Description
Anteo Group has an immediate need for a Senior Systems Security Engineer in Norcross, GA. As a Security Consultant, you will join an existing team focused on specialized internal project based work. This role will work in Tandem with Anteo Group's project lead onsite at the customer's office. This will be an initial six month project with interviews looking to start as soon as possible.
Preferred Skills and Experience:
Because this is an internal consultant role, the ideal candidate will have either a Big 5 consulting experience or come from a large, multi-national organization. Our customer is a very large, national organization in the financial services industry with multiple locations and over $4 Billion dollars in sales. The experience and ability to navigate the corporate landscape and savvy to get things done in a very large institution is very important for this role.
The chosen consultant will be part of a larger team tasked with evaluating potential customer solutions, and making security recommendations to meet pre-determined security benchmarks and requirements. This role will have excellent communication (both written and verbal) and will be expected to work with multiple stakeholders (both local and out of town) to craft a recommendation/solution prior to implementation. Strong oral and written communication is key because this role will interface with many different internal teams and be expected to properly document solutions to be supported by other groups.
Required Skills:
Ability to design and deploy tools such as Symantec Critical Server Protection (CSP), CA eTrust Access Control, Tripwire, Qualys Guard
Hands-on management of a security system comprising of server systems and 1000's of agents eg Tripwire/Symantec CSP Console with 1000+ agents
Understand all layers of TCP/IP, vulnerabilities associated with each layer, mitigation techniques eg SSL v2 - vulnerable to MiM attacks, provide mitigation recommendations
Working knowledge of IDS/IPS systems such as snort, ISS Proventia/Real sensor or similar tools
Ability to deploy, configure, manage, maintain, test, patch and destroy
Windows Server and desktop OSes
Linux/Unix flavors
VMWare vSphere Hosts and/or Hyper-V Host
Small Switches (physical/virtual)
Small Firewalls/Routers (physical/virtual eg Vyatta, Astaro, Checkpoint UTM devices)
Web Servers such as IIS, Apache
Small SAN (Fiber/iSCSI)
SSH services (ssh-keygen, key based authentication etc.,)
Group Policy Objects (GPOs)
Active Directory Forests, Domains, trust-relationships
Proxy Servers such as Squid/MS ISA/TMG
Metasploit, core-security or similar tools
Basic/intermediate Networking knowledge such as IP Addressing, sub-netting, routes, VLANs, Trunks, SPAN Ports, sniffers etc.,
Understanding of encryption algorithms, protocols and technologies
Understanding of protocols such as DNS, SMTP, FTP, Telnet, r*(rsh) etc.,
Scripting experience Windows: Powershell, Unix/Linux: bash/zsh, python or similar working knowledge of packet filters (host/network), Proxy Servers (bluecoat, Squid etc.,)
Knowledge of SIM/SIEM tools and methodologies such as ArcSight, Loglogic, Splunk or similar open source tools
Security Certifications such as CISSP, CISM, GIAC (GCWN, GCUX)
Sysadmin Certifications on MCSE, MCSA, MCTS and/or Sun Solaris, RedHat Linux, HPUX