Security Engineer
Location is Lansing MI
12 months
Phone and Skype
Must be a Citizen
Job Description
Job Title: Security Software Engineer Specialist Classification:
Reports To: Manager, Information Security
Job Summary: Provides senior level leadership and guidance in all areas relating to information security in order to align and establish information security architecture and strategy with business requirements.
Primary Job Responsibilities:
1.Leads and conducts audits of corporate information systems to ensure compliance with security policies, NIST security controls, PCI-DSS and applicable state and federal laws and regulations.
2.Identifies functionality requirements, performs implementation and advanced security administration of tools (e.g. SIEM, vulnerability management, web application firewall).
3.Trains and transitions day-to-day support of security tools to information security analysts.
4.Establishes control-related standards and procedures and prepares project status reports for senior management.
5.Designs and coordinates business resumption and recovery test and evaluation plans for security, in support of disaster recovery and business continuity plans.
6.Identifies potential risk items and subsequent remediation of vulnerabilities in the environment.
7.Supports day-to-day monitoring of logs and alerts from firewalls, log management, intrusion detection systems and content filtering controls, etc.
8.Performs forensic analysis and investigation of log alerts and malware.
9.Provides advanced security analysis and guidance to the information security analyst and administrator team members.
10.Provides advanced technical problem solving in configuration and utilization of all security enabled applications, systems and network devices.
11.Provides advanced technical analysis of commercial and government customer requirements and controls.
Perform other related assigned duties as necessary to complete the Primary Job Responsibilities as described above.
Minimum Qualifications:
Position requires a bachelor's degree in information technology or a related field, and seven years' experience in information technology or security. CISSP Certification is required. GIAC/CISA/CISM/CCIE/CCCNA or other specialized security certification preferred. Will accept any suitable combination of education, training, or experience.
Position requires advanced knowledge of information security principles and practices, intrusion detection systems, installation, configuration, monitoring and response to security systems, advanced security protocols and standards, software and security architectures, risk management, control techniques and frameworks, planning and project management, regulations, and laws; ability to lead teams; ability to collect and analyze complex data; use data extraction and analysis tools; ability to use active listening skills; effective verbal and written communication