Processing daily tickets and near real-time alerts.
Excellent time management skills & ability to multitask.
Adhering to the Code of Ethics of the ISC2.
Scheduling, Conducting & Participating in Meetings.
Commitment to learning new skills, applications, processes and technologies.
Creating and Maintaining Extensive Documentation.
Willingness to enthusiastically cross train other InfoSec Team members and personnel in other Groups on Security & Compliance Related topics.
Assisting with Security Incident Reporting.
Investigating issues reported by other InfoSec Team members, automated systems and/or other Groups.
Supporting the InfoSec team and performing tasks related to ensuring the success of IPsofts Polices with a focused on ensuring
Confidentiality, Availability, Processing Integrity and Privacy and following the instructions issued by IPsofts CSO.
Experience with audits and assessments is highly desirable with an emphasis on PCI DSS & GDPR.
Providing Managed Security Services to Clients that subscribe to optional security services.
Collecting Immutable Exhibits for Control Testing & Auditing.
The candidate should have the ability to automate reporting, alerting and log parsing.
Creating automations, processes, procedures and/or scripts to address security issues and reporting requirements.
Further, the candidate must have expertise in implementing system hardening and forensic investigation.
The Information Security Engineer will be responsible for documentation including reports, presentations, run books, incident reviews and related items.
Qualifications
Certifications (highly desired but not absolutely required if the candidate has commiserate & verifiable expertise.
Security+, CISA, CISSP.
Education
Bachelor's degree from nationally recognized & accredited College or University.
Citizenship Due to the nature of various Defense Contractor and other Client requirements where InfoSec has an active part in providing services, the successful candidate must be a US Citizen with no arrests or convictions.
Over 5 years of Internetworking experience with enterprise class networks.
Over 5 years of System expertise with both Linux and Windows.
Over 5 years of InfoSec experience with security audits, system hardening, auditing, forensic investigation, ISO 27001 & PCI Certification.
Over 5 years of experience with Word, Excel (focus on Pivot Tables, VLOOKUP, Validation Formulas, etc), PowerPoint, Access, Outlook, Exchange, etc.
KPIs
Security Incident Handling.
Ticket Reponses Time & Closure Rate.
Attaining Certification(s).
Positive Client and InfoSec Team Reports.
Domain Technical Knowledge
Security Event Management ArcSight, QRadar, Splunk, etc. Proven ability to operate the solutions.
Intrusion Detection/Prevention Snort, Security Onion. Proven ability to operate the solutions.
System Security Linux, Windows. Proven ability to perform forensic isolation of compromised systems, assist with vulnerability assessment and related tasks.
Incident Investigation Proven ability to use tools like WireShark and functions like hex to ASCII, log analysis etc to perform forensic investigations and maintain chain of custody for evidence.
Routers & Switches Cisco, Dell, Nortel. Proven ability to design, build, configure, enhance and operate the solutions.
TCP/IP Comprehensive knowledge of the OSI Model, IP v4 addressing, Routing & Routed Protocols (including BGP & OSPF), Bridging, Access Control Lists, Wireless, Fast/Gig Ethernet, LANs, WANs, WLANs & MANs.
Diagramming Visio, AutoCAD. Proven ability to diagram complex networks, security controls, data flows, etc.
End User Security Training, countermeasures and other mitigations for Virus Outbreaks, Worms, Phishing and Social Engineering.
Microsoft Office Extensive expertise with Word, Excel (focus on Pivot Tables, VLOOKUP, Validation Formulas, etc), PowerPoint, Access, Outlook, Exchange, etc.
