Senior Security Engineer

05 Nov 2024

Vacancy expired!

Job Purpose:Perform security architectural design and review, technology deconstruction and reverse engineering. Scan, analyze and remediate information security assets to identify potential security vulnerabilities and threats that place Kavaliro technology at risk of misuse, unauthorized access or disclosure.

Primary Functions:
  • Test technology security; analyze test results to recommend and assist with mitigation effectiveness;
  • Manage security planning including estimates, architectures, tasks and risk assessments;
  • Configure, schedule, and maintain automated vulnerability scanning;
  • Help design and maintain the security posture, enable compliance and assess IT risk;
  • Interact with business functions to maintain insight on business needs and potential impacts;
  • Responsible for project security planning, implementation support, and security testing. He or she will be key in web security management, support incident response and investigations, writing applicable policies, standards, guidelines, and procedures;
  • Subject Matter Expert (SME) on security tools including vulnerability scanners, penetration testing, IDS/IPS, advanced protection devices and other forensic tools;
  • Audit, respond, and remediate third party assessment;
  • Investigate security issues when necessary;
  • Maintain incident response support; escalate support for security analysts;
  • Assist in the maintenance of policies, standards, guidelines and procedures;
  • Maintain situation and current threat trending awareness;
  • Manage contract security support personnel during special projects;
  • Perform other duties as assigned.

Technical Requirements:
  • Working knowledge in all, but not limited to, the following:
  • Web security management
  • Software Applications (i.e. PSERM, CC&B, AutoCAD, JD EnterpriseOne);
  • Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) and web/email/malware scanners;
  • Policies, standards, guidelines and procedure development; security compliance requirements, servers and other systems;
  • Configure, schedule, and maintain automated vulnerability scanning;
  • Ethical hacking;
  • Vendor, Security, and Risk Management documentation tools,
  • Device log file; Time Sheets; Data samples;
  • RACI;

Web security management;
  • Related industry, organizational and departmental policies, practices, and procedures; legal guidelines, ordinances, and laws;
  • Able to test technology security, analyze and document test results, recommend and assist with mitigation, and assess the mitigation effectiveness;
  • Ability to translate very technical information to an average person;
  • Project security planning including estimates, architecture, tasks and risk assessments
  • Security issue investigation and incident response support;
  • Security tool subject matter expert; ability to efficiently use penetration testing tools, advanced protection devices, and other security forensic tools;
  • Ability to translate highly technical information to non-IT staff;
  • Ability to comprehend data samples, security forensic data, and network data flows;
  • Ability to generate flow charts, architectural diagrams and project plans;
  • Ability and desire to maintain knowledge of new technology (i.e. appliances, devices, etc.)
  • Ability to make arithmetic computations using whole numbers, fractions and decimals, rates, ratios and percentages;
  • Ability to use Microsoft Office Suite (Word, Excel, Outlook, etc.) and use standard office equipment (telephone, copier, computer, etc.)

Education/ Certification/ Years of Experience Requirements:
  • Bachelor’s degree in Computer Science, Information Technology, Cyber-Security, or related field of study from an accredited college or university
  • Certified Information Systems Security Professional (CISSP)
  • To obtain the one or all of the following within one (1) year of hire:
  • Certified Ethical Hacker (CEH),
  • Cisco Certified Network Associate (CCNA Security)
  • GIAC Web Application Penetration Tester (GWAPT)
  • Minimum of six (6) years of experience with penetration testing and vulnerability scanning, security architecture and compliance, and/ or network security engineering

Working Conditions:This job involves occasional exposure to some disagreeable elements (dust, heat, fumes, cold, noise, vibration, etc.) and accidents are improbable other than minor injuries. This job involves occasional working near moving, mechanical parts and in confined spaces.

Physical Requirements:This job requires very frequent lifting up to forty (40) lbs., speaking and hearing. This job requires very frequent typing, reading and writing. This job requires frequent walking and occasional standing and climbing. This job may require rare lifting over forty (40) lbs., bending/ stooping, reaching over head, and kneeling. Additionally, this job may require rare driving of a company vehicle

  • ID: #22220420
  • State: Florida Orlando 32801 Orlando USA
  • City: Orlando
  • Salary: $0+
  • Job type: Contract
  • Showed: 2021-11-05
  • Deadline: 2021-12-16
  • Category: Internet engineering