Job Summary
Information Security Engineers implement and execute network security controls across multiple data centers. They will coordinate a variety of network and infrastructure requests between teams, partners, and clients. Engineers evaluate new and existing network/security architecture requirements, participate in system design, and provide technical assistance as required. Research will also be necessary to analyze attempted efforts to compromise security protocols. Additional duties may include conducting risk assessments, performing vulnerability scans, and assisting with the development of policies and standards.
Responsibilities
- Conduct security assessments and analysis of various enterprise-class networks, interact with operations staff in designing and implementing mitigation steps
- Evaluate, design, and deploy tools to fill identified security gaps including but not limited to technologies such as network and host-based IDS/IPS (Sourcefire, McAfee, Retina), network infrastructure (Cisco, Juniper, F5), security information and event management systems (QRadar), SSL content proxy (Bluecoat, Websense), and web application firewalls (F5, Imperva)
- In-depth security analysis of network infrastructure configurations such as firewalls and VPNs
- Perform comprehensive report writing surrounding assessment-based findings, results, and recommendations
- Interface with customers and during meetings, briefings, when providing security assessments/analyses, remediation reports, and other related systems engineering briefings
- Identify security best practices and provide recommendations to minimize risk in systems and technology projects
- Serve as member of the Computer Security Incident Response Team (CSIRT)
- Perform detailed, post event analysis of unusual events, and direct needed procedure or process changes in response
- Perform security audits by reviewing/correlating firewall, IDS and network device logs; propose corrective action(s) as necessary
- Responsible for validating attacks against networks and resources, assessing the impact, and making the appropriate recommendations for and implementing any countermeasures and remediation that may be required to address any security issues
- Define, track and maintain the standard baselines and configuration sets of all managed and/or monitored security devices and implement industry best practices
- Validate network SLA uptimes for all production and non-prod environments
- Validate network configuration changes following approval and change management processes
- Interact with operations and hosting providers to ensure network issues and project milestones are met in a timely manner
- Update, audit and maintain network diagrams and processes, support contracts, and SLA agreements
- Maintain regular backup of firewall and network devices and perform recovery operations
- Support periodic white hat network and web application vulnerability assessments and security reviews including SSAE 16, ISO 27001, FISMA
- Identify new technologies and alternative systems to enhance security, reliability or customer experience
- Responsible for providing 24/7 on-call coverage on a rotating basis
- Perform other duties that may be assigned
Requirements
- Extensive knowledge of network security, endpoint security, VPN gateways, perimeter IDS/IPS, web security gateways, network access control
- Knowledge and expertise in conducting Certification and Accreditation (C&A) activities using FISMA and ISO guidelines.
- Ability to obtain a Secret security clearance
- 5+ years of experience with security technologies including:
- Intrusion Detection Systems, Security Information Management systems,
- Log Analysis and Management tools, Packet capture and analysis tools
- 5+ years of experience in Network design and operations experience in a multi-vendor environment (Cisco, Juniper, F5)
- 3+ years of experience with incident management and operations workflows
- Experience with compliance standards and security best practices (NIST guidelines, CIS benchmarks, DISA STIGs, etc.)
- Aptitude for learning new network and security technologies and applying them to new and existing infrastructures
- Bachelor's degree in Computer Science, Engineering or related field
- CISSP, SANS, or other industry-recognized security certification required
BMC Software is an Equal Opportunity Employer.
