Security Engineer (Penetration Testing) - NY, US - NeuLion

Job description
Duties

  • Develop strategy for the mitigation of risks of a high availability service-provider environment Manage and support a reoccurring on-call schedule.
  • Design, build, install and configure security solutions in a network, physical, cloud and virtual environment.
  • Administrate and automate security information events from web hosting infrastructure, including firewalls, load balancers, web servers, middleware, and applications.
  • Develop, prepare, coordinate, and execute security response control to correct issues, minimize exposure, reduce impact and enhance security.
  • Advise management on tactical and strategic operational improvements to enhance security capabilities and lower costs of delivery.
  • Provide and oversee the development of written status reports to management.
  • Sustain, maintain and further develop security controls for both agile and waterfall deployments including traditional infrastructure and continuous deployment methods for a dynamic, high-capacity, multi-tiered multimedia infrastructure stack.

Qualifications Required/Essential:

  • Bachelor's degree in Computer Science or related field.
  • Strong security-related experiences working as a security professional or a systems engineer with significant security responsibilities.
  • Experience in a high traffic, public facing production environment.
  • 5+ years of experience working predominantly in security desired with at least 3+ years working a high traffic, public facing production environment preferred.
  • Experience with CentOS and/or Redhat and Windows, including patch management, security hardening, and third party control solutions.
  • Solid knowledge of Layer 3 and Layer 7 defense. Experience with Akamai Kona, Akamai Prolexic, Cloudflare, or another layer 7 WAF required.
  • Experience securing a JAVA web stack based on with Apache HTTP/Tomcat Web Servers and IIS.
  • Experience with IPSec VPN, SSL (HTTPS/FTP over SSL, etc.), MFA/2FA and PKI.
  • Experience working with endpoint security solutions.
  • Proficient understanding of modern networking and cloud connectivity.
  • Experience collaborating on firewall policy and both common internet services and risky protocols.
  • Understanding of automation tools such as ansible, puppet, chef and/or other automation tools.
  • Must be a self-starter with excellent logical and analytical skills with a focus on delivering complete, timely and efficient solutions/resolutions.
  • Familiarity with system architecture principles.
  • Excellent communication skills; must be able to articulate strategic concepts along with supporting execution tactics.
  • Desired experience implementing or supporting some or all of the following: ISO 2700x, NIST CSF, SOC2, SOX, and PCI compliance.

Desired/Preferred

  • 5 or more years experience working as a security professional.
  • 3 or more years experience working in a high traffic, public facing production environment.
  • CISSP, OSCP or similar certification, preferred.
  • AWS Engineering Experience, preferred. Google Cloud & Azure, a plus.
  • Strong Penetration Testing Skills required.




Filed in: cyber security, penetration, penetration testing
Previous article SOC Analyst - WV,US - Leidos
Next article Cyber Security Analyst - Houston, TX - Noble Drilling