Monday, February 5, 2018

Senior Security Engineer

Job Title: Senior Security Engineer (1308-1) 
Company: Integrated Resources Inc. 

Position: Senior Security Engineer (1308-1) 
Location: REMOTE 
Duration: 3+ months (Possibility of extension OR conversion) 

Description: 
Summary 
Applies current computer science technologies to the design, development, evaluation, and integration of computer systems and networks to maintain system security. Works with commercial computer product vendors in the design and evaluation of state-of the- art secure operating systems, networks, and database products. Provides security engineering and integration services to internal customers. Involved in a wide range of security issues including architectures, electronic data traffic, and network access. 

Knowledge, Skills & Abilities 
• Conduct host and network based forensics, log analysis, and malware triage in support of incident response investigations 
• Perform digital hunting to detect threats that may already have a foothold inside the network 
• Utilize cutting edge technology and processes to conduct large-scale investigations and examine endpoint and network-based sources of evidence 
• Recognize and quantify attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigations 
• Create scripts, tools, or methodologies to enhance Molina's incident investigation processes 
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences 
• Effectively communicate investigative findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel 
• Work with security and IT operations to implement remediation plans in response to incidents 
Job Qualifications 

Required Education 
• BS or equivalent degree in Computer Science or related technical discipline, related certifications or experience 

Required Experience 
• Minimum of 2 – 5 years of comparable experience; minimum 8 years of experience if no degree 
• Windows disk and memory forensics 
• Unix or Linux disk and memory forensics 
• Network Security Monitoring (NSM), network traffic analysis, and log analysis 
• Static and dynamic malware analysis 
• Applied knowledge in at least one scripting or development language (i.e., Python) 
• Extensive understanding of enterprise security controls in Active Directory / Windows environments 
• Experience with hands-on penetration testing against Windows, wireless, Unix, or web application targets 
• Experience in training, presenting and leading junior staff 

Preferred Experience 
• 5-7 years of experience 
• Experience with programming/scripting languages 
• Background in operational information security disciplines (e.g. incident response, security infrastructure management or monitoring services) 
• Background performing incident response and digital forensics 
• Experience in configuration or management of feeds into event aggregation and correlation systems (e.g., Security Analytics, Splunk, ArcSight) 
• Experience with improvement of analyst effectiveness by optimizing signature quality in collaboration with other analysts and developers 
• Background in systems administration for Windows and/or *nix based environments 
• Familiarity with host based security tools (e.g., EnCase, Forensic Toolkit, ECAT, Volatility, Memory Forensics) 


Preferred License, Certification, Association 
• GIAC GCIH, GCIA, GCFA, GCFE, GREM

Vicky Sontakki