Information Security Engineer

6 months, possible extension.

Extensive knowledge and experience in implementing and administering IBM AppScan solution

Requirements:

Knowledge Requirements
STRONG PLATFORM KNOWLEDGE (TANDEM, UNIX, NT, NETWORK DEVICES, MAINFRAMES, SQL, RADIUS)
Strong written and oral communication skills
Strong analytical skills
Strong knowledge of MS Office
Certification as a CISSP, CISA and/or CFE, or GIAC certification(s) (desired)
Organization skills
Leadership skills
Facilitation skills
Strong influence skills
Strong troubleshooting skills
Knowledge of Security Policies/Practices
Extensive Security Application knowledge
Strong industry knowledge
Database knowledge (Access, Oracle, MySQL)
Skilled in the use of Application Reference Material
Strong programming and Scripting skills
Strong ability to use logic concepts
Advanced browser, browser security, online commerce knowledge

Experience Requirements
3+ years related experience

General Summary:
This position exists primarily to ensure access to the company's systems via security measures, along with performing general administration of the security applications and operations. Incumbents design and develop automated functions, processes and tools for the security organization. The Senior Security Engineer evaluates industry benchmarks and measures and applies them to enterprise processes and implementation of security processes, provides technical leadership and training for all security domains, serves as consultant in the area of security, under direction of the Corporate Security Manager, participates in highly sensitive forensic investigations, in evaluating and recommending security systems and software, maintains knowledge of emerging technologies in the information security discipline, develops, and publishes, security procedures and policies for the enterprise.

Principal Duties and Responsibilities:
Develop, update and maintain Information Security documentation
o Gather and organize data.
o Design and develop the documentation.
o Perform reviews and edits.
o Publish and distribute documentation

Manage Individual Projects
o Perform needs assessment and direct requirements gathering.
o Develop the project plan and identify resource requirements.
o Schedule work activities and implement the plan.
o Control and monitor the plan activities to ensure plan is on track.
o Test and validate the completed plan to ensure initial requirements have been met.

Resolve Customer Security Issues
o Receive and analyze customer request(s)
o Develop and provide a solution or alternatives to customer.
o Acquire customer concurrence and approval of the solution/alternative.
o Lead in implementing the solution

Perform Proactive Risk Assessments, Security Reviews and Consulting
o Receive and analyze requests.
o Perform review/investigation/interview and provide findings and/or recommendations for mitigation or remediation of risks.
o Receive customer's and/or management concurrence and approval of the solution/recommendation.
o Lead in the implementation of the recommendation/solution, if required.

Conduct Security Investigations
o At direction of Manager - Corporate Security, initiate confidential investigations
o Gather pertinent data and evidence.
o Interact with Legal, HR and law enforcement agencies, when required.
o Prepare final reports for management.
o Where required, act as expert witness in legal proceedings.