Monitor, evaluate and maintain systems and procedures to protect the data systems and databases from unauthorized users. Identify potential threats, respond to reported security violations and recommend corrective actions to ensure data security. Research, recommend and implement changes to procedures and systems to enhance data systems security.
Deploy, manage and maintain all security systems and their corresponding or associated software, including Firewalls, intrusion detection systems, cryptography systems, and anti-virus software.
Develop, implement, maintain, and oversee enforcement of policies, procedures and associated plans for system security administration and user system access based on industry-standard best practices.
Design and implement disaster recovery plan for operating systems, databases, networks, Servers, and software applications.
Administer and maintain end user accounts, permissions, and access rights.
Manage connection security for local area networks, the company Web site, the company Intranet, and e-mail communications.
Manage and ensure the security of databases and data transferred both internally and externally.
Design, perform, and/or oversee penetration testing of all systems in order to identify system vulnerabilities.
Design, implement, and report on security system and end user activity audits.
Monitor server logs, Firewall logs, intrusion detection logs, and network traffic for unusual or suspicious activity. Interpret activity and make recommendations for resolution.
Recommend, schedule (where appropriate), and apply fixes, security patches, disaster recovery procedures, and any other measures required in the event of a security breach.
Assess need for any security reconfigurations (minor or significant) and execute them if required.
Keep current with emerging security alerts and issues.
Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts.
Interact and negotiate with vendors, outsourcers, and contractors to obtain protection services and products.
Download and test new security software and/or technologies.
Recommend, schedule, and perform security improvements, upgrades, and/or purchases.
Assist in completion of special projects on an as needed basis within the IT Department.
Strong experience designing and administering Firewall R75.40 using SPLAT (4+ years)
Security design in Windows Infrastructure background required (7+ years)
Experience with Cisco Ironport and Websense Proxy gateways ( Proxy, email, content)
Have an understanding of Symantec Endpoint Protection (1+ year)
Have an understanding of Microsoft SCCM for Microsoft and 3rd party security updates (1+ year)
Nice to have but not needed
Experience with administering RSA Authentication Manager
Experience managing Juniper SSL VPN devices (2+ years)
Experience with RSA Adaptive Authentication services
Experience with Cisco ASA Firewall devices
Experience with Quest Change Auditor
Experience with Citrix NetScaler devices
Education: Bachelors Degree in Computer Science or related field or equivalent years of experience.
Experience Level: 6 - 9 years of data security or systems analysis experience.
Certificates and Licenses: Certified Information Systems Security Professional (CISSP).
Ability to read, analyze and interpret general technical procedures, professional journals and general business periodicals. Ability to write reports, business correspondence and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers and the general public.
Office environment with occasional travel up to 10%. Provides occasional on call (night/weekend) assistance in support of the company's 24 x 7 computer operations.