Email me newest jobs similar to this one
4 months ago
only 7 days until close

Senior IT Security Engineer


Atlas Air
Location: New York, United States
Job type: Permanent
Sector: IT & Communications
Category: Engineers
Apply
Select how you want to share:
View similar
Overview:

This position is responsible for designing, evaluating, and implementing security technologies and performing architectural security assessments for network and system implementations.

Responsibilities:

* The position will encompass maintaining integrated programs to protect the integrity, confidentiality, and availability of the organization's technology infrastructures and information resources. Support detailed risk analysis assessment of applications, networks and systems.
* Oversee overall system design for IT Security technologies. Design and oversee implementation of hardening strategies for IT Security systems, backup and recovery, high availability, scalability and performance
* Research and evaluate new technologies and solutions and present recommendations. Work with solution vendors to coordinate proof of concept testing of proposed solutions. Participate in development of requirements and RFPs.
* Oversee engineering aspects of network security monitoring environment (IDS, malware sandboxing, packet capture) including scalability, performance, and tuning. Design, present, and implement strategies to maintain ongoing effectiveness of these systems.
* Oversee security engineering aspects/design issues for content filtering/interception (Bluecoat, WAF) including SSL interception, authentication, and ICAP.
* Design strategies for security monitoring of new systems as they are introduced
* Work with architecture group to design security schemes for infrastructure projects
* Review technical designs and proposals for adherence to information security principles and standards
* Provide guidance and education to other groups within the Information Technology function, including Infrastructure Architecture, Application Architecture, Network Operations, System Operations, and Application Development groups.

Qualifications:

* The qualified candidate must have at least 7 years’ experience working with Network Infrastructure and at least 5 years’ experience in IT Security
* Strong understanding of the TCP/IP protocol suite, OSI model, IP, UDP, and network services such as DHCP and DNS
* Strong understanding of standard authentication protocols
* Strong experience with layer 2 and 3 networking technology and protocols, routing and switching, SPAN/Tap technology
* Implementation experience with Cisco ASA firewalls, routers, VPN and other devices including switches, wireless access points, DMZ, IP addressing, and VPN solutions is desired
* Strong understanding of SSL/TLS is required
* Experience with Intrusion Detection/Prevention technology and writing signatures
* Experience with implementing multifactor authentication technology
* Experience with TACACS/RADIUS is strongly desired
* Understanding of Syslog/SNMP is strongly desired
* Experience with Active Directory security is required.
* Experience with digital certificate technology including CA management, SSL encryption and key protection.
* Experience with implementing and maintaining PKI strongly desired
* Experience with OAUTH desired
* Experience with secure configuration of IIS, Microsoft SQL Server desired.
* Bluecoat Proxy experience strongly desired
* Experience with the following products is desired: Riverbed Cascade, ArcSight ESM and Logger; Tripwire; SNORT, Gigamon, FireEye, Cisco ISE, Cisco ACS, Cisco IOS, and general network security management and logging applications.
* Experience with SPAN port replication/aggregation technology is desired.
* Experience with auditing wireless security is desired.
* Experience assessing and implementing security mechanisms and monitoring systems
* Experience with scripting (e.g. Python/Perl/Powerhell) is desired
* S. Degree in Computer Science or related field and/or 5 to 7 years related experience.
* Diagramming with Visio or similar tools desired
* Excellent oral and written communication skills.
* Must be able to translate technical security concepts into lay terms
* Must be comfortable presenting in front of technical and non-technical audiences
* Understanding of NIST standards for Information Security strongly desired
* CCIE Security, CISSP, GIAC or similar security certification strongly desired.
Overview:

This position is responsible for designing, evaluating, and implementing security technologies and performing architectural security assessments for network and system implementations.

Responsibilities:

* The position will encompass maintaining integrated programs to protect the integrity, confidentiality, and availability of the organization's technology infrastructures and information resources. Support detailed risk analysis assessment of applications, networks and systems.
* Oversee overall system design for IT Security technologies. Design and oversee implementation of hardening strategies for IT Security systems, backup and recovery, high availability, scalability and performance
* Research and evaluate new technologies and solutions and present recommendations. Work with solution vendors to coordinate proof of concept testing of proposed solutions. Participate in development of requirements and RFPs.
* Oversee engineering aspects of network security monitoring environment (IDS, malware sandboxing, packet capture) including scalability, performance, and tuning. Design, present, and implement strategies to maintain ongoing effectiveness of these systems.
* Oversee security engineering aspects/design issues for content filtering/interception (Bluecoat, WAF) including SSL interception, authentication, and ICAP.
* Design strategies for security monitoring of new systems as they are introduced
* Work with architecture group to design security schemes for infrastructure projects
* Review technical designs and proposals for adherence to information security principles and standards
* Provide guidance and education to other groups within the Information Technology function, including Infrastructure Architecture, Application Architecture, Network Operations, System Operations, and Application Development groups.

Qualifications:

* The qualified candidate must have at least 7 years’ experience working with Network Infrastructure and at least 5 years’ experience in IT Security
* Strong understanding of the TCP/IP protocol suite, OSI model, IP, UDP, and network services such as DHCP and DNS
* Strong understanding of standard authentication protocols
* Strong experience with layer 2 and 3 networking technology and protocols, routing and switching, SPAN/Tap technology
* Implementation experience with Cisco ASA firewalls, routers, VPN and other devices including switches, wireless access points, DMZ, IP addressing, and VPN solutions is desired
* Strong understanding of SSL/TLS is required
* Experience with Intrusion Detection/Prevention technology and writing signatures
* Experience with implementing multifactor authentication technology
* Experience with TACACS/RADIUS is strongly desired
* Understanding of Syslog/SNMP is strongly desired
* Experience with Active Directory security is required.
* Experience with digital certificate technology including CA management, SSL encryption and key protection.
* Experience with implementing and maintaining PKI strongly desired
* Experience with OAUTH desired
* Experience with secure configuration of IIS, Microsoft SQL Server desired.
* Bluecoat Proxy experience strongly desired
* Experience with the following products is desired: Riverbed Cascade, ArcSight ESM and Logger; Tripwire; SNORT, Gigamon, FireEye, Cisco ISE, Cisco ACS, Cisco IOS, and general network security management and logging applications.
* Experience with SPAN port replication/aggregation technology is desired.
* Experience with auditing wireless security is desired.
* Experience assessing and implementing security mechanisms and monitoring systems
* Experience with scripting (e.g. Python/Perl/Powerhell) is desired
* S. Degree in Computer Science or related field and/or 5 to 7 years related experience.
* Diagramming with Visio or similar tools desired
* Excellent oral and written communication skills.
* Must be able to translate technical security concepts into lay terms
* Must be comfortable presenting in front of technical and non-technical audiences
* Understanding of NIST standards for Information Security strongly desired
* CCIE Security, CISSP, GIAC or similar security certification strongly desired.
Apply

Email me newest jobs similar to this one

  Back to the top