Skip navigation
Unable to save this job. Please try again later.

{msg}

Email this Job to Yourself or a Friend

To begin the application process, please enter your email address.

Company Contact Info

Already have an account?

Sign in to apply with your saved resumes.

New to CareerBuilder?

Don't have an account? Continue as a guest!

Sorry, we cannot save this job right now.

Report this Job

Trust and Site Security Team.

Email Send Failed!

Information Security Engineer III

Windows Management Experts • Phoenix, AZ

Posted 12 days ago

Job Snapshot

Contractor
Travel - Up to 25%
Experience - At least 10 year(s)
Degree - 4 Year Degree
$65.00 - $85.00 /Hour
Security
Information Technology
75+

Applicants

How Do You Compare to the Competition?

Get facts about other applicants with a CareerBuilder Account

Job Description

Information System Security Engineer 3

Location: Portland, OR

 

 

Position Overview:

This full-time contract position will be located in the client Data Center Services organization under the Infrastructure Services within the IT department. The role of the Information System Security Engineer is to serve as a member within Information Technology (IT) Operations teams, evaluating and engineering various technical, operational and management solutions to security problems related to approved IT projects. This position is responsible for engineering, planning, implementing, upgrading or monitoring security measures.

 

This position is not open to Foreign National candidates.

 

Responsibilities include:

  • Analyze risk of existing and proposed system architectures and their security policies.
  • Document risks and propose risk treatment plans for information systems.  Alert Manager of any risks to Systems.
  • Evaluate operating practices and documentation to confirm if controls and security measures are adequate.
  • Propose updates to technical control standards supporting the various platforms, systems, and environments.
  • Assist software engineers with implementing secure code development practices.
  • Assist Managers and application teams with implementing secure configurations of commercial off-the-shelf software.
  • Conduct vulnerability testing in all environments (development, test, and production).  Notify the manager if vulnerabilities are detected.
  • Continually review system logs and monitoring tools for potential incidents.
  • Provide technical security support to the IT Operations staff and other IT teams.
  • Support IT System Security projects, coordinate efforts with team members, maintain proper communication to management as well as contribute to the overall success of the project through completion.
  • Promote collaboration, cooperation, communication and teamwork within IT Operations staff, and project counterparts outside of the team.
  • Perform risk assessments and facilitate tests of data processing systems to maintain proper functioning of data processing activities and security measures.
  • Provide training to Operations staff (including system, virtualization, and database administrators) and promote security best practices.

 

Position Requirements:

Education/Certifications:

  • Bachelor of Science Degree in Computer Science required, with 5+ years of related IT Security Engineer or equivalent experience.
  • 10+ years of related IT Security Engineer or equivalent experience can be substituted for education requirements.
  • Must demonstrate hands-on technical implementation of information systems commensurate with the professional certification of CISSP, SANS/GIAC, etc.  The hands-on technical experience should have employed or leveraged technologies involved in information systems such as, but not exclusive of or limited to, Active Directory,  MS SQL or Oracle, IPSEC, Operating system security configurations (DISA STIG, FDCC, CIS, etc.), WAN, LAN, and web services (Apache, Internet Information Server, etc.).
  • 3+ years effectively performing security control implementation on networks, servers and systems and/or vulnerability assessments is required.
  • Experience in evaluating various different technical, operational and management solutions to security problems, using written language and various media to present alternatives and recommendations.
  • CISSP Certification is desirable.
  • SANS/GIAC Certification is desirable. 

 

 

 

 

General Requirements:

  • Ability to develop documentation sufficient to arrive at logical and comprehensive conclusions and recommendations.  The documentation must be of a sufficient professional level to stand as an artifact for reuse as part of the security architecture. 
  • Ability to work in hands-on technical implementation of information systems.
  • Ability to perform analysis of in-place technical and non-technical security controls protecting information and information systems.
  • Ability to clearly communicate results of discussion, artifacts and recommendations.
  • Familiarity with the System Development Life Cycle and the 800 series of National Institute of Standards & Technology (NIST) Special Publications (in particular 800-37, 800-39, 800-53, 800-53A, 800-94 and 800-115).
  • Knowledge of networking and internetworking (e.g. routing, switching etc.), computer and network device operating systems (e.g. Windows, Unix, Linux, IOS etc.), firewalls, and general security engineering concepts.
  • Knowledge of software and system development and architecture in support of security engineering concepts.
  • Knowledge of vulnerability research methodologies and sources.
  • Federal Information Security Management Act (FISMA) and its implementation through NIST 800-53.
  • Knowledge of security engineering.
  • Knowledge of security incident handling, response and follow-up.
  • Organization and information-gathering skills.
  • Possess advanced analitical skills.
  • Ability to perform successfully in a team environment.
  • Possess strong technical writing skills and verbal communication skills.
  • Provide guidance and input to technical reviews of proposed projects, and the certification and accreditation process.
  • Apply technical and English language skills to communicate effectively via telephone, e-mail correspondence, and in-person meetings
  • Meet timelines, milestones, deliverables, and provide timely status updates on assigned tasks.
  • Support a sustainable infrastructure by maintaining adequate documentation of activities, including cross-training of employees as necessary.
  • Ensure proper identification of self as a contract worker in all communications, correspondence, etc.

Job Requirements

General Requirements:

  • Ability to develop documentation sufficient to arrive at logical and comprehensive conclusions and recommendations.  The documentation must be of a sufficient professional level to stand as an artifact for reuse as part of the security architecture. 
  • Ability to work in hands-on technical implementation of information systems.
  • Ability to perform analysis of in-place technical and non-technical security controls protecting information and information systems.
  • Ability to clearly communicate results of discussion, artifacts and recommendations.
  • Familiarity with the System Development Life Cycle and the 800 series of National Institute of Standards & Technology (NIST) Special Publications (in particular 800-37, 800-39, 800-53, 800-53A, 800-94 and 800-115).
  • Knowledge of networking and internetworking (e.g. routing, switching etc.), computer and network device operating systems (e.g. Windows, Unix, Linux, IOS etc.), firewalls, and general security engineering concepts.
  • Knowledge of software and system development and architecture in support of security engineering concepts.
  • Knowledge of vulnerability research methodologies and sources.
  • Federal Information Security Management Act (FISMA) and its implementation through NIST 800-53.
  • Knowledge of security engineering.
  • Knowledge of security incident handling, response and follow-up.
  • Organization and information-gathering skills.
  • Possess advanced analitical skills.
  • Ability to perform successfully in a team environment.
  • Possess strong technical writing skills and verbal communication skills.
  • Provide guidance and input to technical reviews of proposed projects, and the certification and accreditation process.
  • Apply technical and English language skills to communicate effectively via telephone, e-mail correspondence, and in-person meetings
  • Meet timelines, milestones, deliverables, and provide timely status updates on assigned tasks.
  • Support a sustainable infrastructure by maintaining adequate documentation of activities, including cross-training of employees as necessary.
  • Ensure proper identification of self as a contract worker in all communications, correspondence, etc.
Help us improve CareerBuilder by providing feedback about this job: Report this Job.
CAREERBUILDER TIP
For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.
By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.