Hi ,
I hope you are doing well. I do have new requirement please gothrough it if you are comfortable send me updated resumes skumari@sagetl.com
Title: Forensics Engineer
Location: King of Prussia, PA
Duration: 3 month contract to hire - no additional fees after 3 months
Interview: Face to Face
Security Operations, Incident Response and Forensics Engineer The Enterprise Security Operations Engineer supports the CSL Information Security Program in the key areas of information threat detection, response and remediation, as part of a team of security operations professionals.
The focus of this engineering position is level 3 incident response activities and forensics analysis, and also participates in the development, implementation and operations of all preventative and detection security controls and reporting. This position reports to the Senior Manager, Security Operations. This engineer is a key contributor to the technical and operational success of overall Information Security Program and leads security incident response and forensics activities. As a member of the Information Security and Risk team, this engineer:
* Supports and continually improves the CSL Information Security Program
and the Enterprise Security Operations programs
* Participates in the development, operations, and improvement of the
CSL Continuous Monitoring Program, Security Information and Event Management (SIEM), all related tools and processes
* Responds as the technical lead for detected security threats, leads
the coordinated management of the response activities, and develops incident reports as part of a 24x7 security operations team
* Provides technical expertise and response activities, while
collaborating with vendor-supplied technical support and other subject matter experts
* Participates as a technical security lead and coordinates with other
technical teams to respond, continually assess, and improve these security
operations:
* Antivirus Management and Response
* Computer Incident Response / Forensic Event Analysis
* Log Management
* SIEM Management
* SPAM Filtering Management
* Vulnerability Management
* Web Filtering Management
* Provides on-demand and scheduled investigations of security threats
and compromised systems
* Collaborates on security controls and tool efficacy analysis, and
reports areas of improvements for strategic attention
* Participates in the development of the Enterprise Security Operations
team, and helps to grow its capabilities, experience and expertise
* Develops and maintains security reports, dashboards and alerts to
create an overall situational awareness of the threats to CSL
* Develops and analyzes metrics and reporting to provide continuous
improvements for all Security Operational controls and processes
* Reviews and supports the enhancement of all Security Policies,
Procedures, Guidelines and Standards
* Utilizes available training, peer knowledge transfer and other
publically available curriculum to continually improve subject matter expertise and professional development
Qualifications
Basic Qualifications
* Bachelor's degree in Information Technology or related discipline from
an accredited college or university, advanced degree or other professional certification in Management Information Systems
* 7 to 10+ years of professional experience in network or data security
* 7 to 10+ years of professional experience in Information Technology
* At least 5 years of experience working with complex, large-scale
technical environments
* 3+ year of professional experience in Information Security or related
work experience
* Experience and understanding of ISO and NIST security frameworks
* Good communication skills are required
* Networking and Linux knowledge is highly desirable
* Previous Incident Response and Security Forensics experience is highly
desirable
Additional Qualifications/Knowledge
* Experience in working within a global, matrix management organization
is highly desirable
* Experience working in an international, 24x7 environment is preferred
* Experience working in a controlled regulatory or pharmaceutical
environment is a plus
Skills and Abilities
* QRadar or other SIEM experience
* Process-oriented incident response skills
* Security forensics experience is highly desirable
* Metasploit, Kali, Sift and related security testing tools experience
is a plus
* Scripting/programming proficiency, including VB, Pearl, Python, and/or
PowerShell is a plus
* Experience with information privacy and security laws (covering such
items as data breaches, safe harbor, records management and
structured/unstructured data management) is a plus
* Excellent interpersonal and presentation skills with the ability to
speak in front of technical staff or senior management
* Strong project management and leadership skills
Certifications
CISSP/ISC2, GIAC, ISACA or related technical security certifications are desirable Security Appliances, Scripting/Programming, and/or Operating System certifications This position is provided the regular opportunity to seek security training and certifications
Thanks & Regards,
Soni Kumari
Technical Recruiter |Sage Group Consulting Inc
3400 Highway 35S, Suite #9 Hazlet NJ 07730
Phone : 732.767.0010 x 450 | Direct: 732-856-5824
Email : skumari@sagetl.com
You received this message because you are subscribed to the Google Groups "IT JOBS in USA" group.
To unsubscribe from this group and stop receiving emails from it, send an email to it-jobs-in-usa+unsubscribe@googlegroups.com.
To post to this group, send email to it-jobs-in-usa@googlegroups.com.
Visit this group at https://groups.google.com/group/it-jobs-in-usa.
For more options, visit https://groups.google.com/d/optout.
No comments:
Post a Comment