IN001540
Network Security Engineer with IDS/IPS, FERPA, Sarbanes-Oxley, PCI DSS, HIPAA/HITECH, ISO/ITIL/CoBIT and government experience
Location: Charlotte, NC
Duration: 12 months
Positions: 1
Description:
The University of North Carolina at Charlotte (UNCC) is seeking to fill a short term (approx 12) month contractor position to perform in a IS Manager (ISM) role:
Providing:
•Tactical & operational support (development, implementation & Mgmt of UNCC’s Information Security (IS) Program
•Guidance regarding prioritization of infrastructure investments that impact security
•Consulting services to ITS teams & business units in the development, implementation, & maintenance of an IS safeguard, control or infrastructure
Oversee:
•Activities related to access control; human resources security; asset Mgmt; physical & environmental security; communications & operations Mgmt
•Development & implementation of educational efforts to promote IS awareness
•Incident response planning & investigation of security breaches
Assist with:
•Providing guidance, direction, and authority for all IS activities including enterprise wide user provisioning, de-provisioning, user access, & restrictions to all systems
•Planning, design & implementation of security measures created to safeguard access to resources, enterprise networks, computer systems, & data element
•Mgmt of IS projects to improve security posture &/or meet regulatory requirements
Additional:
•Work with external parties & consultants for independent security audits
•Ensure availability, integrity, authentication, confidentiality, & non-repudiation of IS& information assets
•Lead a team of IS analysts & engineers for security administration, actively engaging in policy, enterprise architecture, risk assessment, audit, investigation & ediscovery related efforts
•Advise & collaborate with UNCC’s internal and external partners
•Coordinate with technology teams in security technology & product identification & research
•Help develop, implement, & manage UNCC’s IS policy, process & procedures in accordance
•Identify protection goals, objectives & metrics consistent with organizational strategic plan
•Collaborate to identify, analyze,& resolve any security concerns on various systems & platforms related to installation, configuration, Mgmt,& use.
•Conduct studies & risk assessments, ensure integrity, confidentiality & availability of information to end-users is not compromised
•Analyze, recommend & implement approved counter measures
Required:
•Bachelor’s degree required
•Minimum of five (5) years of information technology, IS and/or network security experience
•Minimum of two (2) of the following certifications preferred: CISM, CISSP,CISA, SANS GIAC, CCNA Security, CCSP, or CCIE Security
•Experience with network/infrastructure security architecture
•Comfortable working with a team, performing technical reviews, & coordinating with other reviewers as appropriate
•Ability to interact effectively with all levels of employees to achieve organizational goals & objectives
•Solid understanding & demonstrated experience with:
•Network, operating systems, database, & application security concepts, methodologies & technologies
•Identity & access Mgmt concepts, methodologies & technologies
•Security monitoring & vulnerability Mgmt concepts, methodologies & technologies
•Incident Mgmt & response concepts & methodologies
•Strong working knowledge of a wide range of IS concepts, methodologies & technologies including but not limited to virtual privatenetworks;routers/switches/firewalls; ISA’s; intrusion detection/prevention systems (IDS/IPS); content filtering, anti-spam & anti-virus appliances & software; encryption/authentication; vulnerability scanning
•Skilled in developing & documenting strategic & tactical security architecture & plans
•Strong communication skills both verbal & written
•Time Mgmt, problem solving, & decision-making skills
•Team player, team building self-motivated & capable of working effectively with little supervision
•Good writing skills
Preferred:
•Masters Degree
•Familiarity with regulatory & legal security standards & requirements such as FERPA, Sarbanes-Oxley, PCI DSS & HIPAA/HITECH
•Knowledge of common IS Mgmt frameworks (ie. ISO 2700x, ITIL, COBIT)
•Familiarity with security concepts & best practices
No comments:
Post a Comment