E5 Security Suite (O365/Azure), Infoblox, Palo, ASA is a plus
Expert in common security tools used in an enterprise setting such as Tenable Security Center, Wireshark,
Metasploit, Snort, Backtrack, BurpSuite, etc.
Experience in two or more of the following security domains: network investigations, OSINT, threat hunting, threat intelligence, security engineering, pen testing, digital forensics (computer, memory, network, cloud, virtualization), malware analysis.
Experience using Security Information Event Management (SIEM) products and technologies such as Splunk, Archsight, Qradar, etc.
Experience in any scripting language like: Python, Perl, Shell etc.
Clear understanding of network protocols such as TCP/IP, HTTPS, SSH, TLS, DNS, SMTP, 802.1X etc.
Strong process management background with a keen interest in process development
Expertise to manage SOPs, process adherence by teams & an eye for continuous improvement
Excellent interpersonal and collaborative skills
Strong written and verbal communication skills with the ability to communicate security and risk-related concepts to both technical and non-technical audiences
Ability to multi-task, prioritize, coordinate and work well under pressure to meet deadlines
Ability to effectively adapt to rapidly changing technology and apply it to business needs and to marry multiple tools together to solve problems.
Strong analytical and problem-solving background.
Solid project management skills planning and monitoring projects, with ability to multitask and manage/co-manage multiple small to large projects in a cross-functional environment.
Solid analytical and problem-solving skills.
Ability to contribute to Network Operations efforts to establish and maintain a high level of customer trust and confidence in the team''s knowledge of and concern for customers'' business needs.
Team-oriented interpersonal and communication skills; ability to communicate complex technical information in a concise and articulate manner.
Ability to work with customers of varying levels of technical ability.