Monday, May 15, 2017

Information Security Specialist

Job Title: Information Security Specialist
Location: Washington, DC
Rate: $50/hr on C2C
Duration: 6 months plus Contract


Position: Information Security Specialist
Location: Washington, DC
Interview Process: Phone screening, in person, to hire.
Contract Length: Dec 31st 2017 

Top Skills: 
• At least five (5) years' professional experience in a security operations role
• Experience administering Threat and Security Incident and Event Monitoring (SIEM) solutions;
• Experience using Application and Network Vulnerability Management software and tools
o Doesn't matter which just tell me what they have used
• Strong attention to detail, self-directed with ability to prioritize and coordinate multiple work activities in a fast-paced environment.

Preferred but not required:
• Bachelors in IT related field
• One or more of the following certifications are strongly preferred: CISSP, CCSP, CISA, CISM, CRISC, SANS: GIAC, GSEC, GWAPT

Purpose of Division:
Information Management (IM) provides and supports the information technology environment that enables NeighborWorks America (NWA) to effectively meet the goals of its business units and that of the organization as a whole. Our staff are committed to providing quality products and timely support to meet NWA's business goals, while at the same time preserving the security and stability of its corporate network.

Position Summary:
Reporting to the Director of IT Security and Compliance, the Senior Specialist for Information Security provides assistance with safeguarding information assets by identifying and analyzing potential and actual security incidents. This position is responsible for evaluating, monitoring, and implementing information security initiatives and identifying issues in technology, software or services. It is also responsible for analyzing risks and recommending information security improvements for the organization as a whole.

Essential Duties/Responsibilities: Level of Importance
(1=most important, 5 = least important)

1. Administering the vulnerability management program. Reviewing and responding to known and possible network attacks, vulnerabilities and alerts. 1
2. Maintaining and reviewing secure access to program servers, file shares, and security groups. 3
3. Proficiency performing audit analysis of accounts and process management to include permission lists, organizational changes, separated employees, inactive accounts etc. 1
4. Developing measures to prevent unauthorized software from being installed and executed on systems. 1
5. Recommending and supporting the development and management of network security and incident response policies and procedures. 3
6. Proficiency archiving and reviewing system audit logs and all other pertinent log files that will support incident response activities. 1
7. Maintaining records on configuration and patch management tools to ensure that patches/system modifications maintain the desired security posture. 2
8. Developing/revising technical standards for security devices, security operations, and other operations as required. 3
9. Proficiency developing measures to prevent unauthorized software from being installed and executed on systems. 1
10. Interacting with information security vendors and holding information security vendors accountable to technology and services obligations to the organization. 3
11. Ensuring that change control procedures are strictly followed for all changes to all production systems. 2
12. Proficiency analyzing security incidents and escalation of security events 24x7. 1
13. Performing other job related duties as assigned. 3

Maseeullah K  | Sr. Technical Recruiter|
14175 Sullyfield Circle, Suite # 400,Chantilly, VA 20151, U.S.A