Information Security Engineer

IPsoft is a global Managed Services Provider delivering IT outsourcing to clients worldwide. Automation is the hallmark of our service delivery model and places us at the leading edge of managed services providers. We manage all aspects of IT infrastructure.

Responsibilities:

• The successful candidate shall have a strong command of security operations, intrusion defense, firewalls, security event management, Denial of Service detection/mitigation, document processing, meeting management, scheduling and related support tasks.
• Further, the candidate must have a strong commitment to learning technology and processes.   
• Additionally, the candidate should have a command of secure configuration, incident investigation, system hardening, and similar security technology. 
• The Information Security Administrator is responsible for documentation including reports, presentations, run books, incident reviews and related items.  Experience with audits and assessments with an emphasis on SAS70/SSAE16, FFIEC, PCI DSS, etc. are needed. 
• Finally, an ideal candidate will have a background which includes forensics, DR and BCP.

Certifications (desired but not required):

CompTIA Security+, CISA, McAfee, Checkpoint, Cisco (security), CISSP.

Technologies (in order of importance):

ArcSight, Linux security, Juniper SSL VPN, Anti-virus, Intrusion Detection/Prevention - Snort, ISS, Cisco 42xx/ISR IPS Modules, TippingPoint, Windows, IDM/SSO.  Demonstrated ability with system hardening, investigation, root cause analysis, performance tuning and alert automation/log parsing. 

System Security – Solaris, Linux, AIX, HPUX, Windows, AS400.  Skilled in vulnerability assessment and deployment of countermeasures including tripwire and iptables/ipchains.

Application Security - WebInspect, AppDective.  Interest in application security testing including SQL injection analysis and mitigation.

Experience:

• 2+ years of security management.
• 5+ years of system expertise with Linux and Windows.
• Knowledge of security audits, system hardening, auditing, forensic investigation, ISO 27001 compliance, ISO 20000 certification, SAS 70 / SSAE16 Audits, PCI DSS auditing.

Benefits:

• Competitive Base Salary
• Monthly Bonus Plan
• Medical Insurance, Dental Insurance, and Vision Care
• Life Insurance
• Short Term and Long Term Disability Insurance
• 401(K) Plan
• Flexible Spending Accounts; Health Care, Dependent Care, Transportation
• Vacation, Holiday, and Personal/Sick Time