Monday, January 27, 2020

Sr. Security lead engineer

Job Title - Sr. Security lead engineer
Location - irving texas
fulltime
Job Description
Technical:
  • 5+ years’ experience in Information Security, including experience with security principles, and defense-in-depth techniques.
  • Possess functional knowledge and administrative experience on Windows and Unix/Linux Platforms.
  • Hands on experience designing, building, deploying, and administering complex security tools, including DLP
  • Strong security experience related to concepts of least privilege, risk management.
  • Knowledge of DNS, network routing, authentication, VPN, proxy services, cloud, and DDOS mitigation technologies 
Non-Technical:
  • Ability to communicate and collaborate effectively with other team members in a geographic and culturally diverse workforce
  • Expected to complete projects within specified deadlines.
  • Expected to work occasional nights, weekends, holidays, and overtime.
  • Expected to perform on-call duties.
  • Occasional Travel may be required.
  • Strong sense of professionalism and ethics.
Aadil Javaid

Serve Staffing Solutions
113 Barnum Street West Babylon New York-11704

Direct: 1 (332) 209 4421
Email: aadil@servstaffing.com

Wednesday, January 22, 2020

Information Security Engineer

Information Security Engineer
Glenview, IL.

Job Description:
Anixter is seeking an Information Security Engineer for its Information Technology team in Glenview, IL.
The Information Security Engineer works with members of Information Security, Infrastructure Technology and Business Systems teams to implement and manage appropriate security measures for the protection of corporate information assets. The Information Security Engineer is responsible for the complex and detailed technical work necessary to establish and maintain information security systems such as firewalls and intrusion prevention systems, and internal information handling processes so that information is appropriately protected from unauthorized disclosure, unauthorized use, inappropriate modification, premature deletion, and unavailability.

This position occasionally requires some weekend and evening work as well as off-hours for production issues.
Responsibilities:
The Information Security Engineer's responsibilities include:
·         Design, develop, implement and maintain information security technologies to enforce Anixter information security policies, standards, and procedures.
·         Manage and support security solutions and controls including: network firewalls, IDS/IPS, vulnerability scanners, SEIM, FIM, penetration testing, incident response, Active Directory, and O365
·         Perform information security incident response as activity as needed
·         Operational experience with various tools for analyzing network traffic for root cause analysis (sniffers, packet capturing, routing)
·         Collaborating with IS management, legal, human resources and law enforcement agencies to manage security vulnerabilities or investigations
·         Serve as an internal Information Security consultant to the organization
  
Qualifications:
The idea candidates will have:
·         Excellent verbal and written communication skills, including the ability to effectively communicate to both technical and non-technical audiences
·         Demonstrated experience in managing projects
·         History of balancing multiple priorities simultaneously with the ability to adapt to the changing needs of the business while meeting deadlines
·         Strong organizational and creative problem-solving skills with the demonstrated ability to be resourceful
·         Strong understanding of common network and system exploits and vulnerabilities.
·         Experience with scripting languages
·         Experience with multi-cloud best practices
·         BS in a Technology related field or an equivalent work experience
·         Minimum 3 years IT Security experience

The following experience and certifications are a plus:
·         Professional Certifications such as CISSP, GIAC or other relevant security certification
·         An understanding of application security and OWASP


Chetan P Thind
Talent Execution Executive
Desk: 408-913-1019
Ext: 1019

Wednesday, January 15, 2020

Oracle EBS Tester

Job Code JPC-140
 Job Title Oracle EBS Tester
 Location Menlo Park, CA, California
 Job Description
Job Title: Oracle EBS Tester
Location: Menlo Park, CA
Job Type: Long Term Contract
Skills – Oracle EBS R12 Testing, Demand Planning, Supply Planning, GOP, S&OP, Oracle Agile PLM, GL, AP, AR, Cash Management, OSB (Oracle Service Bus), Amazon Webservices
Key Words- Demand Planning Supply Planning – MUST HAVE SKILLS
 Job Description:
  • 6+ Years of Experience in testing Oracle EBS workflows
  • Should be well versed in testing with various modules like Oracle Purchasing (PO), Oracle Order Management (OM), Oracle Inventory (INV), Oracle Bill of Material (BOM), Oracle WIP, Oracle PLM Shop Floor Manufacturing, Oracle Payables and Receivables, Order To Cash(O2C), Procure To Pay (P2P), Planning, Finance etc
  • Should have sound knowledge of EDIs and how they are processed (nice to have)
  • Should have good knowledge about various finance modules like GL, AP, AR, Cash Management (must have)
  • Should have good knowledge about various planning modules like Demand Planning, Supply Planning, GOP, S&OP (must have)
  • Should be well versed in creating test cases, test plans, test strategies
  • Should have sound knowledge of Supply Chain Management
  • Should be well versed in writing complex SQL queries
  • Experience in Amazon webservices (Nice to have)
  • Experience in testing B2B workflows for different retail partners (Nice to have)
  • Should be hands-on in setting up test beds, installing 3rd party tools etc for debugging purposes
  • Should have extensive experience in bug life cycle
  • Should have hands-on experience in debugging problems through logs, backend workflows
  • Experience in handling multiple stakeholders(Must Have)
  • Good analytical skills
  • Excellent communication skills

Dhiraj Ram
 

Sr Developers

Description
1 year Contract with an Airline based in the DFW Area
Compensation based on experience
Client is open to Contract to Hire and or Permanent Salary also
Client has openings at Sr Developer, Architect, Technical Lead
 
Skills/Qualifications:
Our Client is seeking Sr Developers and is open to different financial arrangements. The consultant will be part of an Agile development team, building and working on enterprise grade software systems.  The software you will be working with is Core Java, J2EE and Spring development stacks. This position involves all aspects of designing and developing application systems and developing requirements and design specifications for new and existing applications.
 
Qualifications
  • Core Java and Spring – Main and key skills – 7-8 years’ experience in the USA
  • Strong skills in Java, J2EE, Eclipse, Maven, Web Service Development and UML
  • Strong skills in Tomcat and IBM WebSphere Application Server,
  • Strong skills in SQL, JPA and relational databases
  • Experience in integration design and development skills using technologies IBM MQ, and JMS
  • Good knowledge of ESB and SOA, Web Services methodologies using RESTful or SOAP based API’s
  • Ability to function in a Linux/Unix environment using shell commands
  • Minimum of 5 years of object-oriented software development experience
  • Experience with Agile development methods required
 
Nice to have
  • Scripting is a plus
  • Cloud Experience is a plus
  • Lead and participate in code reviews
  • Document software designs
  • Research and implement new technologies to enhance current processes, security and performance
  • Bachelor’s or Master’s Degree in Computer Science, Computer Engineering or a related field
 
 
John Habenicht
Principal Recruiting Consultant
Ntelicor
972-365-5801 Cell
jhabenicht@gmail.com

Tuesday, January 14, 2020

Security Specialist

Job Title: Security Specialist
Location: San Mateo,CA 
Duration:6 Months (Possible Extension)

Job Description:
Designs and develops post orders, standards and protocols for all corporate facilities. Creates reporting that is measurable for alarm monitoring, incident response, and incident tracking and other service areas. Conduct or consult on corporate security investigations as needed.
Gather reporting on potential patterns of concern and implement plans to minimize those concerns. Ensures proper final resolution is reached with all cases.
Provide planning, training and awareness for crisis situations. Gather information and research potential risks to our employees and guests that visit our headquarters sites.
Develop and Implement security standards for all corporate security sites. Provide educational training, coordinate fire and life safety drills and assist with personal safety seminars.
Accountable for ensuring that the security programs and strategies of the organization are effectively implemented and maintained. Develops and implements policies, procedures, standards, training and methods for identifying and protecting information, personnel, property, facilities, operations, or material from unauthorized disclosure, misuse, theft, assault, vandalism, product tampering, espionage, sabotage, or loss. Plans, develops and implements procedures to obtain, maintain, secure, analyze, account for, and provide information from assessment reports. Directs the initiation of proactive facility assessments and surveys.
Plans, acquires and administers resources for the function, to include equipment and other resources. Develops and documents standards for measuring the efficiency and effectiveness of business unit security.

KNOWLEDGE:
Learns to use professional concepts. Applies company policies and procedures to resolve routine issues.

COMPLEXITY:
Works on problems of limited scope. Follows standard practices and procedures in analyzing situations or data from which answers can be readily obtained. Builds stable working relationships internally. SUPERVISION: Normally receives detailed instructions on all work.

Saurabh Thakur
Recruiting Manager
eTeam Inc.
(732) 338-2805
1001 Durham Ave Ste 201 South Plainfield, New Jersey
South Plainfield, NJ, 07080

Security Review Operations Analyst

Title: Security Review Operations Analyst
Location: San Francisco, CA
Duration: 4+ Months

Responsibilities:
  • Help ISVs understand and use the security tools, resources and documentation available
  • Ensure that ISVs submit working, fully configured, end-to-end test environments for the security review by testing credentials, researching offerings, looking at packages and code, looking at external apps and reading the documentation
  • Interpret security reports and other documentation included in submissions to determine if security issues are present and reports are complete
  • Interface with ISVs as necessary when items are missing or incomplete to ensure offerings are ready for testing by the Trust Organization

Requirements:
  • A technical understanding of common security issues for web applications, mobile applications, apex code, and other common platforms
  • Understanding of complex offerings and integration scenarios for ISV offerings on the App Cloud
  • Solid analytical and organizational skills
  • Ability to present complex information in a clear, concise manner
  • Ability to communicate clearly and professionally, both verbally and in writing
  • Demonstrated passion for excellence with respect to treating and caring for clients; maintains a level head and is able to handle stressful situations, complaints and unpleasant clients in a professional manner
  • A pleasant, patient and friendly attitude
  • Ability to work in a fast-paced, team environment; willing to address complex problems with minimal direction
  • Ability to multi-task, prioritize and be detail-oriented
  • Proficiency with Apex and Visualforce
  • BS/BA degree preferred


Jitendra Singh
Recruiter
Direct Phone#: 908-293-8650 || 732-248-1900 x 0402

Security engineer

Position: Security engineer

Location: Westborough, MA

Job Description:

•             Strong knowledge on Firewalls like Palo Alto
•             In depth knowledge of configuring and troubleshooting firewalls, like ACL, Remote Access VPN, IPSEC VPN, NAT, PAT, Clustering, End point security assessment
•             Hands-On experience on Cisco Switching and Routing.
•             Routing protocols like BGP, EIGRP, OSPF
•             Understanding customers network and solving network security related issues in minimum time
•             for CISSP certification with cyber security
•             Certifications in Network Security would be an added advant


Ankit Kumar
Technical Recruiter
Noralogic Inc.
109 East 17th St, Cheyenne WY 82001

Monday, January 13, 2020

Security Analyst Sr.

Job Title: Security Analyst Sr.
Location: Salt Lake City Utah/ San Jose, CA
Duration: Long-Term Contract

Description:
The Vendor Security Assessor position is responsible for supporting Client’s Global Vendor Security program.
This individual will be working directly with business and technology leaders to understand vendor security issues and risks; overseeing vendor security assessment efforts; prioritizing vendor security assessment activities; and negotiations involving contract terms related to Information Security Requirements.
We are looking for someone with security, communication, negotiation, and writing skills, experience with Information Security and Risk Management practices and principles.
The successful candidate will also have an understanding of information protection requirements and solutions as well as the threats and challenges impacting the protection of information across an extended global enterprise.
The successful candidate will have a good blend of experience working within legal, vendor management, and information security risk/governance.

Job Responsibilities:
• Work with Client business and technology partners to evaluate information security risks related to strategic vendors and partners.
• Communicate vendor security risks to business leaders to ensure a clear understanding of these risks.
• Negotiate Information Security contract requirements with Legal, Procurement, and Vendors/Partners.
• Conduct information security program reviews of vendors to evaluate any critical risks.
• Establish and prioritize vendor security assessment activities.
• Negotiate remediation of security issues with vendors and third parties.
• Communicate and present key vendor security initiatives, practices, and issues to business units.
• Must be able to interface and coordinate work efficiently and effectively with business colleagues and vendors in global locations and time zones.

Mandatory Qualifications:
• Strong communication and negotiation skills.
• Strong writing skills with experience writing legal contract information security requirements preferred.
• Self-starter with the ability to manage multiple tasks concurrently.
• Ability to communicate effectively with technical staff, business owners, and leadership.
• 3+ years of experience in Information Security Risk functions within the vendor risk management area.
• 1+ year experience reviewing contracts and negotiating information security/privacy contract terms.
• Experience using vendor cybersecurity scorecard platforms (Bit Sight, RiskRecon, Security Scorecard, etc.) is strongly preferred.
• Strong analytical, organizational and decision-making skills.

Education and Certifications:
• Bachelor’s Degree or equivalent work-related experience required.
• CISSP, CISM, CISA, CIPP or equivalent preferred.
Interview Process: 1. VC Screen 2. VC interview w/ the team *if the candidate wants to see the office that could be set up

Somi
IT Recruiter
Desk: +1 703-544-2960

Tuesday, January 7, 2020

Security Analyst

Title:  Security Analyst
Length: 12+ month’s contract
Location: San Francisco, CA

Primary Skills :
- Threat Intelligence
- Incident Response
- Vulnerability Management (VM)
- Penetration Testing

Job Description :
Sr. Security Analyst Threat Intelligence
  • Develop and maintain Threat Intelligence Program
  • Leveraging MSSP
  • Ensure Intelligence is consumable by other teams
  • Provide guidance to teams on how to use intelligence
  • Create reporting dashboards and alerts Incident Response Primary person for researching incidents:
  • Detailed description of incident
  • Work with Legal and any 3rd party companies engaged by Rodan and Fields
  • Impact to R F
  • Steps to contain the incident
  • Remediation Steps
  • Postmortem Vulnerability Management (VM) Will be in charge of the management of the VM program. This will involve working with internal and 3rd party teams to ensure the VM processes are followed. This includes but not limited to:
  • Identify of assets to be covered by the VM program
  • All appropriate policies are created, published and kept current
  • Appropriate teams have read and understand the policies
  • Type and frequency of VM scans to be run
  • Setting the remediation SLAs for vulnerabilities identified by scans
  • Severity will be risk based
  • Provide oversight and guidance on Patch Management process
  • Includes exception process for SLAs and applying patches
  • Validate remediation is completed within the defined SLAs Penetration Testing Perform Penetration Tests on Rodan and Fields properties and work with appropriate teams to remediate any findings Mentor Jr. Analyst Event Monitoring Mentor Jr Analyst in Event Monitoring and remediation. Level 3 support for events. Security Tools Admin Work with Jr Analyst to ensure policies and rules are configured to support Rodan and Fields security posture. Backup for Jr Analyst on supporting these tools. Collaborate with the Security Architect by providing input on the following:
  • Security Architecture
  • ISO 27000x implementation
  • Security Standards
  • Threat Modeling
  • Security Tool selection and use
  • Secure Development Lifecycle
  • Data Loss Prevention/Information Management


Gopichand
Recruiter - Conch Technologies, Inc
Ph: 901-313-3067
E: Gopichand@conchtech.com
Conch Technologies, Inc | 
www.conchtech.com

Wednesday, January 1, 2020

Application Security Architect

Title: Lead Application Security Architect
Location: Atlanta, GA (Onsite Position)
Duration: Permanent/Direct Hire
Salary: $130-190 K per annum+ Full Benefits

Job description
  1. In this mission critical role as Lead Application Security Architect, you will serve as the AppSec Technical Lead for global, enterprise-wide applications and services. You will be part of a dynamic global application security team, working directly with software architects and software engineers to lead, establish, enable, and improve the security of the software solutions developed within the company.
  2. As the client pushes forward as a software-focused company, you’ll work in a fast-paced environment, helping enable teams to work in a DevSecOps model in a world of containers, automated pipelines, and rapid deployments. And you’ll be instrumental in leading the implementation to secure applications and services in a cloud environment. The client produces hardware and software for major companies in Retail, Hospitality, and Financial Services – come help secure the state-of-the-art!

Key Responsibilities
  1. Collaborate with engineers, consultants and leadership to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC).
  2. Aligning the SDLC to industry standards, including Microsoft SDL, OWASP development guides, and PII related topics such as GDPR and CCPA.
  3. Perform proof-of-concept and proof-of-technology testing for integrating new 3rd party security products into the development and deployment processes.
  4. Perform threat modeling, design reviews and code reviews as part of the development lifecycle.
  5. Design and deploy state-of-art technology to meet the business needs and interface with business units regarding technical planning and application security topics.
  6. Perform security architecture and design reviews of systems and applications developed in the client.
  7. Perform validation of security controls to insure adherence with compliance and industry best practices.
  8. Perform hands on security testing of products and services to proactively discover risk and track them to resolution.
  9. Consulting product teams on how to architect and implement PCI & FFIEC compliant solutions and ensuring audit compliance.
  10. Understand, balance and communicate business risk with security risk.
  11. Ability to understand business requirements and apply security without adversely affecting the desired functionality.
  12. High level of personal integrity, with the ability to professionally handle confidential matters, and reflect appropriate level of judgment as it pertains to security.
  13. Leading includes keeping better communication with other engineers, consultants and leadership in order to conduct other job duties in the above as a team.

Required Skills and Experience:
  1. Bachelor’s degree in Computer Science, Information Security/Cyber Security or equivalent.
  2. 5+ years’ previous experience in information security.
  3. 5+ years’ experience working within software development.
  4. 3+ years’ experience implementing PCI compliant solutions.
  5. Excellent written and oral communication skills, as well as interpersonal skills including the ability to articulate to both technical and non-technical audiences.
  6. Firm understanding of enterprise class application architectures that are highly scalable and reliable and the ability to secure them.
  7. Experience with containers and Kubernetes.
  8. Experience with GCP, Azure, and AWS technologies.
  9. Experience with security architecture and design reviews.
  10. Experience with multiple languages such as Java, .Net, and Node.js etc. and understand how to detect and remedy related security issues such as OWASP top 10.

Preferred Skills and Experience:
  1. Excellent analytical, evaluative, and problem-solving abilities.
  2. Experience with Security tooling: Coverity, AppSpider, Seeker, AquaSec.
  3. Experience with securing host, database, and application solutions for multi-tier systems.
  4. Experience with Penetration Testing.
  5. Experience implementing PCI & FFIEC compliant solutions and ensuring audit compliance.
  6. Knowledge of automated attack tools and developing mitigation techniques.
  7. Hacker mindset and always strives to think like an attacker.
  8. Technical certifications within information security are a plus (CISSP, CCSP, GIAC or equivalents).
  9. Active participation in cybersecurity forums/conventions (e.g. DEFCON, BlackHat) public speaking is a plus.


    Shashi Parashar
    Sr. Consultant- Talent Acquisition
    Office: 949-681-9546
     - Mobile: 949-681-9546
    sparashar@calance.com