Careers

Information Systems Security Architect/Analyst

The requirements for this position are 16+ years in the Information Systems industry with 10 years of direct Information Security experience. This position is a contract to hire.

The successful candidate will have hands-on Information Security systems experience. The candidate will have some hacking abilities; meaning had actually done hacking, not just observed. The candidate will be able to script. The candidate will be able to architect network and information security systems and analyze existing architected systems. The candidate will be able to configure security tools and devices.

Required Skills
Hands-on experience is a must
Must be able to architect, configure, modify and implement different types of security solutions
Plan, implement, and upgrade security measures and controls
Must be able to script in bash, batch, PowerShell, and Regular Expressions
Must be able to hack
Must be able to troubleshoot issues
Maintain data and monitor security access
Be able to manage, configure, implement IDS, IPS, FW, access controls (AD, LDAP), network security policies, application security, OS security, group policies, web security policy
Working knowledge of Forescout, Tripwire, Splunk, Burpsuite, Metasploit, Nmap, Nikto, Wireshark, and other security tools
Understands DLP, anti-virus and anti-malware
Must understand SSL/TLS, HTTP, HTTPS, DNS, SNMP, IPsec, PKI, proxies, TCP/IP, VM, Wireless, VPN
Understands TCP/IP, computer networking, routing and switching
Understand both Linux and Windows Operating systems
Understand Network protocols and TCP/IP packet analysis
SIEM experience (e.g. McAfee SIEM, QRadar, etc.)
Must be able to use Visio
Must be able to write process and procedures
CISSP, GIAC Gold/Platinum certification or similar top level security certification
Strong IT / IT Security / Architecture background
Cloud Technology and Security experience desired
Good understanding of application security
Understanding of risks in banking/ financial services sector preferred
Knowledge of IT Risk and Security governance
Web proxies, Web Application Firewalls and XML Gateways, Application execution controls

Information Systems Network Security Architect/Engineer

The requirements for this position are 16+ years in the Information Systems industry with 10 years of direct network security experience. This position is a contract to hire.

The successful candidate must have hands-on network engineering and architecture experience. The candidate will architect secure network systems and analyze existing architected systems. The candidate will be able to configure network devices and some security devices including scripting.

Required Skills
Hands-on experience is a must
Must be able to architect, configure, modify and implement networks
Must be able to work in Visio to create detailed designs and other documents
Must be able to write processes and procedures
Must be able to troubleshoot
Must be able to script in bash and PowerShell
Must have expert experience in Cisco or other types of networking devices (Juniper, F5, Netscalers, Load balancers, proxy, et cetera)
Must be able to read and create configs
Experience with Gigamon is nice to have
Must understand Network Protocols and TCP/IP packet analysis
Manage, configure, implement IDS, IPS, FW, access controls (AD, LDAP), network security policies, application security, OS security, group policies, web security policy
Firewalls – Juniper, Cisco, Palo Alto, McAfee, et cetera. Must have more than one type of firewall. Juniper, and Palo Alto are require
Must have a senior level understanding of BGP, OSPF, EIGRP, Redistribution and Route selections.
Experienced in complex MPLS/BGP WAN design and implementation
Experienced in Switching – VLANs, Spanning Tree, Port Channels, VPC
Experienced in VPN and VM
Experienced in Data Center Virtualization
Senior level of understanding of IPv6 & IPv4 and secure communications such as TLS
Must have experience in discovery tools
Experienced in Wireless networks; controllers, APs, et cetera

Coming Soon: Penetration Tester

The requirements for this position are 10+ years in the Information Systems industry with 5 years of direct penetration testing experience. This position is a contract to hire.

Required Skills
Hands-on experience is a must
Must be able to architect, configure, modify and implement different types of security solutions
Must be able to script in bash, batch, PowerShell, and Regular Expressions
Must be able to hack
Must have extensive knowledge of web service protocols such as SOAP, JSON
Direct hands-on experience exploiting web applications, mobile applications and services
Experience with firewalls, routers, switches and other network security devices
Experience with programming languages and framework such as .NET, C, C#, and Java.
Direct in depth experience with penetration testing tools such as Kali Linux, Metasploit, Back track, Burp Suite, tcpdump, Wireshark, etc.
Must be familiar with Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP) and National Institute of Standards and Technology (NIST) Special Publications.
Experience with Red Team engagements.

Coming Soon: Risk Assessor

The requirements for this position are 10+ years in the Information Systems industry with 5 years of direct Information Security Risk Assessment. This position is a contract to hire.