Security Engineer - Information security, COBIT/ISO 207002NIST standar

Georgia  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Keywords

Description

Security Engineer

Skills: Information security, COBIT/ISO 207002NIST standards, SOX, HIPAA; CISSP a +

Summary:

This is an 8 -18 month contract opportunity with a Marietta/Smyrna Global organization. They have maintained consistent growth and stability because of their diversified portfolio of products. They have a culture of fun teams with seasoned professionals who are talented, corporate and knowledgeable. They are hard workers but this is not a sweat shop or micromanagement environment at all! You will provide technology support in the area of security to IT projects.Develop tactical and strategic plans, policies, and procedures related to information security, as well as direct the enforcement of all approved security policies/practices. This is a can't miss opportunity with an INDUSTRY LEADER, headquartered in Atlanta.

Responsibilities:

  • Determines security violations and inefficiencies by conducting periodic audits and reviewing security relevant logs.
  • Handles incident response, acquires evidence, makes recommendations to resolve incident, and coordinates efforts with security management and CIRT.
  • Experience in handling internal investigations/audits with highest level of confidentiality and "chain of custody" processes.
  • Technology/vendor research, assessment, and prototyping; technical due diligence for all partnering.
  • Ensure that audit and assessment findings, regulatory requirements, incident handling lessons learned, and security best practices are accounted for in all security designs and plans.
  • Ensuring that all designs comply with hardening standards, monitoring and compliance, incident response, and disaster recovery requirements.
  • Ability to develop and maintain design and process documentation.

Qualifications:

  • College degree in technical discipline and three years experience, or five years equivalent experience. CISSP a plus.
  • Strong background and motivation in the field of information security is a must.
  • Exemplary general IT knowledge (applications development, testing, deployment, operations, documentation, standards, best practices, security, hardware, networking, OS, DBMS, middleware, etc.).
  • 2+ years implementation experience with commonly accepted industry standards and best practices, including COBIT and ISO 207002 NIST standards (853).
  • In-depth understanding of current legal and regulatory requirements around information security and privacy, including Sarbanes-Oxley (SOX), HIPAA, GLBA, PCI, etc.
  • Familiarity with other security technologies commonly leveraged to support a large-scale, multi-platform enterprise environment.
  • Working knowledge in: IDS/IPS, Web Proxy, Email Security, Endpoint Protection, Endpoint Encryption, DLP, Vulnerability Scanning, Configuration Management, Database Monitoring, Security Monitoring, Two-factor authentication, and Firewall administration.

Benefits:

As an Agile consultant, you'll gain many of the advantages and benefits of being a direct hire, while experiencing the flexibility of consulting. It's the best of both worlds! Our IT consultants enjoy a wide array of benefits including: medical, dental, 401K, life insurance, Employee Assistance Program and more.

Start date
2 weeks
Duration
8 -18 month contract opportunity
From
AGILE
Published at
16.04.2012
Project ID:
349046
Contract type
Freelance
To apply to this project you must log in.
Register