Experience:
1-3 years of experience
Concerned about your lack of experience? Learn More...
Employment Type:
Full time
Posted:
8/21/2017
Job Category:
Information Services
Security Policy Engineer
(This job is no longer available)
Tell Us More About Your Job Preferences
By telling us what you think of this job, we can help find jobs that match your interests. If you want to see more jobs like this, click on the smiley face. Or if this job isn't what you are looking for, click the frowny face. Learn More...
loading
School
Major
Grad Date
 
 

Not sure what types of jobs you are interested in?


Explore Jobs
Based on Your Education

Follow This Company
Share

Job Description

Security Policy Engineer

Looking for a policy engineer who has knowledge of Risk Framework, ISO 27001, NIST etc, but the focus is on policy awareness

The Security Policy Engineer serves on engineering project teams, acts as a subject matter expert for Information Security (consulting to technical and non-technical management and the user community), and performs key risk management functions within Information Technology.

  • Serve as a subject matter expert for Information Security, consulting to technical management
  • Effectively perform risk assessments for IT projects, technologies and third-parties
  • Maintain, manage and monitor compliance to ISO 27001, regulatory/legal requirements and client requirements.
  • Assist in coordination of the Security Awareness program, including development of awareness content, scheduling of awareness activities and measuring progress of the program.
  • Respond to IT Security questionnaires from current and prospective clients and business partners
  • Collect and triage information on existing emerging threats, including software vulnerabilities. Work with all areas of IT to ensure system vulnerabilities are addressed and remediated effectively and efficiently.
  • Assist in development and maintenance of security policies, standards, processes and guidelines for approval by Firm management. Evaluate exception requests and make approval recommendations to management.
  • Participate in long-term strategy and planning for Information Security

Qualifications & Requirements

  • Three years professional experience, including 2 years working in area of risk management, governance, IT security and/or compliance.
  • Familiarity with Security frameworks and regulations: ISO 27001, NIST, etc.
  • A strong candidate will have one or more of the following certifications:
  • Certified Information Systems Security Professional (CISSP) or Certified Information Security Auditor (CISA). CISSP Associate will be considered.
  • Various vendor-specific certifications relevant to one or more Specific Technologies listed at the end of this description

Technologies

  • Knowledge of basic security technology capabilities.
  • Strong knowledge of anti-malware technologies.
  • Strong knowledge of security administration and role based security controls.
  • Strong knowledge of authentication technologies and their interaction with different platforms, both on-site and remote.
  • Knowledge of both client and server Firewalling technologies and their configuration and administration.
  • Knowledge of security systems log correlation and analysis.
  • Knowledge of data encryption technologies.
  • Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities.
  • Knowledge of web filtering and email SPAM prevention techniques.
  • Knowledge of vulnerability assessment and forensic tools.

Current Security Technologies

  • Windows Authentication and Active Directory integration
  • Trend and Microsoft Forefront Anti-Malware
  • Symantec/PGP Full-disk Encryption
  • WinMagic (Full-Disk Encryption)
  • RSA Authentication Manager and RADIUS
  • Logrythm Security Incident and Event Management
  • ScanSafe Web Filtering
  • Cisco ASA Firewall
  • Rapid 7/Metasploit Pro
  • SANS Securing the Human
  • Proofpoint SPAM filtering
  • Sharepoint

Qualifications

Applicants must be eligible to work in the specified location