Monday, October 31, 2016

Information Security Engineer

Information Security Engineer
  • Location: Ranco Cordova, CA
  • Position Type: Contract
  • Duration: 12+ Months
Job Description
Reporting to the California Program Manager, the Information Security (InfoSec) Engineer role will be responsible for assisting in the establishment, development, design, recommendation and implementation of a security framework that encompasses Linux/Oracle distributed systems hosting and monitoring applications using web services and web applications for current and new systems.This position also works with multiple teams in the organization spread across Systems Development, Quality Assurance, Operations, Office of Compliance, Project Management Office, Vendors, internal ISO, and external State of California ISO contacts to coordinate and/or lead security architecture activities across the enterprise.This InfoSec Engineer position will be a hands-on, technical position with accompanying administrative duties related to documentation and compliance working with internal ISO and external ISO personnel to accomplish security and compliance goals.

  • For the Project, provide technical expertise in information security and compliance topics.
  • For the Project, demonstrate continuous improvement in the topics of information security and compliance using a measurable matrix tied to the State of California's SAM-5300 security guidelines and NIST moderate level security controls.
  • For information security and compliance topics, educate and coordinate projects and actions with all groups within the Client.
  • Assist the IT Operations Manager and Senior Technical Project Manager with information security and compliance topics as needed.
  • Oversees and participates in the creation of Documentation related to information security and compliance management.
  • Perform technical tasks to setup and upgrade security devices, software, and complete subsystems.
  • Lead the effort to run an ongoing security program in a world-class fashion.Coordinate with the Project Management office to meet all scheduled milestones and provide required deliverables to internal and external customers.
  • Bachelor's Degree (B.A. or B.S.) or higher in Computer Science, Engineering, a related field or equivalent experience;
  • Multiple years of experience with Intrusion Detection and/or prevention systems;
  • Experience with wireless security mechanisms and technologies;
  • At least five or more years of experience as a member of a security or compliance team or as a security consultant;
  • Experience working with Executive Management Teams;
  • Excellent written and verbal communication;
  • Demonstrated background assisting companies using continuous improvement techniques;
  • Experience interacting with Information Security Officer's (ISO's).
  • Experience with compliance audits and resulting remediation planning and implementation.
  • Familiar with a large variety of the information security field's concepts, practices, and procedures.
Desired Certifications:
  • CISSP, CCNA and/or GIAC certifications.

  • Strong leadership, project management skills, time management, and problem solving skills.
  • Proficient level ability using general office tools including but not limited to Microsoft Windows based workstations, Microsoft Office suite of applications including Microsoft Project, and general Web based software tools
  • Ability to excel in idea generation, evaluation, and prioritization, customer and partner engagement.
  • Experience solving complex and large-scare hardware/software problems.
  • Ability to adapt to a changing environment and make timely decisions.
  • Proficient knowledge of security topics as they relate to IT systems.
  • An entrepreneurial spirit.
  • Time management skills.
  • Ability to work with technical and non-technical business owners to get things done.
  • Excellent written and oral communication.
  • Demonstrates strong commitment to Client HSE Policies, Procedures, and Work Instructions by participating in safety meetings, completing required training, intervening in unsafe situations, refusing unsafe work, and complying fully with all applicable laws and regulations related to HSE.
  • Reports all incidents (actual incidents and near misses) in accordance with the Client Incident Reporting requirements.
  • Actively participates in incident investigations and risk assessments as deemed necessary by Client management.

Kishore Chary, Senior Talent Advocate
Global Technical Talent, Inc. - All current GTT Openings

233 Vaughan Street, Suite 102
Portsmouth, NH 03801
Ph: (603) 516-4441 / Fax: 800-775-3135 /