Requirements/Qualifications:
- 6+ years of experience directly related to information technology security in medium to large enterprise. This experience should include active participation in security programs and processes that have contributed to the development and administration of an organization wide IT security architecture.
- Demonstrated experience with network and IT security components, including firewalls, intrusion detection systems, anti-malware software, data encryption, VPN?, vulnerability scanners, server operating systems, and other industry-standard techniques and practices.
- Prior experience in leading or being part of a security incident response team and proven experience in using SIEM and network DLP.
- Demonstrated ability to perform penetration testing (system, network, application) and security control configuration review to identify gaps and develop effective remediation strategies to address the gaps.
- Ability to understand legal and regulatory requirements and business drivers, and to integrate these into the Company Security Operations.
- Demonstrated ability to develop metrics, performs critical analysis, and develops executive decision support content.
- Excellent communication skills with the ability to write documents ranging from formal and informal reports, system documentation, and training materials.
- The demonstrated ability to work effectively in a collaborative team environment or as an individual contributor.
- Experience in project management and change management procedures and techniques.
- Experience managing information security controls, specifically monitoring, troubleshooting, maintaining, and modernization of mission critical networks and information systems.
- Must be familiar with a wide range of security technologies including, but not limited to: SIEM, IDS/IPS, malware analysis and protection, content filtering, logical access controls, identity and access management, data loss prevention, content filtering technologies, application firewalls, vulnerability scanners, LDAP, forensics software, security incident response and Identity Management.
- Bachelors Degree or higher
Responsibilities:
- Manage daily functions of Company Security Operations, while protecting the integrity, confidentiality and availability of Company information technology resources.
- Administer network and computer system level security controls that help enforce Company Security policies and procedures. Ability to create standard procedures/run books for managing and maintaining various security controls, currently in place.
- Coordinate and administer maintenance and upkeep of security-related control systems, including anti-virus, firewalls, intrusion prevention systems, secure web gateway etc.
- Ensure appropriate incident response procedures and processes exist, including identifying and establishing appropriate escalation/communication chain. Should be able to carry out forensics investigations to root cause security incidents/breaches and carry out effective remediation activities.
- Daily monitoring of enterprise networks using security controls such as SIEM, DLP and secure Web Gateway and coordinate incident response activities based on the events and alerts generated by security controls.
- Work closely with Security engineering team in instituting an effective Threat & Vulnerability Management program.
- Assisting in reviewing existing security controls and help identify security risks. Work closely with security architecture team in recommending effective security controls to mitigate and minimize security risks.
- Create and maintain security operations dashboard, showing risk areas and common threats
City Milpitas
State California