Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.
Develops, tests and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools.
Provides complex engineering analysis and support for firewalls, routers, networks and operating systems.
Performs and evaluates vulnerability scans within a multi-platform, large enterprise environment.
Reacts to and initiates corrective action regarding security violations.
Oversees user access process to ensure operational integrity of the system.
Enforces the information security configuration and maintains system for issuing, protecting, changing and revoking passwords.
Develops technical and programmatic assessments and provides technical support to assess security policies, standards and guidelines.
Reviews, recommends and oversees the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security.

Bachelor's degree or equivalent combination of education and experience
Bachelor's degree in computer science or related field preferred
Nine or more years of experience in network, host, data and/or application security
Experience working with IP networking and networking protocols
Understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists
Experience working with various operating system security (Windows, Solaris, Linux, etc.)
Experience with leading firewall, network scanning and intrusion detection products and authentication technologies
Experience working with federal regulations related to information security (FISMA, Computer security Act, etc.)
Experience with NIST Special Publications and C & A process methodology
Possess security certifications (CISSP, CCNA, etc) and/or top secret security clearance

Information Security Engineer

Key skills