Tuesday, May 23, 2017

Sr Security Analyst

Location: Merced, CA
Duration: 6 Months (possible extension)
Start: end of June
Process: 2 interviews (skype for national/regional subs, F2F for local)

Why Open: Client is in the middle of security remediation and upgrading of their existing systems and needs a security analyst to serve in partial hands-on, partial project management-type role to ensure that the project is completed and kept within scope. There is a large volume of work and not enough in-house support to get the work done. This person will be involved in the implementation of a new Endpoint Mgmt system (Fireeye) which is to replace the legacy Fidelis system currently in place. They’ll be implementing a robust automated Windows patching system (WSUS, Group Policy, SCCM), developing and testing infrastructure for mobile device encryption (Bitlocker, Filevault), moving the campus VPN service from Cisco to Palo Alto, as well as testing and deploying advanced malware protection software. The project will also include implementing regular Nessus scans of medium-security networks and working with system owners to remediate findings, remediating 30+ Windows and UNIX systems/services using deprecated SSL/TLS encryption protocols as well as remediating 30+ Windows and UNIX systems/services using outdated/unsupported web servers and decommissioning legacy Mailman and SMTP services. Finally, they will participate in a DR remediation, completing the DNS diversification, redundancy, and availability project as well as the migration/consolidation/mothballing of systems in support of decommissioning the Castle datacenter.

Skills:
Sr Security Analyst - MUST
Project Mgmt experience – MUST
Fireeye Endpoint – MUST
Experience with a blended OS environment – MUST
Mobile Device Encryption (Bitlocker) - MUST

Palo Alto – Plus
Fidelis – Plus

Job Description from Client:


Endpoint Management:
•             Implementing a robust automated Windows patching system (WSUS, Group Policy, SCCM)
•             Developing and testing infrastructure for mobile device encryption (Bitlocker, Filevault)
•             VPN Migration - moving campus VPN service from Cisco to Palo Alto
•             Testing and deploying advanced malware protection software

DDI Pentest Remediation
•             Implementing regular Nessus scans of medium-security networks and working with system owners to remediate findings
•             Remediate 30+ Windows and UNIX systems/services using deprecated SSL/TLS encryption protocols
•             Remediate 30+ Windows and UNIX systems/services using outdated/unsupported web servers
•             Decommission legacy Mailman and SMTP service

DR Remediation
•             Complete DNS diversification, redundancy, and availability project
•             Migration/consolidation/mothballing of systems in support of decommissioning the Castle datacenter

__________________________________
Chris Rulfs
Senior Recruiting Executive, Information Technology Oxford International
2105 S. Bascom Ave Suite 390
Campbell, CA 95008
408.369.8054 Office