Threat Level: green Handler on Duty: Lorna Hutcheson

SANS ISC: InfoSec Jobs - NFORMATION SECURITY ENGINEER - INCIDENT HANDLER Yonkers GCIH InfoSec Jobs


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This listing has expired and therefore is not publicly viewable.

NFORMATION SECURITY ENGINEER - INCIDENT HANDLER
Company Montefiore
Location Yonkers
Preferred GIAC Certifications GCIH
Travel 0%
Salary Not provided
URL https://careers.montefiore.org/job/Yonkers-INFORMATION-SECURITY-ENGINEER-3013-NY-10701/430504600/
Contact Name Andy Lin
Contact Email ALIN/at/MONTEFIORE.ORG
Expires 2018-03-21

Job Description

The Information Security Engineer will manage security incidents by understanding common attack techniques, vectors and tools as well as defending against and/or responding to such attacks when they occur. The Information Security Engineer will on detecting, responding, and resolving computer security incidents and covers the following security techniques:



Incident handling process
Detecting malicious applications and network activity
Common attack techniques that compromise hosts
Detecting and analyzing system and network vulnerabilities
Continuous process improvement by discovering the root causes of incidents​​​​​​​
ISE will have strong Analytical skills
Design, implement and support centralized authentication security systems
Design, implement and support security tools and services to enforce and maintain information confidentiality, integrity, and availability
Responsible for the development, testing, and deployment of complex IT security solutions to ensure proprietary/confidential data and systems are protected.
Work with Montefiore IT departments to ensure information and systems are secure
Advise operations and product groups on the design, implementation, and maintenance of security architecture for systems, applications, and the network
Work with departments to ensure security applications are set appropriately to secure the systems and information
From a security perspective, oversee the design and implementation of systems and applications to ensure security standards are met
Monitor security systems and if the risk is identified, work with the responsible department to take necessary corrective action.
Provide Security engineering expertise in support of IT security policies and contribute to updating existing and creating new policies and procedures
Comply with legislative requirements, executive order, national directives, and standards guidance
Assist with the development of methodologies to resolve any key management issues that arise from the use of public and/or private encryption techniques
Perform market surveys of security products and evaluate their suitability for integration into the current security architecture and networks


REQUIRED SKILLS:

Installing, configuring, and supporting IT security software
Incident handling process experience
Detecting malicious applications and network activity
Common attack techniques that compromise hosts
Detecting and analyzing system and network vulnerabilities
Continuous process improvement by discovering the root causes of incidents​​​​​​​​​​​​​​​​​​​​​
Encryption and authentication expertise
Expertise in security engineering, system and network security, authentication and security protocols, cryptography, and application security
Expertise in IT security centralized user authentication, SSO and Provisioning using AD and LDAP
In-depth knowledge of Offensive techniques
Organizational and communication skills ( oral and written
Ensure adherence to IT security policies and procedures


PREFERRED SKILLS:

IT Security Experience:

Networking: Network communicate through protocols; web content filtering; Network Access Control; firewall and ID/IPS
Incident Response; Encryption, PGP OR Bitlocker; RSA Solutions (preferred)