Vacancy expired!
Urgent need for a Sr. Security Engineer to start immediately for a contract to hire position with a leading technology company here in Costa Mesa! 100% remote! W2, with benefits. Need to be able to work in CA PST time zone!
Need someone with solid PCI experience as well as Cloud deployment! Position Summary: The Senior Security Engineer must have extensive experience securing a Payment Card Industry (PCI) environment. This Senior Security Engineer will be responsible for securing the company applications, hardware, software, operating systems, and all other infrastructure systems. This position will facilitate integration with various enterprise IT teams to ensure projects and company initiatives are conducted according to company information security standards. You'll also advise IT staff, risk management stakeholders, managers and staff regarding Information Security policies during IT project initiatives. This Senior Security Engineer will champion Information Security projects including security audits (PCI, SSAE-18, etc.), with a focus on application security, cloud security, automation, risk analysis, vulnerability testing and security reviews on company's infrastructure and systems.This person will be responsible for all aspects of security as it relates to the Enterprise environment. Looking for someone with extensive experience in a PCI Regulated environment who understands the concepts needed to secure the environment, monitor for anomalies and make suggestions to improving process, procedure and tools through the enterprise.Required experience:- Knowledge in Security Scanning and Vulnerability Management Tools (Rapid7 preferred)
- SIEM Solutions (Splunk preferred)
- Intrusion Detection and File Integrity Monitoring Tools (SNORT, OSSEC and ModSEC preferred)
- Understanding of day to day security operations within an Enterprise environment
- Absolute must knowledge operating in a MS Windows and Linux environments
- Need basic understanding of cloud deployments and grasp concepts to secure cloud environments, specifically google cloud as they are starting to build out a new Google Cloud Platform environment
Key technical traits: Application and Infrastructure vulnerability testing - Rapid7 InsightVM Company-wide log and event monitoring - Splunk Enterprise Secured Application Access and control - Okta Identitiy Management Real time monitoring and auditing - SNORT, OSSEC Web Application Firewall solutions - ModSec Cryptographic management and solutions - SSL, IPSEC, HSMEssential Job Functions: At least five (5) years of information security operations, information security architecture and security policy management and experience with: Lead role for security compliance efforts and company audits (e.g., PCIDSS, SSAE-18). Product release vulnerability and gap assessments per product release to support the company SDLC practices in addition to company security policies. Corporate wide vulnerability and gap assessments in order to create appropriate recommendations which result and ensure adequate levels of service and security. Implementing, configuring and administering SIEM products to ensure proper visibility into the environment and compliance requirements. Responsible for incident response escalation and process management. Developing and delivering information security training materials and performing annual security awareness including software development specific security trainings. Evaluate and recommend new and emerging security products and technologies by identifying and coordinating implementation of other security program elements such as patch policy, disaster recovery, fraud prevention and security incident response. Strong understanding of web-based applications and ability to troubleshoot load balanced, multi-tier application and container environment. Experience with cloud deployments (AWS, Azure, Oracle Cloud, and general IaaS, SaaS, PaaS deployments) with a focus on security Knowledgeable in Postman, Ansible, Python or other scripting languages for system automation.Position Requirements: Bachelor of Science in Engineering or Computer Science (or equivalent) is required Be passionate about securing systems in a dynamic environment Ability to interface with all levels of employees up to executive level Ability to work both independently with little supervision and in a team environment Must be articulate and communicate effectively, both in written and oral formats Exercise troubleshooting and problem-solving skills Excellent attention to detail and organization skills Ability to maintain and meet schedulesWe are an equal opportunity employer and make hiring decisions based on merit. Recruitment, hiring, training, and job assignments are made without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, or any other protected classification. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance. Vacancy expired!
