Tuesday, May 22, 2018

IT Security Analyst

Job details: 
Position                         : IT Security Analyst
Work location                : San Francisco CA
Duration                        : 3+ Months

Qualifications:
• Bachelor's degree in Computer Science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis or a related field or equivalent work experience • Typically has 2+ years of information security related experience in areas such as: security operations, testing, and/or system or security administration • Requires knowledge of security issues, techniques and implications across all existing computer platforms • Requires ability to analyze potential infrastructure security incidents to determine if incident qualifies as a legitimate security breach • Knowledge of critical security controls • Knowledge of secure coding practices, ethical hacking and threat modeling • Security certifications required (one or more): – GIAC Information Security Fundamentals (GISF) – CompTIA Security+ (CS+) – EC-Council Certified Security Analyst (ESCA)

Responsibilities:
1. Privacy Analyst/Manager—Analyst / manager position with working knowledge of U.S. laws. Privacy Analyst/Manager will work with cross-functional team to complete assessment of personally identifiable information collected, processed, and stored in the Bank's environment. Position will also assist Privacy Officer in preparing meeting materials, management reports, position papers, and policies and procedures. Familiarity with RSA Archer strongly preferred. Position reports directly to Privacy Officer.
2. ESPRA Analyst—seeking an analyst with experience leading teams of contractors (or employees) to help supervise a backward looking assessment of 150 vendor relationships. Ideal candidate will have experience working with legal contracts, assessing third party risk, preparing detailed management reports, experience with MS Project, PowerPoint, and Excel. Position reports directly to the Privacy Officer. General Characteristics & Roles Responsible for the development, implementation, and management of the Bank's program to protect information assets. Delivers effective and efficient national information security products and services to defend the Client Reserve System (FRS) against cyber security attacks, cyber threats, and unauthorized use by both internal and external adversaries. Defines security policies, processes and standards. Works with the IT department to identify security requirements, define security-related processes and standards, and select and deploy technical controls. Evaluates and assesses management compliance with privacy and security regulations. Performs technical and administrative analyses for security and privacy including system access and compliance audits to identify ways to reduce risk. Oversees and evaluates the effectiveness of security controls, perform periodic testing Provides expertise and assistance to ensure the Bank's information assets are protected. Performs security assessments and works with appropriate teams to remediate information security threats. Updates, maintains and documents security controls and provides direct support to the Bank and internal IT groups. Communicates and educates IT and the Bank about security policies and industry standards, and provides solutions for security issues. The following roles will encompass the Information and Cyber Security job family: Focuses on the needs of information security service. Brings security expertise and solutions to development efforts and makes the IT environment more secure. Determines what data can be shared, assures compliance, quantifies IT security risk and supports remediation activities. Responsibilities from Associate Information Security Analyst plus: • Handles more technically complex security scenarios • Contributes to best practices and procedures for protecting information, assets and security in conjunction with department managers • Collaborates on projects to ensure that security requirements and issues are addressed throughout the project life cycle • Analyze information security control metrics to demonstrate effectiveness or need for control improvement • Consults with business service owners and application development teams, providing information security expertise and solutions • Monitors security SLAs • Manages project documentation, such as compliance documentation, security plans, corrective action plans, etc. • Provides security briefings to advise on critical issues that may affect the Bank • Conducts knowledge transfer training sessions to NIRT and other security teams upon new technology implementation • Evaluate vulnerabilities to determine the appropriate risk level based on potential business impact, application/data criticality and existing mitigating controls • Prioritize vulnerability risks and work with technology and business owners to develop remediation and mitigation plans within SLAs • Receives audit findings, and manages the collection of responses and remediation plans with owners • Provides oversight and management of audit finding remediation, including generating requirements for full remediation, providing feedback and suggestions on managerial responses to findings, as well as tracking progress and providing status updates to the compliance team for reporting purposes • Identifies and uses tools to monitor data transmissions and analyze data streams • Reviews data breach notifications and assists in investigations • Examines source codes of websites and applications on multiple devices such as laptops, phones and tablets, to identify potential vulnerabilities and security flaws • Compiles, summarizes, and presents research on relevant issues • Maintains an awareness of existing and proposed security-standard-setting groups, state and Client legislation and regulations pertaining to information security • Participates in security alerts, communications, training and education • Review privacy risks to prioritize remediation and risk mitigation plans • Lead privacy incident investigations to determine impact and root-cause • Works on one or more IT security area • Works as a team member, sometimes as a team lead for low to moderately complex tasks

Sandeep.M
Sr.Technical Recuiter-US
Intelliswift Software Inc.
Email : sandeep.m@intelliswift.com
Work : +1-510 370 4565

Website:-www.intelliswift.com

Security Investigator

Job Title : Security Investigator
Location : RTP, NC
Duration : Long term
 
Only USC or GC. 
 
 
Minimum Qualifications
  • The successful candidate will have an operational knowledge of Cisco's infrastructure and core security technologies, demonstrating experience in system or network administration.
  • Candidate must be demonstrate strong adherence to quality processes in work history, have experience working in a global support environment and pressure work environments, be willing to work off-hours, accommodate rotational work and case handling.
 
Required skills include:
  • Detailed understanding of the TCP/IP protocol suite
  • System administrator-level expertise in multi-user operating systems including Unix variants and Microsoft Windows
  • Demonstrated expertise in modern security attacks and threats, including the attack chain
  • Demonstrated expertise in malware analysis, categorization, and attribution (malware reversal and disassembly skills a plus)
  • Strong understanding and experience with security incidents involving alternate OSs including Android and iOS
  • Experience scripting in one or more of the following languages: shell, perl, python, or PHP
  • A detailed understanding of the common technologies found in enterprise IT environments including datacenter and Internet edge technologies
  • Experience troubleshooting network security for enterprise customers
  • Experience with virtualization technologies including VMWare, OpenStack, and various hypervisors
  • Ability to do basic configuration and troubleshooting
  • Cisco networking technologies: ASA, IPS, WSA, Client, VPN
  • Detailed knowledge of Cisco IOS
  • Experience with troubleshooting and investigating device and networking issues
  • Ability to analyze, use and configure small to medium networks. Proven crisis management skills
 
Desired Skills
  • BA/BS degree with 8-10 years of IT and/or security experience
  • Sourcefire Certified Expert (SFCE)
  • Familiar with the latest malicious code trends, including experience with exploits and malware
  • Demonstrate customer service, communications, troubleshooting skills
  • Industry certifications such as CISSP, SANS GCIH
  • Cisco network certifications, such as CCNA, CCDA, or CCSP
  • Experience with operations processes, such as ITIL, CMM, or Six Sigma
  • Experience with Snort or other intrusion detection tools
  • Experience with anomaly detection, full-packet capture
  • Experience with ElasticSearch, NetFlow, Silk, Solera, and OpenSOC components

Patrice Morgan
Sr. Recruiter
P. (877) 715-3865  Ext 241.
McLean, VA

E. email: patricem@etalentnetwork.com 
http://etalentnetwork.com/

Broadband Technician

General Summary: The Broadband Technician position exists to perform the cut over of new services being provided on fXO’s Broadband and SONET network.

Essential Duties and Responsibilities: • Handle all pre-test and field test on all XO products assigned with little supervision.

• Provide a professional quality installation to insure Telecommunication is delivering a positive Customer Experience. Owns all aspects of the installation including initial and follow-up communication with the customer.

• Handle all pre-test and field test on all XO products assigned without any supervision.

• Perform moderate level activation of broadband products including everything EoC and EoS and above including DS3 and SONET services.

• Map moderate Broadband cross connects in the fXO network—Sonet and Ethernet

• Perform moderate level router configuration on Broadband switching platform.

• Perform line by line provisioning CPE0Cisco, Adtran, and Accedian NID.

• Perform basic activation of VPLS0 Virtual Private LAN Service product.

• Perform Ethernet layer 2 and Layer 3 testing and troubleshooting.
• Familiar with NAC operating procedures, processes, and OSS system.

Minimum Qualifications
Education: Bachelor’s Degree in a technical field preferred or equivalent work experience in the activation, troubleshooting and implementation of large scale, multi-location and platform networks.

Licensures: Relevant vendor certifications preferred: CCNA, Ciena Carrier Ethernet, JNCIA/S/P, Adtran, Hatteras, Nortel, Infinera, XO BGP 101/2, etc.

Relevant Work Experience: 4-5 years of working experience in a Broadband Activations Environment.


Knowledge, Skills and Abilities
Basic Computer Skills Required? Yes

Software • MS Office
• Centest
• Spirent
• Nettest
• Net Analyst
Hardware • Extensive knowledge of CPE including routers, switches

• DACS
Cerent
Cisco Catalyst Switch
Adtran TA5000
Hatteras
Ciena 311V
Positron
Huaweii
Cisco 454
Optera 5200
AES- Aggregated Ethernet Switch
MCR/CHR/CLR
Accedian NID
Fuji


Databases • Remedy
• TBS

Operating Systems • Knowledge of at least 1 proficiency
Cisco, Junos, Infinera, Ciena Core Director, Nortel Optical Networking


Other Job Specific Skills • Command Line Interface experience of:
Cisco Routers, Nortel, Ciena, Adtran

• Some knowledge of IP Standards/Protocols, BGP, IPv6

• Must be very knowledgeable in at least 3 of the following XO products and services below:
 DIA
 Virtual Private LAN Service (VPLS)
 Ethernet Private Line
 Ethernet Hub
 Private Line
 Wavelength
• Must be knowledgeable and fully proficient in XO system reporting
• Knowledgeable of enterprise connectivity methods including Wavelength, VPLS, SONET, Private Line, and Ethernet
• Knowledgeable of CPE including routers, switches
• Strong organizational, administrative and time management skills.
• Strong analytical/quantitative skills.
• Strong attention to detail and systems knowledge.
• Familiar with fXO/NAC operating procedures, processes, and TBS system.
• Knowledgeable of IP networking and sub-netting (including some enterprise routing protocol BGP).


Bradley McElroy

Axelon Services Corporation
44 Wall Street 18th Floor

New York, NY 10005
Phone: (212) 384-6505
Fax  : (212) 306-0191
bradley.mcelroy@axelon.com

Dynamic Application Security Tester

The primary responsibility for the Dynamic Application Security Tester is to identify exploitable vulnerabilities in web, web services and mobile applications on applications moving to AWS as part of the Public Cloud Migration. The DAST Engineer exposes real-world opportunities for hackers to be able to compromise applications in such a way that allows for unauthorized access to sensitive data or even take-over systems for malicious/non-business purposes.

SKILLS:

• Advanced understanding of network protocols
• Understanding of information security architecture and ethical hacking
• Scripting and programming experience
• Ability to explain detailed findings to non-technical professionals
• Excellent report writing and presentation skills
• Able to work independently but also as part of a team
• Flexibility to change direction and manage conflicting demands
• Outstanding organizational and data analytics skills
• Comfortable working multiple projects

EDUCATION/CERTIFICATIONS:
One or more of these - C|EH, CISSP, CSSLP, CWAPT, GPEN

REQUIRED SHIFT:
Standard 9-5 hours.
 


Alexandria Mitchell

Axelon Services Corporation
44 Wall Street 18th Floor

New York, NY 10005
Phone: (212) 488-5349
Fax  : (212) 306-0191
alexandria.mitchell@axelon.com

Friday, May 18, 2018

Information Security Architect

Job Title: Information Security Architect (or) Information Security Engineer (Senior)
Experience: 8+ Years

Location: Reston, VA
Job Type: FTE/Contract


Job Description

- Proven expertise in mitigating and understanding threat vectors including actor behavior, DDoS, Phishing, Malicious Payload, Cloud, Mobile Devices, etc. Understand the cyber threat landscape.
- Proven expertise in building a defense in depth infrastructure security architecture that includes security controls across multiple technology stack.
- Ability to champion both conventional and non-conventional methods to protecting an enterprise at scale.
- Strong knowledge in host based security solutions such as HIPS, Data Loss Prevention (DLP), end point protection, and application whitelisting.
- - Strong knowledge of networking, Unix/Linux, NAS/SAN, virtualization, authentication, cryptography. Must be fully conversant up and down the technology stack.
- - Working experience with IPS, DLP, Firewalls, SIEM, and security assessment tools/methodology (network, systems, and application).
- - Must have solid knowledge and understanding of scripting and secure configurations for mainstream operating systems (*nix, Windows, etc.)
- Architecture and solution design experience required to develop infrastructure based detailed design specifications.
- Strong knowledge in enterprise logging and monitoring solutions including monitoring privilege user accounts and sensitive configuration files
- Knowledge of Identity and Access Management, Cloud, and PKI/Certificate Services a plus
- Message driven architecture experience/exposure
- Expert in various patterns of enterprise architecture and best practices, to include data masking, encryption, logging, etc.
- Knowledge of DevOps methods and CI/CD automation practices
- AWS Cloud Services experience; solution delivery expertise, migration of applications to the cloud, automation through various tools both AWS native and third-party. Serves as a leader in the AWS space for InfoSec interfacing with internal customers and other parts of InfoSec.

Core Specialized Knowledge & Skills
- Experience in an environment using agile methodology
- Experience not with just pure design, but experience in the actual delivery of projects
- Process analysis and systematic thinking
- Ability to manage resources, coordinate and administer team assignments, monitor team progress, and maintain schedules
- Ability to manage large, cross-divisional Program activities in a complex environment and drive results
- Ability to operate at strategic and tactical levels
- Knowledge and/or experience relating to Outsourcing/Managed Service Provider governance, transition, contract management and performance management
- Experience driving organizational change
- Experience working in a matrixed team environment
- Excellent written and verbal communication skills
- Client/Customer Service Delivery Experience
- Experience in applying best practices related to Stakeholder Management
- Experience researching and evaluating available technologies and standards to meet requirements
- Thrives in a highly regulated, fast paced, and changing environment
- Prior experience in financial services a plus
- Prior experience working with Perl, Bash, Python, XML, REST API, and JSON desired
- IT Security certifications required: CISSP or GIAC equivalent
- AWS certifications desired: AWS Solution Architect
- 5+ years of hands on experience in AWS Space
 
Deepak Pandey
Technical Recruiter
(201) 340-8700 Ext.507 | (201) 479-3676
deepak.pandey@net2source.com

Address: 317 George St. Suite 220, New Brunswick, NJ, 08901
Website: www.net2source.com

Thursday, May 17, 2018

Systems Engineer

Systems Engineer
San Antonio, TX
Fulltime

Federal

Job Description for role:
  1. Support the development, engineering and maintenance of policies and procedures, including instructions, for the installation, operation, back up, data recovery, configuration, administration, hardening, system maintenance, and troubleshooting of "big data" analysis capabilities. This includes several Commercial-Off-The-Shelf (COTS) packages such as ArcSight, Splunk, Nessus, Torch Point, or Free-and-Open-Source- Software (FOSS) such as Elk and other Security information and event management (SIEM) analytical engines. All of these services operate in virtual machines using Mware and ESXi as the host environment.
2.     Be proficient in the design, implementation and sustainment of Microsoft SQL Server and related software (ODBC, DLLs, drivers).
3.     Thorough understanding of Windows Server Management.
4.     Have extensive experience with virtual applications such as but not limited to VMware vSphere, vCenter, ESXi, Windows Server Management, AF Gateways and DOD GiG other similar products and environments. 
5.     Specific experience with SCOPE EDGE or GENESIS operations and databases is desirable but not required.

Required Experience
  1. Over 5 years’ experience engineering; including large complex programs; Advanced degree in engineering, science or business. Two years of experience can be substituted for an advanced degree. 
  2. Microsoft Windows Server and Workstation Administration
  3. Microsoft Windows Active Directory Administration
  4. VMWare ESXi Administration
  5. LINUX Administration (RedHat Experience Preferred but not required)
  6. Enterprise Storage Administration
  7. Basic Network Administration

Required Preferred Certifications: 
  1. Security+ CE certification AND VMware Certified Professional 5 - Data Center Virtualization (VCP5-DCV), RHCE and LIPC
  2. Must have a current ArcSight administrator or analyst certification (HP ASE or ATP)



Rahul Dhiman
Technical Recruiter
ETalentNetwork
Contact No.: 844-473-8568 | Ext. 385

Network Engineer

Job Title: Network Security Engineer  
Duration:  Long-term 
Location: RTP, NC

Work status : US Citizen, GC, GC- EAD on W2
Rate on W
2

Interview : Telephonic or Skype

Required skills include:

Detailed understanding of the TCP/IP protocol suite
System administrator-level expertise in multi-user operating systems including Unix variants and Microsoft Windows
Demonstrated expertise in modern security attacks and threats, including the attack chain
Demonstrated expertise in malware analysis, categorization, and attribution (malware reversal and disassembly skills a plus)
Strong understanding and experience with security incidents involving alternate OSs including Android and iOS
Experience scripting in one or more of the following languages: shell, perl, python, or PHP
A detailed understanding of the common technologies found in enterprise IT environments including datacenter and Internet edge technologies
Experience troubleshooting network security for enterprise customers
Experience with virtualization technologies including VMWare, OpenStack, and various hypervisors
Ability to do basic configuration and troubleshooting
Cisco networking technologies: ASA, IPS, WSA, Client, VPN
Detailed knowledge of Cisco IOS
Experience with troubleshooting and investigating device and networking issues
Ability to analyze, use and configure small to medium networks. Proven crisis management skills

Desired Skills:

BA/BS degree with 8-10 years of IT and/or security experience
Sourcefire Certified Expert (SFCE)
Familiar with the latest malicious code trends, including experience with exploits and malware
Demonstrate customer service, communications, troubleshooting skills
Industry certifications such as CISSP, SANS GCIH
Cisco network certifications, such as CCNA, CCDA, or CCSP
Experience with operations processes, such as ITIL, CMM, or Six Sigma
Experience with Snort or other intrusion detection tools
Experience with anomaly detection, full-packet capture
Experience with ElasticSearch, NetFlow, Silk, Solera, and OpenSOC components


Roy Davis
E TalentNetwork
http://etalentnetwork.com
8251 Greensboro Drive Suite 250
McLean VA
royd@etalentnetwork.com
(877) 715-3865 Ext.223