M+E Technology Job Board

Senior Information Security Engineer

  • linkedin
  • fb
  • twitter
  • google plus
  • email

DXC Technology

Description:

Build security into the fabric of your digital enterprise. Our industry-leading security solutions help you predict attacks, proactively respond to threats, ensure compliance, and protect data, applications, infrastructure and endpoints.

DXC Technology is currently seeking a Senior Information Security Engineer in the Los Angeles, CA area.

Essential Job Functions:

· Provide deep analysis on security offense scenarios and syslog data to determine appropriate correlation rules for QRadar SIEM.
· Provides engineering analysis, design and support for firewalls, routers, networks and operating systems. Performs vulnerability scans using vendor utility tools. Monitors security audit and intrusion detection system logs for system and network anomalies.
· Monitors user access process to ensure operational integrity of the system. Enforces the information security configuration and maintains system for issuing, protecting, changing and revoking passwords.
· Develops technical and programmatic assessments, evaluates engineering and integration initiatives and provides technical support to assess security policies, standards and guidelines. Implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications.
· Performs product evaluations, recommends and implements products/services for network security. Validates and tests security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies.
· Develops, tests and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools.
· Reviews and recommends the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security.
· Provides enforcement of security directives, orders, standards, plans and procedures at server sites. Ensures system support personnel receive/maintain security awareness and training.
· Maintains data and communicates to management the impact on business/customer caused by theft, destruction, alteration or denial of access to information.

Qualifications

Basic Qualifications:

· Bachelor’s degree or equivalent combination of education and experience

· Bachelor’s degree in computer science or related field preferred

· Four or more years of experience in network, host, data and/or application security in multiple operating system environments

· Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists

· Experience working with internet, web, application and network security techniques

· Experience working with relevant operating system security (Windows, Solaris, Linux, etc.)

· Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies

· Experience working with federal regulations related to information security (FISMA, Computer security Act, etc.)

· Experience working with NIST Special Publications and C & A process methodology

· Possess security certifications (CISSP, CCNA, etc) and/or top secret security clearance

Other Qualifications:

· 5+ years running/managing a VM product
· 5+ years running/managing a SIEM
· 1-2 years generating formal documentation
· Current working knowledge of generating security and system metrics
· Qualys Certified Vulnerability Management optional
· IBM Certified/Certified Advanced Deployment Professional (QRadar)
· Desired certifications: CISSP, CISM, CEH, GSEC, GNSA, GIAC, ITIL, and any Cisco certs
· Excellent communication skills and soft skills
· Excellent analytical and problem solving skills to troubleshoot and resolve network/operating system security issues
· Ability to perform and interpret vulnerability assessments
· Ability to administer the operations of a security infrastructure
· Ability to balance and prioritize work