Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Jobs InfoSec Jobs

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This listing has expired and therefore is not publicly viewable.

Senior Security Engineer
Company COCC
Location Rocky Hill, CT or Remote
Preferred GIAC Certifications GDSA, GCED, GSEC
Travel 5%
Salary Not provided
URL https://usr58.dayforcehcm.com/CandidatePortal/en-US/COCC/Posting/View/575
Contact Name Ryan Greenier
Contact Email ryan.greenier/at/cocc.com
Expires 2020-10-23

Job Description

Responsible for designing and building security solutions, security architectures, technical security standards, and technical security baselines. These may include but are not limited to NGFW, WAF, DLP, IAM, and cloud security controls.

Assess current-state security controls, capabilities, and their effectiveness.

Develop roadmaps for technical talent and procedural improvements.

Awareness of the latest network & application security trends.

Drive the technical architecture and implementations for security solutions while providing technical leadership and strategic direction for security functions.

Coordinate with other InfoSec teams, Technology Services, DR/BCP, legal, Human Resources and other business groups while developing, implementing, and engineering security architectures and their solutions.

Provide architecture & engineering oversight to all security incidents, processes and escalations to determine the root cause and extent of the incidents.

Requirements ::

Bachelor’s degree required, IT/IS required or commensurate experience

GDSA, GCED, vendor-specific security certifications, or equivalent certification(s) or experience required.

Ability to manage projects & proven experience required.

10+ years’ experience in a technical information or network security role.

Experience mentoring junior staff and colleagues.

Deep knowledge of security architecture & engineering principles including network-centric and data-centric security.

Knowledge of DNS, email, web technologies, TCP/IP, applications of cryptography, and data-exfiltration principles.

Strong networking knowledge and packet-analysis capability.

Ability to program/code is required (any modern interpreted language).

Understanding of Linux and Windows security principles.

Deep understanding of Linux and working with Linux-based systems.

Deep thinker, capable of taking initiative, working well alone and as part of a team, willing to always learn & grow, and an ability for attention to detail required.