Information Security Engineer
JK Partners Inc
New York, New York, United States
Job type: all
Job industry: I.T. & Communications
Description: Firewall and Secure Email Gateway monitoring. Assisting users in distress. Quarantining users.3+ years relevant professional experience with the evaluation and compliance of IT systems for the assessment of vulnerabilities and providing appropriate information security countermeasures to ensure implemented information security architectures comply with enterprise-level security architecture standards, including information security programs, protocols, and maintenance of existing systems. Experience with Network and system diagnostic tools and maintenance.
Evaluate and analyze network, systems, and intrusion detection data to identify, isolate and resolve existing and potential security issues and problems in a timely manner to avoid serious system or network failures. Scan network for potential vulnerabilities and/or violations of security polices, such as unpatched system bugs, deployment of misconfigured systems, and/or unauthorized systems; follow up with network and system administrators to develop corrective actions such as application of patches, modification of server configuration and/or modification of network design to comply with University network security policies and procedures.
Monitor requests for support with security events such as phishing attempts, reported credential theft and network based attacks. Respond to requests in a timely fashion, work towards resolution, advise on appropriate course of action to contain and remediate. Document activities and perform root cause analysis.
Maintain up to date knowledge of industry trends regarding network security through participation in technical groups, attending conferences, and researching technical literature; Communicate with peers from comparable institutions to share information regarding network security issues; monitor security newsgroups and information sites to obtain advanced notice of possible security threats to network servers and data.
Required Knowledge, Skills, and Abilities
- Utilization of Splunk for detection and investigation of information security incidents
- Understanding of Palo Alto Firewall logs
- Experience with Snort and ArcSight
- Log analysis
Excellent project management, planning, and analytical skills. Ability to communicate technical information to a non-technical audience. Intermediate knowledge of data communications, network experience of UNIX-based operating systems/tools, standard programming and scripting languages (C, C++, Perl), TCP/IP based networking, and UNIX and MAC based software. Knowledge of a variety of current and emerging technologies- provided by Dice - Utilization of Splunk for detection and investigation of information security incidents - Understanding of Palo Alto Firewall logs - Experience with Snort and ArcSight - Log analysis