Hello all – new requirement with BNY Mellon - $53 h/r – Pittsburgh – 6+ months
Information Security Specialist – Technical business analyst with functional developer skills Job function: - Analyze and complete multiple projects ranging across the various platforms as defined - Effectively represent the department as a leader in the implementation of new technology regarding the protection of information assets - Evaluate development project design requirements to identify any potential impact to department and prepare recommendations detailing those efforts - Design and develop systems that monitor system security logging; provide management reports and identify situations where manual intervention is required - Develop and document security procedures used by security administrators and coordinators in on-going administration of new platforms for security event management - Provide RFP answers to security questionnaires submitted by prospects and customers - Provide ISO 27001-2005 security improvements' Provide support for Internal and External Security Audits Requirements: - Applies extended expertise of security principles, theories and concepts, plus in-depth knowledge of business/function and development life cycle - Must have a solid background with Windows and UNIX platforms (security or system administration), including basic knowledge of virtual environments - Strong understanding of CISCO networking fundamentals - Experience deploying and managing network and host monitoring systems in a complex network environment - Strong technical writing skills - Must have fundamental programming skills (shell scripting, perl, C, etc.) - Project management experience preferred - Must have experience with SOX, GLBA, SAS70, and/or other audits - Must have CISSP security certification (Security+, GIAC, TICSA are a plus) - 3 to 4 years of experience in Information Security - 2 to 3 years of Security Event Management/Security Information Management (SEM/SIM) experience - Experience with a combination of MARS, RSA Envision, NET IQ, or similar security monitoring software. - Basic knowledge of log management concepts (i.e. normalization, correlation, reporting, etc.) - Strong technical documentation skills with emphasis on security legislation (State and Federal Gov.) - Strong fundamental knowledge of networks, ports, protocols, and infrastructure setup (i.e., syslog, scp, etc.) - Must have an understanding of regulatory compliance requirements (HIPPA and SOX preferred, and/or PCI, GLBA, and SAS70) - Strong database security knowledge specifically database activity monitoring tools (Guardium, Imperva, etc.) - Must be able to adapt and learn quickly for platform integration with SEM/SIM environment - Must be able to take on multiple tasks and complete within defined timelines - Must be able to work in a quick paced environment - Must have a technical degree (Computer Science or Management Information Systems) - Basic logging knowledge of Intrusion Detection and Firewall to SEM/SIM environment Thanks SAM [email protected] --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Oracle-USA" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/Oracle-USA -~----------~----~----~----~------~----~------~--~---
