Security Engineer

Company Description

Sonoma Consulting is one of the fastest growing national IT Consulting and Executive Search company in the United States, which was founded in 2011 by Mark McGee, the President and CEO. Sonoma Consulting has two business divisions - IT Consulting Services & Executive Search to serve its 150 national clients which range from entrepreneurial start-ups to Global Fortune 500.

Job Description

Job Description:

The Senior Information Security Engineer works with members of Information Security, Infrastructure Technology and Business Systems teams to design and manage appropriate security measures for the protection of corporate information assets. The Senior Information Security Engineer is responsible for the complex and detailed technical work necessary to establish and maintain information security systems such as firewalls and intrusion prevention systems. In addition, the Senior Information Security Engineer redesigns and reengineers internal information handling processes so that information is appropriately protected from a wide variety of problems including unauthorized disclosure, unauthorized use, inappropriate modification, premature deletion, and unavailability.

This position occasionally requires some weekend and evening work as well as off-hours for on-call support rotation.

Description:

•The Senior Information Security Engineer's responsibilities include: • Assessing, building, and supporting security solutions and controls including: SEIM, network firewalls, ACLs, IPS, internet content filtering, Identity and Access Management, web application firewalls(WAF), vulnerability scanners, penetration tests, incident response, Active Directory group policies(GPOs), and logical access controls • Researching and deploying new technologies • Performing internal security audits and monitoring systems to ensure that appropriate access levels are maintained • Preparing for and responding to security incidents • Serving as an internal Information Security consultant to the organization • Communicating threats and countermeasures to management and staff to promote security awareness and compliance throughout the organization • Developing and/or maintaining BCP/DR plans for security systems and participating in tests • Collaborating with IS management, legal, human resources and law enforcement agencies to manage security vulnerabilities or investigations

Qualifications

Qualifications: 

 • The idea candidates will have: 

• Strong interpersonal, communication, and leadership skills, including the ability to effectively communicate to both technical and non-technical audiences, in both a one on one as well as in a group environment

• An intimate knowledge of the TCP/IP networking protocol suite 

 • Strong understanding of LAN/WAN technologies; experience configuring FTP services, DNS and SMTP architectures. 

• Experience with network protocol analysis 

• Three or more years of experience in the design and deployment of network security and operating system solutions and information security infrastructure elements such as Firewalls, VPN, DMZ, Security Event Monitoring systems, IDS/IPS, and Directory Services. 

 • Strong understanding of common network and system exploits and vulnerabilities. 

 • Excellent analytical and problem solving skills. Ability to troubleshoot complex networks and design network security solutions

 • A solid understanding and work experience with virtualization technologies and host operating systems, including Windows and Linux 

• Experience with Digital Certificates, SSL, IPSEC, and other encryption technologies. 

 • A strong understanding of authentication and authorization methodologies, including knowledge of network authentication protocols including TACACS and RADIUS. 

 • Experience with scripting languages • Experience with security auditing tools such as COPS, Tripwire, Nessus, etc.

 • BS in a Technology related field or an equivalent work experience 

 The following experience and certifications are a plus: 

• Technical Certifications such as CCNA, CCNP, CCSA, CCSE, SANS GIAC series 

• Professional Certifications such as CISSP • An understanding of application security and OWASP 

• Experience designing and developing security countermeasures for Web and e-commerce environments.

Additional Information

Titles: Security Engineer, Information Security Engineer, Senior Security Engineer, Security Consultant, Security Manager

Skills :Identity and Access Management, web application firewalls(WAF), vulnerability scanners, penetration tests, incident response, Active Directory group policies(GPOs