I have a very urgent DIRECT CLIENT requirement for *Security Analyst w/Certification* in *Columbia, SC*. Please Let Me Know If you have available candidate, please reply with their word resume, location, rate and contact number.
Please send the resumes at pe...@cncconsulting.com Job Title: Security Analyst w/Certification Location: Columbia, SC Duration: 12 Months Develops and manages information security for the agency. This includes IT functional areas (e.g., data, systems, network and/or Web) across the enterprise. Enforces security policies and procedures by administering and monitoring security profiles and audit logs, reviews security violation reports and investigates possible security exceptions, updates, and maintains and documents security controls. Assists in the development and implementation of information security policies and procedures based upon NIST SP 800-53. Reviews applications for compliance with information security policy and standards. Prepares status reports on security matters to develop security risk analysis scenarios and response procedures. Responsible for the tracking and monitoring of software viruses. Involved in the evaluation of products and/or procedures to ensure appropriate security. Provides direct support to the business and IT staff for security related issues. Educates IT and the business about security policies and consults on security issues regarding user built/managed systems. Represents the security needs of the organization by providing expertise and assistance in all IT projects with regard to security issues. REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE): Experience in configuring IDS/IPS to detect/prevent malicious activity Hands on experience documenting and managing all aspects of security within an enterprise organization, including but not limited to: Firewall and IDS/IPS experience Virtual Private Networking Network access policies Web filters Publically accessible assets Active directory Extensive working knowledge of Internet protocols, tools and techniques including but not limited to: Virtual Private Networking (VPN), TCP/IP, Local Area Networks (LAN), Wide Area Networks (WAN), Network device operating systems security configuration, Internet security Experience defining processes to maintain security equipment, test intrusions, and the ensure alerting of threats. Developing and maintaining organization security practices and processes on investigating and documenting suspicious incidents and policy violations. Virtualization and Storage area networking security Creating documentation library and reporting processes for all investigations and Security Program operations Providing continual consultation and written reports to executive management concerning security issues Experience Supervising and directing personnel from other departments when conducting investigations. Highly-developed and proven oral and written communication skills Working with other department leaders, designing security components for operations and other strategic processes, and supervising the development and implementation of required security reporting devices and processes at all levels. PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE): Security compliance for third party and/or in house developed applications Knowledge of Internet Information Server. Knowledge of Virtual Machine operation, strengths, and weaknesses. Experience with VMware ESX security. Support of web-based applications for internal (intranet) sites and external (Internet) sites. Knowledge of software development lifecycles and migrations from different environments, such as development, production, etc… Working technical knowledge of current network hardware, protocols, and Internet standards, including TCP/IP, and DNS, DHCP. Experience in developing and maintaining documentation for security policies, procedures, and best practices. Experience and working knowledge of backup products and methodologies. Proven experience developing, implementing and administering all aspects of a successful Security Program, including physical, technical, personnel, procedural and electronic security. Conducting continual surveys of all offices, departments and functions to determine the need for additional security services, and making appropriate recommendations. Anti-Virus management Experience Preparing and submitting a Security Program evaluation and compliance report REQUIRED CERTIFICATIONS: CISSP, CISM, OR CISA Education CISA Yes 1 Education CISM Yes 1 Education CISSP Yes 1 Network Security Experience in projects involving PCI/NIST security implementations and/or audits. Yes 1 Advanced Currently Using 6 + Years Network Security Security Information Event Management (SIEM) systems development / configuration Yes 1 Advanced Currently Using 6 + Years Network Security Windows Security - Privileges Yes 1 Advanced Currently Using 6 + Years Network Security Windows Security - Group Policy Yes 1 Advanced Currently Using 6 + Years Network Security Writing Plan of action and Milestones (POA&M) Yes 1 Advanced Currently Using 6 + Years Networking & Directories Active Directory Yes 1 Networking & Directories Local Area Network (LAN) Yes 1 Networking & Directories VPN - virtual private network Yes 1 Operating Systems/APIs Wide Area Network (WAN) Yes 1 Protocols Firewall Yes 1 Protocols IDS Yes 1 Specialties NIST Security Yes 1 Advanced Currently Using 6 + Years Thanks Peter Smith Direct: 224-764-8535 Email ID: pe...@cncconsulting.com -- You received this message because you are subscribed to the Google Groups "SAP BASIS" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-basis+unsubscr...@googlegroups.com. To post to this group, send email to sap-basis@googlegroups.com. Visit this group at http://groups.google.com/group/sap-basis. For more options, visit https://groups.google.com/d/optout.