Friday, July 29, 2016

Information Security Analyst

Location: Boston, MA
Type: 2 month C2H
Rate/Salary: OPEN
Department: IT Assurance
Start Date: Aug 15th
Process:
  • Onsite interview to meet with the team of 4
  • Second round onsite interview to meet rest of team members - Decision 
Job Description
Responsible for the design, evaluation, implementation, maintenance and monitoring of security systems to ensure the protection of the data from unwarranted access and changes.
Participate in the development of security practices, policies and strategies to mitigate risk and the prevention, detection and resolution of security incidents for the entire ITS computing infrastructure including networks, servers, databases, applications, systems and end user devices.
Promotes and delivers security-related training, documentation and awareness and provides guidance and work direction to other groups performing security-related tasks Senior Information Security Analyst
  • Highly developed problem-solving skills with the ability to solve problems with unknown parameters.
  • Knowledge of applicable information security standards (e.g. ISO).
  • Experience with forensic security investigations.
  • Technical knowledge in multiple domains of information security including policy development, access control systems, telecommunications, network and
    Internet security.
  • Knowledge of operating system security for servers and desktops as well as network and application security.
  • Working knowledge of state and federal regulations and laws governing data security and confidentiality.
  • Knowledge of intrusion/detection/prevention systems.
Looking for:
  • Someone who knows Security, smart, learn, coding and scripting experience
  • Doesn't need education industry experience
  • Want to be able to work with other team members and cross functional teams
  • If JR. BC offers a degree in Cyber Security (Masters)
  • CISO who wants to be more technical and not a CISO any further
  • Interviewed 2 people who came out of Audit side - both nice but not technical
  • NEEDS TO BE TECHNICAL

Jake Tucci
Technical Recruiter, Mondo
(617) 979-1604
Boston, MA 02114

www.mondo.com

Wednesday, July 27, 2016

Security Incident Responder

Job Title:             Senior Principal Security Incident Responder
Location:             Mountain View, CA
Duration:             12 Months
 
Job Description:
 
·         Provide backup responsibilities to SOC manager, as required.
·         Lead High- and Medium-severity incidents across multiple cross-functional teams leveraging various tools/applications.
·         Analyze network traffic and various log data to determine the threat/impact against the network, recommend appropriate countermeasures, and assess damage.
·         Efficiently facilitate and expedite the tracking, handling, and reporting of all security events and computer incidents.
·         Evaluate and perform incident escalation in accordance with incident response procedures.
·         Work with other team members to ensure an effective and efficient cyber incident management system.
·         Ensure all pertinent information is obtained to allow the identification, categorization, incident handling and triage actions to occur in a time sensitive environment.
·         Provide effective communications to team and department cyber-security personnel regarding cyber incidents and possible countermeasures.
·         Lead projects to improve the Security Operations, Incident Response, & Insider Threat program.
·         Remediating and applying lessons learned to security incidents.
·         Identifying poor security practices and recommending appropriate countermeasures.
·         Creating, updating, and finalizing workflows and internal documentation.
·         Collect and analyze technical network activity for anomalies that could indicate potential threat issues from current and previous employees, contractors, and/or partners.
 
Skills: 
·         Previous supervisor or lead experience, preferred.
·         Previous CIRT/SOC incident management experience required.
·         Solid understanding of industry standard policy, processes and procedures covering incident, problem and change management.
·         Previous CIRT/NOC/SOC experience implementing and managing trouble ticket assignments and escalation policies.
·         Must be able to multitask, work in a fast-paced environment and participate in security incident remediation as needed.
 
Solid understanding of:
·         Security threats and vulnerabilities
·         Security technologies and countermeasures Firewall technologies Web system applications and uses TCP/IP networking concepts Windows and UNIX/Linux operating environments Databases vulnerabilities and countermeasures Logging & SIEM solutions
·         Desirable industry security certifications such as GCIH, Network+, Security+ Top Secret (TS) Clearance preferred, but not required
 
Education: 
Bachelor or associate degree in related technical field of study combined with sufficient relevant work experience
 
Vasim Saiyed
Technical Recruiter
eTeam, Inc. - "Accelerated Hires"
efficiency. synergy. expertise
1001 Durham Avenue
Suite 201
South Plainfield, NJ 07080-2300

FAX: 908-757-0800
vsaiyed@eteaminc.com
www.eteaminc.com
https://in.linkedin.com/pub/vasim-saiyed/24/16a/193

Tuesday, July 26, 2016

Sr Java Developer

Richardson, TX
Term: Contract 6 Months+

Rate: 50.00 – 62.00 p/h W2 No ctc
 
Primary responsibilities will include: 
  • Design, development, configuration and documentation of technical components including enhancements and modifications to deliver solutions.
  • Design complex data models and work with complex data structures, and large data sets
  • Performance tuning of application logic and overall system flow. 
 
Qualifications 
  • 8-10 years of experience in systems design, architecture, and development of large scale mission critical applications 
  • at least 7 years in Java/J2EE technologies 
  • Spring, Spring Data, Spring Integration, Spring Drools, Spring Data-RS, Hibernate/iBatis framework 
  • Knowledge in front end technologies (Ajax, JQuery), Angular JS, Twitter Bootstrap 
  • Must have experience in Web Services, HTTP/HTTPs and RESTful 
  • Good knowledge of caching mechanism: EHCache, Gemfire distributed caching 
  • In-depth experience in all aspects of multi-threaded application development 
  • Advanced knowledge of data modeling, SQL skills, handling large amount of data 
  • Understanding of agile, Kanban / Lean software development methodologies 
  • Experience with Version Control systems (Subversion, Git) 

Philip Pelletier I Managing Partner I Fieldstone Staffing Services

Wednesday, July 20, 2016

Application Developer (Level IV)

Job #: 131751
Job Title: Application Developer (Level IV)
Location: Addison, TX
Term/Duration: 4 months with possible extension
Client/Industry: Financial & Banking

Rates ARE NOT disclosed via email. W2 only ( no 1099 or c2c)
Citizenship: US Citizens+ Green Card/EAD holders + H1B Transfer candidates only.

Job Description: Majority needs to sit in Dallas but they are open to Richmond. Dallas preferred.

• Design, develop and integrate services in large-scale distributed enterprise infrastructures (cloud, etc.).
• Develop, enhance, debug, support, maintain and test software applications on diverse development platforms, software, hardware, technologies and tools.
• Build tools to automate, provision, deploy, monitor and manage production systems
• Manage deployment & configuration.
• Work closely with different teams to debug and solve production issues.

Need to have Java and .Net. If stronger in one or the other is ok, but needs to have knowledge of at least both.

Proficient in OOP languages (JAVA, .NET, etc.).
• Proficient in dynamic languages (PHP, PERL, Ruby, Python, etc.).
• Proficient in Web Services (SOAP/REST/API) Development.
• Proficient in enterprise integration technologies (Apache Camel, Mule, etc.).
• Proficient in web development technologies.
• Proficient with Unix/Linux shells, tools and utilities.
• Mobile technologies integration experience needed.
. Full Stack (end-to-end) development experience needed.
• Big Data technologies (Cassandra, Hadoop, etc.) knowledge is a plus.
• Network securities and technologies is a plus.

• Capable of multi-tasking and prioritizing efficiently.
• Love working with new and emerging technologies (opensource, etc.).
• Working in a fast-paced, evolving, growing and dynamic environment.
• Excellent collaborator with strong communication skills.
 
 
If you are interested in this position please email me back at christine.wong@axelon.com with an updated resume and daytime number.

Christine Wong
Senior Recruiting Specialist
Axelon Services Corporation
44 Wall Street 18th Floor

New York, NY 10005
Direct Phone: (212) 384-6538
Fax  : (212) 306-0191

For more job opportunities: 
www.axelon.com

Monday, July 18, 2016

Information Security Operations Analyst

This is a six month contract position. They're looking for someone who has 1+ years of experience in a security role with a working knowledge of Splunk; and who has experience/knowledge of SIEM, Firewalls, and anti-virus. Security certifications are a plus.

1+ years of experience in technical role with notable exposure to security (or have a Technical Degree)
Working knowledge of analyzing events from SPLUNK SIEM.
Ability to work shift work in a 24/7/365 environment
Experience with/knowledge of IT security devices such as: Security Information & Event Management (SIEM) systems, firewalls, and/or antivirus management
Investigative and analytical problem solving skills

Description:
Understand and apply commonly known security practices and possess a working knowledge of applicable industry controls such as NIST 80053. Required to maintain a working knowledge of local security policies and execute general controls as assigned.

Role Overview:
Security Analysts perform real-time log analysis to provide network and data security for clients leveraging log correlation platforms. Analyst staff a 24/7/365 Security Operations Center. Analysts evaluate the type and severity of security events by making use of packet analyses and their in-depth understanding of exploits and vulnerabilities. Analysts resolve client issues by taking the appropriate corrective action, or following the appropriate escalation procedures. Analysts work in a team environment and monitor the health and wellness of security devices on our clients networks. Qualified candidate MUST be flexible for shift work.

Responsibilities:
Respond to inbound phone and electronic requests for technical assistance from customers
Perform all tasks required per shift including reporting, monitoring, and turnover.
Evaluate threats and determine impact to customers environment
Assess incident severity and escalate to the next level as needed
Perform additional event/incident investigation and research as needed
Utilize internal guidelines for effective call processing and escalation and client service
Interact with network intrusion detection devices and other security systems via proprietary and commercial consoles, both local and remote
Manage customer accounts and confidently communicate technical information to client base and internal technical team members
Maintain keen understanding of evolving Internet threats to ensure the security of Client networks
Participate in knowledge sharing with other analysts and develop customer solutions efficiently
Coordinate or participate in individual or team projects to ensure quality support for our clients
Perform other essential duties as assigned Requirements
Working knowledge of analyzing events from SPLUNK SIEM.
Ability to work shift work in a 24/7/365 environment
1+ years of experience in technical role with notable exposure to security (or have a Technical Degree)
Experience with Microsoft Windows and related security concepts
Experience with network connectivity and protocols such as TCP/IP, VPNs, VLAN, NAT, DHCP
Experience / Knowledge of variety of Intrusion Detection/Prevention platforms
Experience with/knowledge of IT security devices such as: Security Information & Event Management (SIEM) systems, firewalls, and/or antivirus management Investigative and analytical problem solving skills
Understanding of security threats and attack countermeasures
Knowledge of current security events and a demonstrated passion to stay informed Preferences
Bachelor's Degree or equivalent in an IT/Technical field or equivalent work experience
1+ years of experience in security role
Coding or scripting experience
Familiarity with Unix/Linux
Security+, GIAC, GCIA, GCIH, GCFW, GHTO, GSEC or similar certification
CISSP, CCNA, CCSP, CSPFA certifications a plus

Adam Berg
adam.berg@experis.com

Thursday, July 14, 2016

Security Engineer

Security Engineer - Specialized
Location: San Francisco, CA / Pleasanton, CA


Job Description: 
Senior Application Security Engineer SE III (164160)


Candidate can work in either San Francisco or Pleasanton

  • The Senior Application Security Engineer works as a member of the Security Engineering team within the Information Security team.
  • The Security Engineering team is part of the Enterprise IT organization, working closely with corporate and e-commerce application development, networking engineering, and operations teams across the IT enterprise.
  • The Senior Application Security Engineer ensures that new and existing web and third-party vendor applications are implemented in a manner that assures the protection of information assets, while maintaining compliance with Information Security policies, standards and design patterns.
Primary Responsibilities:
  • Performs static/dynamic code testing, manual code inspection, threat modeling, design reviews and penetration testing of internal web applications and external partner applications to identify vulnerabilities and security defects.
  • Supports the implementation and enforcement of secure design principles according to policies, standards, and patterns of Information Security.
  • Serves as a Subject Matter Expert (SME) in web application development and security practices for enterprise projects during development phases to provide Information Security consulting and recommendations, ensuring the implementation of approved security requirements.
  • Develops and implement manual and automated web application security testing frameworks for web applications to enforce security standards.
  • Works with security product vendors and service providers to evaluate security offerings, including product evaluations, proof of concept and pilot installations
Qualifications:
  • Bachelor's degree in Computer Science, Software Engineering or related field or equivalent combination of education and experience.
  • 5-7 years of experience in performing penetration testing, secure code review, static, dynamic and manual source code review.
  • Experience in identifying and remediating common web application vulnerabilities such as OWASP Top 10.
  • Experience in use of various commercial and open source penetration testing tools and methodologies and performing penetration testing of web applications and operating systems.
  • Familiarity with APT attack and kill chains.
  • Experience with various code repositories including GitHub and Apache Subversion (SVN).
  • Experience with continuous integration servers such as Jenkins and ElectricCommander.
 
 
 
Jay Westbrook

 
___________________________________________________________
TalentBurst logo
[P] (978) 422-9902 | [F] 508-628-7510
679 Worcester Road |  Natick, MA 01760 | 
www.talentburst.com
Certified Minority & Disadvantaged Business Enterprise (M/DBE)

Wednesday, July 13, 2016

Security Risk Assessor

Title:                   Vendor Security Risk Assessor
Duration:            12 + Months 
Location:            Menlo Park CA

Roles and Responsibilities :

  • Help demonstrate client commitment to security to internal and external stakeholders
  • Complete security reviews of third parties doing business with Client
  • Understand technical implementation details necessary to identify and assess security risks and recommend mitigating controls
  • Participate in the development and oversight of required corrective action plans relating to security risk issues specific to security reviews completed
  • Understand business process and requirements relative to the specific vendor security reviews
SKILLS: 
  • Experience assessing Information Security risk with strong preference given to individuals who have completed vendor security risk reviews and technical risk assessments;
  • 3+ years of proven experience working on Information Security teams or projects;
  • Strong program and project management skills required;
  • Experience with developing security reporting that is meaningful and actionable for a variety of audiences including internal stakeholders and external third parties;
  • Knowledge and understanding of security controls across all security domains such as access management, encryption methods, vulnerability management, network security, physical security, etc.;
  • Understanding of processes for risk evaluation and assessing third parties across diverse industries and against a broad range of security requirements;

EDUCATION:     

  • Bachelors in business and technology preferred or equivalent experience.


Sanjay Kumar
Efficiency. Synergy. Expertise.
eTeam Inc- "ACCELERATED HIRES"
Contact Number: 732-983-5620 
South Plainfield, NJ 07080-2300
Email: sanjayk@eteaminc.com 
URL: www.eteaminc.com 

Tuesday, July 12, 2016

Security Analyst

Job Title:             Security Analyst (IT Application Analyst III )
Location:             Glendale, AZ
Duration:             6 Months
 
Job Description:
 
• The individual will be designing and executing application security evaluations, independently and as part of a team
• Will employ application security testing techniques using automated tools and manual testing
• Will create and exploit proofs of concept against company and third-party systems\
• Works with internal and external application development teams to identify and remediate application security weaknesses
• The individual will develop and design proactive methods to reduce vulnerabilities throughout the development lifecycle
• The individual must have the ability to discover and exploit application vulnerabilities ‘
• Will work with security and application teams to develop standards, processes and procedures to support software development activities
• Will do security code reviews with Security testing team and developers prioritizing issues for remediation
 
Skills:
• Awareness of the leading secure programming practices for J2EE and .NET
• Knowledge of OWASP and other authoritative sources of web and software development
• Working knowledge of development frameworks such as Struts, spring form, etc…
• Knowledge of secure development principles in at least one environment (e.g., Java or .NET)
• Understanding of risk assessment practices
• Participate in security architecture, design, and control implementation
• Knowledge of the SDLC and experience working with development teams
• Understanding of web application technologies and development processes
• Data power, API Gateway,
• Up-to-date knowledge of current threats
• Understanding the software development process from cradle to grave including frameworks, strategies, tools, and associated processes.
Desired Skills:
• Certifications: GIAC Java or GWAPT is a plus
• A passion toward analyzing and reviewing code is a plus
• The ability to work closely with large development teams under stringent timelines.
 
Vasim Saiyed
Technical Recruiter
eTeam, Inc. - "Accelerated Hires"
efficiency. synergy. expertise
1001 Durham Avenue
Suite 201
South Plainfield, NJ 07080-2300

Main: 732-248-1900 x 508 
FAX: 908-757-0800
vsaiyed@eteaminc.com
www.eteaminc.com
https://in.linkedin.com/pub/vasim-saiyed/24/16a/193

Thursday, July 7, 2016

SIEM Analyst

Job Summary: 
Company: Net2Source, Inc.

Job Title: SIEM Analyst
Location: Denver, CO
Duration: Long Term Contract

Job Description:
  • At least two years of Maintaining and utilizing SIEM platforms
  • (At least 3-6years) - ArcSight
  • Knowledge of network and web-related protocols (e.g., TCP/IP, UDP, IPSEC,HTTP, BGP and other routing protocols)
  • Detailed knowledge of system security vulnerabilities, threats, analysis and remediation techniques, including penetration testing and the development of exploits
  • Experience writing analysis reports and presenting to customers not experienced with security
  • Strong sense of ownership and drive
  • Experience implementing and practicing incident response best practices
  • Breadth of knowledge in the information security space with emphasis on TCP/IP network security, operating system security, common attack patterns, and exploitation techniques
  • Excellent verbal and written communication skills
  • Security+, GIAC-GSEC, SSCP, CISSP, CEH, or other security related certification

About Net2Source, Inc.
Net2Source is an employer-of-choice for over 1000 consultants across the globe. We recruit top-notch talent for over 40 Fortune and Government clients coast-to-coast across the U.S. We are one of the fastest-growing companies in the U.S. and this may be your opportunity to join us! 
Want to read more about Net2Source? Visit us at www.net2source.com

Abhishek kumar
Technical Recruiter
Net2Source Inc.
Direct # (201)-365-4885 | Board # (201) 340-8700 Ext. 523 | Fax: (201) 221-8131
Email: abhishek@net2source.com 
Address: One Evertrust Plaza, Suite # 305, Jersey City, NJ – 07302
https://in.linkedin.com/in/abhishek-kumar-4548b6b6 
WebSite: www.net2source.com 

Refer and Earn : For contractual position up to $500 and for Full time up to $1000

Wednesday, July 6, 2016

Security Systems Advisor

Description/Comment:
The primary need we have for this position is someone with a security and networking background that can provide support for our IPS/IDS environment. Any past experience supporting an IPS/IDS environment would be a plus(Network Intrusion prevention systems).

-10+ years of relevant experience or equivalent combination of education and work experience.
-Advanced security knowledge (access control) of one or more of the following technologies/platforms: Network Intrusion Prevention, Firewalls, Active Directory Services, Internet Proxy, Network Devices (switches and routers), SIEM, DLP.

-Participates in technical projects needed to upgrade security requirements for both internal and external clients.
-Designs, develops, implements, and tests security products for possible inclusion in corporate and client programs.
-Works with clients and leaders to satisfy client and annual Information Security Strategic Plan.
-Provides knowledge and expertise to less experienced team members.
-Leads audits and reviews designs for information security issues. -Technical 3+ years of IPS IDS and other network security technologies.
-Experience with performing network packet captures and analysis (WireShark) Soft Skills: Ability to interact directly with the customer to resolve issues.

What are the three to five technical responsibilities of the position?
-8+ years of relevant experience or equivalent combination of education and work experience.
-Advanced security knowledge (access control) of one or more of the following technologies/platforms: Network IPS/IDS, Firewalls, SIEM. Non vendor specific security certifications are a plus, CISSP preferred.
-ArcSight Administration including creation and management of custom connectors, correlations and alerts.
-Good understanding in a broad range of common security products: McAfee ePO, VirusScan, HIPS, Web Application firewall (WAF), firewalls.

Adam Berg
adam.berg@experis.com