Job Title: Security Administrator
Job Summary: Research, implement, monitor and manage corporate security devices and applications including Firewalls, Intruder Prevention Systems, Patch management Systems, Certificate Authority, Proxy Servers, Anti-Virus, Email Filters, Web Content Filters, Backup Devices and SSL Taps.Provide expert security consultancy during requirements and design phases of the development cycle.
Essential Duties and Responsibilities:
Configure, support and evaluate security tools.
Review network designs and evaluate compliance to applicable security standards.
Conduct security audits and provide recommendations to mitigate risks.
Ensure compliance to security standards and policy.
Design solutions, configure or support Firewalls, Content Engines, Intrusion Detection or Prevention Systems.
Strong knowledge of industry SIEM solutions (netForensics, Splunk, Tripwire, etc.)
Experience with network taps and port mirroring
Produce or modify disaster recovery and business continuity work practices.
Configure and optimize server and desktop operating systems and enterprise patch management systems.
Knowledge of common protocols such as SNMP, HTTP, HTTPS, SMTP, NTP, LDAP, KERBEROS, RADIUS and FTP.
Ensure representation in change management working parties.
Configure and support VPNs and enterprise gateway devices.
Administer remote access infrastructure.
Produce or update remote access policy.
Vulnerability Management - Prioritize identified application and infrastructure vulnerabilities and oversee timely remediation and threat monitoring
Review and analyze intrusion attempts ; coordinates with the corporate enterprise program
Demonstrate expertise in designing and conducting testing of systems and IT security controls (ethical hacking/pen testing, vulnerability scans, etc.) and must maintain current knowledge of hacking techniques, vulnerabilities and threats.
Define and enforce controlled access to corporate security zones as required.
Test systems to ensure adequacy in meeting business requirements.
Prepare supporting documentation as required.
Conduct research regarding user requests for new/modified systems or problem resolution.
Additional duties as assigned.
Knowledge of L4-L7 protocols such as SSL,HTTP,DNS,SMTP and IPSec
Strong understanding of firewall technologies Juniper / Cisco / Checkpoint
Packet Shaper, Load Balancer and Proxy Server knowledge
Intermediate to expert IDS/IPS knowledge
Understanding of information management and data classification
Investigations of security incidents
Demonstrated understanding of VPNs and remote access
Intermediate to expert virus protection and content filtering knowledge
Experience with web application vulnerability scanning tools such as IBM AppScan, HP Webinspect, Accunetix, NTO Spider, Burp suite Pro
Knowledge of forensic tools such as Encase, FTK, Helix, Wireshark
Security policy knowledge and experience
Must have strong analytical skills.
Excellent oral and written communication skills.
Education / Experience:
B.S. Degree in Computer Science or equivalent experience required
Minimum of 5 years of experience in Security expert role within an Enterprise environment
Certifications are a big plus
CISSP (Certified Information Systems Security Professional)
RSA/CA (RSA Certified Administrator)
CCSP (Cisco Certified Security Professional)
SANS Technology Institute Certifications
ThreatTrack Security - 21 months ago