Job Details

Home

SECURITY ENGINEER || local from IL || Hybrid at Remote, Remote, USA

Email: [email protected]

From:

hanshika,

vyze

[email protected]

Reply to: [email protected]

Job Description -

Job title - SECURITY ENGINEER.

Location - This is a Chicago-based, hybrid role. ( Need Local Candidates Only )

REQUIREMENTS:

--On-site 2 days a week so must be Local to Chicagoland, IL.

-- Proven experience a Security Engineer for Fortune 1000, fast paced clients.

-- Needs experience with Qualys or Nessus for vulnerability detection systems

-- Other skills: Cisco Malware Analytics or similar tool, Injection Hunter or similar tool, Encryption Technologies, CVE database, CrowdStrike or similar, etc.

JOB DESCRIPTION:

Major Duties & Responsibilities:

Manage a test group of over 1,000 end points to include alpha testing of new patches, application updates, operating systems, etc. This group consists of workstations/laptops from every enterprise LOB which has always been a significant litmus test for a new application rollout post packaging/UAT testing. Applications and scope have included (but not limited to) Java, Adobe Reader, Edge Chromium, Chrome, Firefox, WinSCP, Notepad++, Windows monthly OS patching and new feature functionality testing. Hardware vulnerability analysis is also in scope.

Responsibilities related to above include planning and coordinating application version releases, ongoing meetings, reporting results, troubleshooting, discussions with developers/vendors regarding upgrades, etc. Prioritization of vulnerability remediations which includes mitigation strategies while simultaneously preventing productivity outages.

Candidate will work towards proactively providing an endpoint environment that is sufficiently hardened against vulnerabilities along with assuring that engineering efforts adhere to established corporate policy.

Experience:

Implementation of best practices for hardening an endpoint environment including security framework standards (STIG/NIST/CIS).

Proactively detect and analyze system, applications, code, and hardware weaknesses pre-production. Make remediation and mitigation recommendations accordingly.

Ability to prepare and participate in corporate risk projects as well as IT audits related to PCI, HIPPA, etc. as necessary.

Understanding personal and team roles, contributing to a positive work environment by building solid relationships with team members, proactively seeking guidance, clarification, and feedback.

Apply enterprise vision and standards to all projects. Prepare detailed documentation of all engineered work and solutions.

Education:

Bachelors, Current industry certifications and/or Equivalent experience

5-10+ years of experience providing engineering and operational direction for Security projects as well as support of desktop infrastructure in a large enterprise environment required.

Detection, prioritization, and mitigation strategies for CVE vulnerabilities on end point systems (including OS, 3rd Party Applications, GPOs, Registry modifications, etc.)

Successful track record on implementation of security benchmarks STIG/NIST/CIS settings for an enterprise with minimal user impact.

Engineering with focus on the key security concepts of Confidentiality, Integrity and Availability.

Extensive regression testing for enterprise core applications, monthly critical security patches, OS updates, etc.

Broad infrastructure technology concepts around software, hardware, networking, applications, end user interfaces, virtualization, business continuity, PCI compliance, internal auditing, reporting and total cost of ownership.

Excellent technical knowledge and aptitude in the following areas: Active Directory, Workspace One, SCCM, GPOs, Windows 11, Windows 10, Kiosks, Virtual, Mobility, Reporting, strong documentation, and analytical skills.

Preferred Skills:

Qualys/Nessus (or equivalent vulnerability detection systems), Cisco Malware Analytics, Injection Hunter, Encryption Technologies, CVE database, CrowdStrike, etc.

Airline experience is ideal

Some knowledge of application packaging and PowerShell Interpretation is ideal.

Keywords: information technology Illinois

[email protected]
View all

Fri Oct 27 18:46:00 UTC 2023

To remove this job post send "job_kill 797763" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

hanshika@vyzeinc.com wrote:
From:

hanshika,

vyze

hanshika@vyzeinc.com

Reply to:   hanshika@vyzeinc.com

Job Description -

Job title - SECURITY ENGINEER.

Location - This is a Chicago-based, hybrid role. ( Need Local Candidates Only )

REQUIREMENTS:

--On-site 2 days a week so must be Local to Chicagoland, IL.

-- Proven experience a Security Engineer for Fortune 1000, fast paced clients.

-- Needs experience with Qualys or Nessus for vulnerability detection systems

-- Other skills: Cisco Malware Analytics or similar tool, Injection Hunter or similar tool, Encryption Technologies, CVE database, CrowdStrike or similar, etc.

JOB DESCRIPTION:

Major Duties & Responsibilities:

Manage a test group of over 1,000 end points to include alpha testing of new patches, application updates, operating systems, etc. This group consists of workstations/laptops from every enterprise LOB which has always been a significant litmus test for a new application rollout post packaging/UAT testing. Applications and scope have included (but not limited to) Java, Adobe Reader, Edge Chromium, Chrome, Firefox, WinSCP, Notepad++, Windows monthly OS patching and new feature functionality testing. Hardware vulnerability analysis is also in scope.

Responsibilities related to above include planning and coordinating application version releases, ongoing meetings, reporting results, troubleshooting, discussions with developers/vendors regarding upgrades, etc. Prioritization of vulnerability remediations which includes mitigation strategies while simultaneously preventing productivity outages.

Candidate will work towards proactively providing an endpoint environment that is sufficiently hardened against vulnerabilities along with assuring that engineering efforts adhere to established corporate policy.

Experience:

Implementation of best practices for hardening an endpoint environment including security framework standards (STIG/NIST/CIS).

Proactively detect and analyze system, applications, code, and hardware weaknesses pre-production. Make remediation and mitigation recommendations accordingly.

Ability to prepare and participate in corporate risk projects as well as IT audits related to PCI, HIPPA, etc. as necessary.

Understanding personal and team roles, contributing to a positive work environment by building solid relationships with team members, proactively seeking guidance, clarification, and feedback.

Apply enterprise vision and standards to all projects. Prepare detailed documentation of all engineered work and solutions.

Education:

Bachelors, Current industry certifications and/or Equivalent experience

5-10+ years of experience providing engineering and operational direction for Security projects as well as support of desktop infrastructure in a large enterprise environment required.

Detection, prioritization, and mitigation strategies for CVE vulnerabilities on end point systems (including OS, 3rd Party Applications, GPOs, Registry modifications, etc.)

Successful track record on implementation of security benchmarks STIG/NIST/CIS settings for an enterprise with minimal user impact.

Engineering with focus on the key security concepts of Confidentiality, Integrity and Availability.

Extensive regression testing for enterprise core applications, monthly critical security patches, OS updates, etc.

Broad infrastructure technology concepts around software, hardware, networking, applications, end user interfaces, virtualization, business continuity, PCI compliance, internal auditing, reporting and total cost of ownership.

Excellent technical knowledge and aptitude in the following areas: Active Directory, Workspace One, SCCM, GPOs, Windows 11, Windows 10, Kiosks, Virtual, Mobility, Reporting, strong documentation, and analytical skills.

Preferred Skills:

Qualys/Nessus (or equivalent vulnerability detection systems), Cisco Malware Analytics, Injection Hunter, Encryption Technologies, CVE database, CrowdStrike, etc.

Airline experience is ideal

Some knowledge of application packaging and PowerShell Interpretation is ideal.

Keywords: information technology Illinois

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 0

Location: ,