Senior Information Security Engineer Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the senior information security engineer job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.

USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.

SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Create a Resume in Minutes

L Dietrich

Lennie

Dietrich

4153 Ian Keys

Los Angeles

+1 (555) 633 0881

4153 Ian Keys

Los Angeles

Phone

p +1 (555) 633 0881

Experience Experience

Phoenix, AZ

Senior Information Security Engineer

Phoenix, AZ

Williamson Inc

Phoenix, AZ

Senior Information Security Engineer

General office activities - walking, standing, sitting, speaking, finger manipulation, lifting, bending, etc
Implementing, managing, maintaining and ongoing tuning of various security systems and applications
Assisting stakeholders in identifying, initiating, and tracking corrective actions to address anomalies
Responsible for planning, coordinating and executing application architecture and engineering reviews to help ensure that new services are secure by design
Driving the development and ongoing tuning and optimization of security event monitoring and analysis application platforms
Identify control deficiencies by analyzing and identifying underlying root causes
Developing, documenting, and maintaining common data standards for data normalization

San Francisco, CA

Senior Information Security Engineer Fed

San Francisco, CA

Zieme LLC

San Francisco, CA

Senior Information Security Engineer Fed

Coordinate and participate in special projects concerning information security, including testing and implementation of security software enhancements
Develop, facilitate, and present information security awareness and security training on various customer and corporate security policies
Manages Information Security Audits by federal departments/agencies, including third party auditors
Perform as the ISSO (Information Systems Security Officer) for Federal systems
Perform IS security briefings, report all security incidents to the ISSM (Information Systems Security Manager), and investigate, document and report, as well as provide protective and corrective measures in response to such incidents
Writes BC (Business Continuity)/DR (Disaster Recovery)/CP (Contingency Plans)/COOP (Continuity of Operations) plans, test plans, and test reports for federal systems
Maintain a broad knowledge of technology, equipment and/or systems to include the configuration, maintenance, analysis and use of computer forensics tools, steganography and metadata tools, audit reduction tools, firewalls, various operating systems, and phone switches

present

Detroit, MI

MTS Senior Information Security Engineer

Detroit, MI

Rosenbaum, Hegmann and Oberbrunner

present

Detroit, MI

MTS Senior Information Security Engineer

present

Consult with product development and quality assurance organizations on secure development
Perform product code audits
Drive secure life cycle development processes, tools and methodologies throughout the organization
Develop application security training content and conduct security trainings
Design and develop tools to detect security loopholes and prevent fraud
Implement various application security solutions and projects to secure eBay products
Optimize security tools to meet current and future threats

Education Education

Bachelor’s Degree in Computer Science

Kean University

Bachelor’s Degree in Computer Science

Skills Skills

Strong knowledge of OWASP Top 10 web and the ability to effectively communicate methodologies and techniques with development teams
Excellent verbal and written communication skills with strong ability to present persuasive ideas
Excellent communication, attention to detail and the ability to foster trust across groups are key success factors for this role
Exceptional oral and written communication skills, ability to work independently with minimal supervision, and results-focused mindset are highly desirable
Ability to project professionalism over the phone and in person
Highly self-motivated with ability to tackle challenges without supervision
Strong working knowledge of Cisco ACS 5.x version or Cisco ISE
Strong working knowledge of Cisco ASAs including software versions 7.x, 8.x and 9.x
Ability to work cooperatively and professionally with co-workers, customers and management
Ability to apply knowledge of multidisciplinary business principles and practices to achieve successful outcomes in cross-functional projects and activities

Create a Resume in Minutes

15 Senior Information Security Engineer resume templates

Read our complete resume writing guides

Senior Information Security Engineer Resume Examples & Samples

Technical Information Security support of a business vertical including
Working with the Information Security Business Leader to help deliver security programs for the business vertical
Work with the business to understand needs at a technical level
Work with the Security Architect to design solutions based on needs for the business
Engage and work with other Technology Security or IT teams to help support the business vertical
Participate in evaluation and recommendation of new technologies and processes
Knowledge of virtualization, Microsoft Windows systems, networking devices, audit collection systems, knowledge of accreditation practices
Bachelor’s degree or equivalent education
Implementing host based security tools and initiatives
L2/L3 type of support
Can interact with the customer
Ability to lead and manage tasks
Can translate needs into solutions

Senior Information Security Engineer Resume Examples & Samples

Interface with internal customers to understand their security needs and implement technical solutions and procedures to accommodate them
Ensure the customer community understands and adheres to security guidelines and standards
Serve as an internal information security consultant to the organization
Promote information security awareness
Monitor systems to ensure that appropriate access levels are maintained
Develop disaster recovery (DR) and incident response plans for security systems and participate in tests
Configure, deploy and maintain security-related devices
Resolve security related tickets passed to engineers by the help desk within SLA
Participate in an on-call rotation for information security

Senior Information Security Engineer Resume Examples & Samples

Engineers security technology solutions for the company across a range of Information Security areas, such as IDS/IPS, SIEM, firewall, and antivirus. Acts as the primary technical resource for these solutions
Translates business requirements into successful process and technology solutions
Performs operating system, network and application vulnerability assessments. Analyzes gaps, identifies potential issues and recommends corrective measures to ensure the integrity of the Starz’s security posture
Works independently and with outside parties to perform network penetration tests, application vulnerability assessment scans, and risk assessment reviews
Participates in the selection, configuration, and maintenance of information security hardware and software
Effectively implements a continuous monitoring solution centered on the IBM QRadar Security Intelligence platform
Is experienced with Information Security access management solutions such as two-factor authentication solutions, PKI environments, and proxying/web filtering
Participates in conducting due diligence reviews of potential Information Security vendors, products and outsourced services
Leads a cross-functional Security Incident Response Team to resolve security incidents for Starz
Partners with Starz IT teams to design secure infrastructure and applications, and assists in or facilitates the implementation of protective and mitigating controls
Minimum 7 years’ experience in IT, with at least 5 years direct experience in Information Security or Compliance
Bachelor degree or equivalent experience in Computer Science, Computer Security, Networking, or related discipline
Relevant Information Security and control certifications preferred (any of CISSP, CISA, GIAC, etc)
Solid experience with network security, with a firm understanding of network architecture and protocols, firewalls, and IDS/IPS
Prior experience with implementation and tuning of SIEM technology, with preference to experience with the IBM QRadar Security Intelligence platform
Experience with vulnerability management, penetration testing, and incident response
Skills leveraging advanced endpoint security technologies such as antivirus, “zero-day”, APT and endpoint whitelisting technologies such as FireAMP, FireEye, TRAPS or Bit9
Requires broad technical breadth across several disciplines, with exposure to and ability to generate solutions across several facets of IT such as systems engineering, information analysis, monitoring/management, database management, software development, and network engineering
Must be able to drive solutions in a collaborative manner, obtain clear requirements, analyze and articulate risk, identify issues and alternatives and recommend solutions commensurate with risk
Requires excellent analytical ability, consultative skills, strong judgment and the ability to work effectively in a cross-functional, multi-disciplinary, team environment
Requires strong verbal and written communication skills to effectively communicate across various levels. Ability to influence others is critical to success
Proven ability and desire to understand and develop expertise on new technologies quickly
Must be well organized with excellent follow up skills to meet deadlines, coordinates work of others while fostering team work and cooperation; able handle multiple concurrent tasks
Technical breadth in security aspects of multiple platforms, operating systems, software, communications, LAN/WAN, wireless, VPN and network protocols
Experience in a broadcast environment a plus, but not required
Ability to exercise initiative, problem-solving and decision-making skills
Ability to establish priorities and coordinate work activities
Ability to manage daily tasks to provide high level customer support with day-to-day activities
Ability to work positively and supportively with the company managers, peers and other employees
Strong customer service work ethic
Excellent analytical and strategic thinking skills
Strong judgment and problem analysis techniques
Ability to work in a fast-paced environment and handle multiple projects
Strong organizational skills and proficient in establishing priorities
Early morning and/or late night shift work may be required. The Senior Information Security Engineer is expected to respond to security events 7x24x365. Occasional weekend work required

Senior Information Security Engineer Resume Examples & Samples

Subject matter expert for Security of Apple products (mobile, workstations, laptops, servers, etc)
Partner with desktop and server teams to help define, develop and implement security
Technical Information Security support of a business vertical
3+ years’ experience with Apple products, focused on OS (Mac, Server, Storage) iOS experience is a plus
Experience with Apple management tools such as Casper
Experience with MDM solutions

Senior Information Security Engineer Resume Examples & Samples

Provide content creation and policy tuning for multiple security detection and alerting tools, including
Web Application Firewalls (WAF)
Security Information and Event Management (SIEM)
Network Forensics and Network Intrusion
Implement SIEM solutions that support real-time security monitoring operations and generate actionable information toward ensuring the continued protection of Visa information assets
Collaborate with all internal and 3rd party security teams to implement security controls that will protect the Visa brand from real or perceived security breaches
Effectively manage reported system, application and device vulnerabilities and through remediation and maintenance in adherence with incident response policies
Develop and optimize processes to improve security threat identification and remediation
Strong understanding of firewall, intrusion detection and prevention, endpoint security, and application layer gateway technologies
Deep knowledge and experience with logging and SIEM tools including but not limited to Q1 QRADAR, ArcSight, Splunk
Deep knowledge and experience with Imperva SecureSphere
In depth understanding and working knowledge of OWASP top 10
In depth understanding for security event analysis and intrusion detection (IDS/IPS Incident response, triage, incident analysis and remediation)
Experience in using scripting languages automate tasks and manipulate data. Programming experience is a plus
Experience with Splunk and Imperva (DAM) is a major plus

Senior Information Security Engineer Resume Examples & Samples

Provides technical assistance with the design, installation, operation, service and maintenance of a variety of multi-user information security systems
A hands-on technical specialist, an Engineer handles the complex and detailed technical work necessary to establish security systems
An Engineer configures and sets-up information security systems or trains other appropriate technical individuals (e.g. Access Control System Administrators, Systems Administrators, Network Administrators, and/or Database Administrators) to do these tasks themselves
Develops, implements, and maintains security technologies that secure an organization's network and websites
Defines network security issues, develops plans and procedures, and ensures safety and privacy of their newly developed internet and intranet sites
Defines usage and guidelines for administration of user profiles and other access controls
Reviews security logs and violation reports for root cause analysis
Develops, implements, and maintains security technologies that secure an organization's data
Reviews security issues, develops plans and procedures, and ensures safety and privacy of deployed and planned computing systems
Defines usage and guidelines for delivery of security and computing controls
Supervises a team of Security Engineers
Requires a bachelor's degree in a related area and/or 7-10 years of experience in the field or in a related area
Relies on extensive experience and judgment to plan and accomplish goals
Experience in the field or in a related area.(5-7 years)
Foster effectiveness during changes in tasks, work environment, or condition affecting the organization. - Strong analytical and problem-solving skills

Senior Information Security Engineer Resume Examples & Samples

Responsible for planning, coordinating and executing vulnerability testing and reporting on internal and 3rd party systems
Responsible for planning, coordinating and executing network penetration tests of Intranet and Internet networks
Responsible for planning, coordinating and executing application, web and mobile services as required
Responsible for ongoing remediation tracking and reporting to ensure that identified vulnerability are addressed in a timely and reasonable manner
Responsible for planning, coordinating and executing application architecture and engineering reviews to help ensure that new services are secure by design

Senior Information Security Engineer Resume Examples & Samples

Improve Autodesk’s ability to protect its environment through the design, development, and implementation of security analytics, assessment, and correlation and response systems
Collaborate with incident response, risk and compliance, product security and development teams to solve critical security problems
Evangelize security throughout the enterprise and drive changes needed to respond to emerging threats
Well versed in virtualization technologies used in public and private cloud, experience with cloud orchestration technologies like CloudStack and Scalr is a plus
Knowledge and experience with network, host and application security practices
Similarity with one of the technologies; Chef, Puppet, Ansible or Salt
Experience with Python, Perl, Ruby, JavaScript in the context of AWS API usage and automation
Excellent analytical skills, organizational skills, ingenuity and the ability to work as part of a team
Knowledge of mobile security, including experience implementing security controls

Senior Information Security Engineer Resume Examples & Samples

Monitors and analyzes network usage
Provides 24 hour on call service in support of the security infrastructure
Researches attempted efforts to compromise the Bank's security
Determines causes of security violations and recommends corrective actions
Performs penetration testing of external and internal networks
Provides technical support for the Bank's VPN, firewalls, and authentication systems
Performs security reviews and responds to reported security violations
Educates and communicates security requirements and procedures to all users
Experience with First Citizens Bank information security practices
One or more industry recognized technical or security certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), etc

Senior Information Security Engineer Resume Examples & Samples

Integrates information technology processes to resolve information security needs
Develop and review information security requirements and impact plans for existing and emerging information security technology
Establishes processes for testing and evaluating information security infrastructure and conducts simulations
Keep abreast of emerging security technologies and make appropriate recommendations regarding their implementation
Daily evaluation of threats and vulnerabilities
Review vulnerability assessments and bring awareness to security problems and issues. Lead and participate as a team member on network vulnerability assessments, utilizing both automated scanning tools and hands on assessment techniques
Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives. Provides technical support in the development, testing and operation of firewalls, intrusion detection systems, and software deployment tools
Reviews computer reports, files, fw logs, and messages produced by engineers, system administrators, and systems identifying instances of possible information security breaches
Bachelor's degree in computer science or related field preferred
8+ years of experience in technical information systems positions, with at least 4+ experience in a pure information security position (firewall engineer, IDS engineer, penetration tester, etc.)
Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists
Strong analytical and problem solving skills to troubleshoot and resolve. Network / operating system security issues
Ability to implement security tasks, including hands-on configuration, deployment and maintenance for a security infrastructure
CISSP and GSEC Certifications or be able to achieve both certifications within 1 year
CEH Certification a plus

Senior Information Security Engineer Resume Examples & Samples

Evangelizes security program fundamentals across the OSI model and acts as a consultative partner with Global IT and Business teams
Designs, develops and deploys and implementing a variety of platforms including the SEIMs, IDS/IPS, Firewalls, WAFs, AntiVirus, Encryption/HSMs, DDOS services, configuration management, vulnerability scanning, PKI, penetration testing and more
Partnering with Security Architecture to ensure platform goals and security solutions are designed with the business strategy and needs
Monitors threat intelligence reports and feeds, designs remediation’s for profile or toolset changes based on reviews
Performs penetration testing activities
Participates in Red Team/Blue Team exercises to test security controls
Designing and implementing security controls that are built and engineered to meet, including internal controls, as well as SOX and PCI controls
Review reports from MSS service and audits regular performance
Participate as a senior member for security incident response activities
Ensure documentation is created for hand of to the SOC operations team
Train and mentor security engineering team members
Direct Experience in Information Security (preference to Retail or Banking Industries)
Experience in the following technologies – SEIMs, WAFs, IDS/IPS, AntiVirus, Vulnerability Monitoring Platforms, File Integrity Monitoring, DLP, and Encryption
Direct experience with incident response and remediation
Certifications Preferred – CEH, CISSP, GIAC 3 - 6
Foster effectiveness during changes in tasks, work environment or condition affecting the organization

Senior Information Security Engineer Resume Examples & Samples

Own and guide platform strategy within the Audit Logging, Monitoring, Threat Analytics, and Database Audit/Access and Network Access control spaces
Review security capabilities and proactively work to identify and implement new capabilities
Work within and across security domains/disciplines to help build and execute on a cohesive security strategy
Guide technical design activities to ensure design intent is clear and infrastructure impact understood
Participate in strategies to utilize infrastructure hardware, software and other technical components as service offerings
Lead in the design and build of infrastructure components for security tools including virtual and bare metal servers, direct attached storage, NAS, SAN, Network, etc
Resolve hardware, operational, infrastructure and application incidents in an engineering capacity
Lead the design, lifecycle management, and total cost of ownership of security platforms, applications and infrastructure services
Work with IT management and architects to ensure systems are in line with overall IT policies and standards

Senior Information Security Engineer Resume Examples & Samples

Lead management of vulnerability management platform and ability to validate exploits
Lead management of all encryption environments
Lead management of application whitelisting environment
Implement and lead operation of all antivirus and anti-malware platforms
Perform on-going security threat avoidance analyses
Installation, configuration, and monitoring of new technologies to provide information security
Analyzes new systems (hardware and software) and provide recommendations concerning their security
Proactively assesses potential items of risk and opportunities of vulnerability in the network
Assist in the development and knowledge transfer to all junior team members, as well as other IS or firm groups
Performs other work related duties as assigned
7-10 years of experience in information technology and security
Strong knowledge of IDS/IPS, firewalls, SIEM, and other security-related technologies
Strong knowledge of security implications involving Microsoft, Cisco, Unix/Linux, and other market leaders in technology solutions, including mobile devices
CISSP is required
Ability to work effectively in a culturally and educationally diverse

Senior Information Security Engineer Resume Examples & Samples

Requires a bachelor's degree in a related area and/or 5-7 years of experience in the field or in a related area
Relies on experience and judgment to plan and accomplish goals
Basic skills in Microsoft Word, Excel and PowerPoint
Basic Project management skills

Senior Information Security Engineer Resume Examples & Samples

Strong Knowledge of Endpoint Security Solutions (Anti Virus, HIPS, DLP)
Solidcore / Application Whitelisting / FIM experience is a plus
Maintain Linux and Windows Operating Systems housing production and
Install, configure and maintain security controls such as intrusion
3+ years information security experience
Working knowledge of scripting languages python and/or perl

Senior Information Security Engineer Resume Examples & Samples

Designs, develops and deploys a variety of platforms including the SEIMs, IDS/IPS, Firewalls, WAFs, AntiVirus, Encryption/HSMs, DDOS services, configuration management, vulnerability scanning, PKI, penetration testing and more
Partners with Security Architecture Team to ensure platform goals and security solutions are designed to meet business strategy and needs
Monitors threat intelligence reports and feeds; designs remediations for profile or toolset changes based on reviews
Designs and implements security controls that are built and engineered to meet compliance requirements, including internal controls, as well as SOX and PCI controls
Reviews reports from MSS service and audits regular performance
Participates as a senior member for security incident response activities
Ensures documentation is created for hand off to the Security Operations Center (SOC)Team
Trains and mentors security engineering team members
Ability to foster effectiveness during changes in tasks, work environment or conditions affecting the organization

MTS Senior Information Security Engineer Resume Examples & Samples

The ability to work across various product development groups to understand application security needs for designing application security frameworks and solutions
Drive application security vulnerability management. Handle security issues coming in through various channels including bug bounties, security tools, pentests and recommend solutions to fix and drive to closure
Implement various application security solutions and projects to secure eBay products
Develop application security training content and conduct security trainings
BSCS degree with 8+ years of experience or a MS degree with 5+ years of experience
5+ years of related security experience
Strong experience with application security technologies, including penetration testing of applications, application security vulnerability management, designing and driving application security solutions and frameworks, working with various application security dynamic and static analysis tools, conducting code reviews, driving application security life cycle development processes, tools and programs with product development groups
Experience with web and mobile application security needs
Experience with current understanding of Industry trends and emerging threats

Senior Information Security Engineer Resume Examples & Samples

Serves as information security subject matter expert for connected vehicle services, streaming and systems and network security
Responsible for supporting the information security program and performance of relevant information security engineering and testing activities for the connected vehicle services, streaming and infrastructure services of Sirius XM
Collaborates with business owners, product/systems engineers, and operational personnel to understand business priorities and goals, company culture, and processes to identify information security risks; works with teams to recommend and help implement solutions and/or mitigating controls
Provides technical design, documented guidelines and implementation support of security controls for servers, workstations, network devices, multi-function devices, mobile computing platforms, and applications
Serves as a technical security liaison with OEM clients and their respective security representatives
Performs security assessments and technical testing of information systems infrastructure and applications, including internal, external, and partner facing systems
Identifies singular and compound vulnerabilities across operating systems, databases, network infrastructure, and applications
Actively tracks vulnerability findings and status of remediation, driving toward resolution
Validates the continued and proper placement, operation, and tuning of security instrumentation, including vulnerability scanners, intrusion detection sensors, DLP, security log monitoring/correlation tools, file integrity monitoring solutions, and other security relevant controls by monitoring the IT security operations groups and their activities
Evolves and adapts incident response and handling procedures commensurate with changing threat landscape and business needs
Provides routine status and metrics for information security to the Director of Operations Security
May perform daily and alert based monitoring of information security events and initiate response procedures in accordance with established processes
May perform routine and ad-hoc information security vulnerability scanning and testing to identify risks to information assets; escalate and expedite resolution/mitigation of vulnerabilities deemed high/critical severity
Helps raise awareness of information security in the company and provide holistic guidance on information security
There are no supervisory responsibilities associated with this job
7+ years hands-on information technology security experience
A Bachelor’s degree from an accredited institution or an equivalent combination of education and work experience
Experience with PCI, ISO, and SOX
Self-motivated to constantly hone information security knowledge and skills
Good public speaking and presentation skills
Interpersonal skills and ability to interact and work with staff at all levels
Ability to project a professional image over the phone and in person
Strong organizational skills and attention to details
Excellent time management skills, with the ability to prioritize and multi-task, and work under shifting deadlines in a fast paced environment
Must have legal right to work in the U.S
Sirius XM is a 24/7 operational entity and, from time to time, the Senior Information Security Engineer is expected to serve as an on-call resource and to participate in security activities outside of normal business hours
This position may require 25% travel
Relevant work experience designing and implementing security controls and securing systems, applications, and infrastructure (5+ years)
Vulnerability and penetration testing tools and techniques (2+ years)
Malware protection and response (2+ years)
IDS/IPS and security event/ log monitoring and correlation (2+ years)
Security program implementation (1+ years)
Working knowledge of ISO standards, PCI, OWASP Top 10
Experience with internet facing services and 24x7 environment
Experience with telematics services is preferred

Senior Information Security Engineer Resume Examples & Samples

Deliver DLP upgrade project including: requirements, design, testing, pilot and implementation
Become the technical SME on the DLP solution
Define policy/rules for the DLP solution and refine them as DLP strategy matures
Analyze reports from DLP tool and provide metrics to management
Document solutions and help documents as needed for future DLP Analysis team
Subject matter expertise in Symantec DLP (Vontu)
Experience writing DLP policies, troubleshooting, and defining procedures and processes
Minimum of 3 years experience in the data loss prevention space
Superior oral and technical writing communication skills

Senior Information Security Engineer Resume Examples & Samples

Improve Autodesk’s ability to better protect its environment through design, development, implementation and operational support of security solutions
3-5 years’ experience in the field of information security
7 + years in the area of information technology in three of the following areas: systems engineering, networking, applications engineering, databases, storage, client-side technologies or systems' administration
Experience with network and host security monitoring, detection and response tools and capabilities including IDS, malware sandboxes, log correlation engines, flow collectors, memory forensics, etc
A successful track record of partnering with a diverse set of business units to achieve success
Experience with traditional and cloud infrastructure environments
Knowledge of Network and Internet Architecture
Knowledge of programming/scripting languages such as Python, Perl, Bash, C/C++

Senior Information Security Engineer Resume Examples & Samples

Maintain and enhance Autodesk’s formal information security incident response plan that drives the information security monitoring, detection and response capabilities to protect organizational assets
Design solutions to enhance detection, correlation and remediation capabilities
Perform project leadership tasks on select security projects
Master’s degree (M.S.) in computer science or related field, or Bachelor's degree (B.A.) and equivalent work experience
3-5 years’ experience in the field of information security in at least three of the following areas: incident detection & handling, forensics, malware analysis, active adversary threat management, penetration testing, vulnerability assessment, Windows or Unix security, or endpoint security controls
3+ years in the area of information technology in three of the following areas: systems engineering, networking, applications engineering, security, databases, storage, client-side technologies or systems' administration

Senior Information Security Engineer Resume Examples & Samples

PKI (Public Key Infrastructure)
Event log analysis
First Citizens Bank experience

Senior Information Security Engineer Resume Examples & Samples

4+ years of experience in an Information Security Operations role
Detailed knowledge and experience in the response and mitigation of threats and vulnerabilities associated with Application and Infrastructure Security
Knowledge of the Technologies and Products. including: Advanced IOC detection; Change Management Monitoring; Web Content Filtering; Malware Analysis and Root cause; Next Generation Firewalls; Web Vulnerability and Application Scanning; Certificate Authority, External CA management; MS PKI Infrastructure; Endpoint Security; and, SIEM Management Tools
Solid time management and problem solving skills
Specific product experience, including: McAfee Enterprise Anti-Virus/ePO; IBM Qradar SIEM; Qualys/Rapid7 Vulnerability Management; Palo Alto Enterprise Firewalls, including Threat, Virus and Web Filtering subscriptions; Tripwire Enterprise; IBM Guardium; Microsoft SCCM; Microsoft PKI; FireEye Technologies; and, External CA management
Demonstrated experience in Engineering the latest next generation Security Platforms
Working knowledge of the following standards or regulations OWASP, PCI, HIPAA, GLBA, SOX, ISO27000
CISSP, CEH, GIAC, or other qualified industry security certifications

Senior Information Security Engineer Resume Examples & Samples

Strong technical proficiency in at least 3 of the following skill sets: Incident Response, Threat Modeling, Intelligence Gathering and Analysis, Threat Mitigation, Protocol Analysis, Intrusion Detection and Prevention, Web Application Security, DDoS Mitigation, Data Correlation, Penetration testing, Security Architecture, Data Loss Prevention, Tamper Resistance, Identity Access Management
Strong proficiency with at least 1 programming or scripting languages
The ability to multi-task and dynamically manage varying priorities
Excellent communication, attention to detail and the ability to foster trust across groups are key success factors for this role
Strong interpersonal and communication skills, the ability to work effectively in situations involving uncertainty or lack of information
Knowledge of networking protocols and infrastructure designs; including routing, switching, data indexing and correlation, host and network intrusion detection systems
Performing detailed analysis of systems and networks to support the resolution of information security incidents, root cause and remediation
Ability to translate complex concepts and requirements from face to face meetings into documentation, statements of work, and proposals a plus
Knowledge of advanced post exploitation or reverse engineering a plus
Knowledge of protocol security weaknesses, exploitation methods, and strategies for mitigating or eliminating threats a plus

Senior Information Security Engineer Resume Examples & Samples

Analyzing and developing policies and solutions to support email security on an enterprise scale
Interfacing with senior management both verbally and written
Design, implement and collaborate on a range of information security metrics and performance reports
Effective use of Splunk security app/dashboard
Must have a minimum of 5 years’ experience in information security, 10 years’ experience in the other fields and or be able to thoroughly demonstrate the necessary skill set
Experience managing email security controls and policies; Proofpoint experience preferred
Demonstrated ability to effectively apply information security theories and concepts to specific circumstances
Ability to gain the cooperation from users to create a level of security awareness throughout the Bank for accountability and responsibility
Be able to create native productivity aids and command scripts. Have a thorough understanding of personal computers and software productivity packages like MS Office, Access, Excel, and terminal emulation software
Must be familiar with Regular Expressions and Splunk
Must have the skills required to evaluate business process and application software, which effect the integrity, functionality, and reliability of the bank's network and systems
Leads pro-active reviews and self-assessments of the policies, procedures and systems, including but not limited distributed computer systems, Internet, Intranet, and Extranet networks

Senior Information Security Engineer Resume Examples & Samples

Contribute to teams’ continuous success by providing training and guidance of IAM solution, practice, and process to other stakeholders including system and business owners
Analysis of complexity and feasibility of User Access Request and User Access Certification for new applications/systems. Investigate possible alternative scenarios
Create Business Requirement Documents according to Bank's project life cycle management requirements. Responsible for delivering other documents in compliance with Bank standards
Works closely with application/system owners, ensure high quality and timely and cost-effective delivery of integration artifacts for to-be on-boarded applications
Demonstrates effective management of multiple concurrent projects with attention to detail
Responsibilities include, IAM system engineering effort estimate for projects, standards and processes, release notes to stakeholders and triage on-boarding priority and timeline for new applications or changes
Minimum 7 years of administration, installation and troubleshooting experience in an enterprise environment for IBM ISIM ISAM solution
Experience is required in one or more of the following areas: Identity Management, Access Management and Role Based Access Control, enterprise SSO (ESSO)
Strong understanding of IBM Security Identity Management (SIM) and Security Access Management (SAM) architecture and components
Experience of installing and configuring IBM IAM solution components
Knowledge of IBM SIM and SAM prerequisite software: Web Sphere Application Server, WebSEAL, Message Queues, DB2, Tivoli Directory Integrator, Tivoli Directory Server, Adapter development tool etc
Understanding of custom changes to SIM and SAM
Experience in performance tuning and problem determination for IBM IAM solution
Preferable certification on SIM and/or SAM from IBM
Good knowledge of best practices in SIM and SAM systems design and maintenance
Knowledge of web services security and basic security concepts (encryption using keys, SSL, HTTPS)
Mentor other development team members
Additional experience with CA IAM products, including CA Identity Manager (IdentityMinder), CA GovernanceMinder (CA Role & Compliance Manager), CA Privileged Access Manager (formerly Xceedium), CA Privileged Identity Manager (ControlMinder), and CA SiteMinder is extremely desirable

Senior Information Security Engineer Resume Examples & Samples

Collaborate with appropriate customers and peers to understand business requirements and define secure requirements and/or solutions
Understanding of IT Infrastructure components (servers, storage, data/voice communications, etc) and how they are combined to provide secure IT solutions
Security expertise including Firewalls, Mobility, IDS, IPS, VPN, Remote Access, Security Logging, Vulnerability Management, Security Incident Response, Penetration testing
Ability to conduct risk-based design reviews and analysis throughout the enterprise life cycle beginning at the requirements stage on through system deployment
Project management skills – ability to work independently to complete tasks in a timely manner
Firm understanding of encryption technologies: IPSec, SSL, certificates, public/private key, PGP
Comply and provide input to Rockwell Automation information security policies, standards and procedures. Conducts all tasks in accordance with the requirement to comply with security controls
Responsible for researching and providing input to Security strategy
Responsible for designing key security processes and initiatives with minimal technical direction
5 years Information Security related experience

Senior Information Security Engineer Resume Examples & Samples

Applying technical expertise in vulnerability research, reverse engineering, penetration testing and security architecture to perform in-depth security assessments of medical devices, facility systems and clinical support systems
Developing technical strategies to mitigate or remediate identified vulnerabilities
Engaging with clinical areas, business areas, IT Department and vendors as an information security liaison
Undertaking projects requiring specialized technical knowledge

Senior Information Security Engineer Resume Examples & Samples

Systems Engineering, Integration, and Technical Support for IA
Training Support for IA
Risk Mitigations, DoD VMS Support
Cross Domain Solutions (CDS) and Multi-level Security (MLS) Support
Certification & Accreditation (C&A), DIACAP and eMASS
Vulnerability Assessments, Test & Evaluation
TEMPEST/EMSEC Support
Cryptographic Program Support
Knowledge and of SOA/SBA Security Concepts
MS Windows Server 2008, Windows XP, Solaris System Administration experience
User account management experience

Senior Information Security Engineer Resume Examples & Samples

Define, plan, design, and evaluate information security systems with the following
Provide solutions for and implement Risk Management Framework (RMF) security controls
Design and implement privileged user tiered administration
Conduct certification testing and reporting in accordance with the RMF and NIST 800-53; identifies deficiencies (POA&M) and provides recommendations for solutions
Participate in the change management process, and assess security impact of proposed changes

Senior Information Security Engineer Resume Examples & Samples

Design, develop, integrate, test, implement, deploy and perform operations & maintenance (O&M) of tools for the automation of security testing in support of C&A/A&A
Architectural design, integration, installation, configuration, testing, and administration of systems and capabilities to support the scanning, monitoring, and reporting of Information Assurance Vulnerability Alerts (IAVA)/Intelligence Community Vulnerability Alerts (ICVA) for the Naval Intelligence (NAVINTEL) Community
Integrate, install, configure, test, administer C&A Management tools and capabilities to implement C&A/A&A business processes, workflow, DCID 6/3, NIST 800-53 security controls mappings, and FISMA reporting
Integrate and test new features and functions within the A&A Management solution. This includes, but may not be limited to, DoD 8500.2, and NIST 800-53 Security Controls mappings; implementing updates business processes, workflow, and templates; and direct support to Fleet customers
System administration and O&M support for the A&A Management capability
Perform security assessments; design reviews; and provide guidance on new technologies for Fleet customers. New technologies may include, but are not limited to, Cloud technologies, Cross Domain Solutions, Hardware, Operating System, Web technologies; and Databases
Provide Security Engineering, on an as needed basis, to support to the Security Controls Assessors (SCAs) and Validators for A&A and C&A efforts, respectively
Design, develop, integrate, test, document, administer, perform O&M for systems that support hidden/malicious file content analysis and reporting; Reliable Human Review (RHR) workflow functionality, enforcement, and audit; and cross-domain transfers
Draw upon in depth understanding of hidden data threats associated with complex and proprietary file types such as MS Office Word, PowerPoint, and Excel; and Adobe Portable Document Format (PDF)
Bachelor’s degree in Computer Science or relevant technical field with 10+ years of related Information Assurance experience and Security Engineering experience with DIACAP, DCID 6/3, ICD-503, and/or NIST Risk Management Framework
Experience in system/software design, development, integration, testing, system administration, and O&M
Experience implementing and executing software and security engineering practices in the System/Software Development Life Cycle (SDLC) Process
Experience with DoD DISA, Fleet Cyber Command, DoDIIS, and IC tools, systems, recording mechanisms, and requirements for C&A
Experience with information assurance, including accreditation security testing and evaluation
Expert technical knowledge of DoD, IC, and national level system security initiatives, and Security Information/LAN/WAN/Cloud technologies/Cross Domain Solutions
Experience in designing and developing host based and network based scanning tools. Extensive experience with the use of host based and network based scanning tools. Experience with Security Content Automated Protocol (SCAP) based tools and specifications
Extensive experience in OS hardening; securing systems/software IAW IC, DoD, and industry best practices; development of security controls, testing methodologies, and procedures for systems, cloud based architectures and CDSs
Currently possess CISSP certification
Master’s degree in a related field
Experience developing in an Oracle Solaris or Red Hat Enterprise Linux (RHEL) environment
Experience in OpenOffice or LibreOffice integration or development
Systems Security Engineering Professional (ISSEP) certification

Senior Information Security Engineer Resume Examples & Samples

Defining security requirements established by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; understanding system architecture and platform configurations; identifying integration issues; integrating solutions with previous investments; preparing cost estimates; leading the implementation of network and information security solutions; and preparing preventive, detective, and reactive measures. End results include secure architecture designs and risk statements
Managing network security projects by producing, driving, and managing project scope, objectives, customer expectations, schedule, communications, status, resources, quality, reports, deliverables, issues, risks, timelines, and lessons learned and building consensus and owning the responsibility for execution and final deliverables. End results include successful completion of security projects
Participating in the development, modification, and documentation of technical standards; project, implementation, and test plans; requirements criteria; system specifications and configurations; and monitoring and support procedures. End result includes consistent, current, and accurate documentation
Providing expert-level support for problems that cannot be resolved by primary support roles, training, mentoring, and reporting by collecting, analyzing, and summarizing data and trends. End result includes advanced support
Other Duties as Assigned
This position requires a wide range of skills including, an understanding of key business operation functions and enterprise system integrations including B2B, B2C, POS (point of sale), eCommerce, retail concepts, large IT enterprises, and mobile and cloud-based platforms
Strong technical documentation experience required
Prefer SharePoint experience
Requires an understanding of various data protection legislations and information security standards, procedures, concepts, and technologies including ISO 27001/2, PCI, SSAE, SOX 404, ITIL, anti-malware, business continuity, data-loss protection, data privacy, disaster recovery, e-discovery, encryption, enterprise architecture, firewalls, identity management, incident response, intrusion detection and prevention systems, patch management, penetration testing, physical security, security event management, and vulnerability scanning
This position requires an understanding of a wide array of enterprise grade applications and technologies to include messaging, directory services, mobile, wireless, web, cloud, database, collaboration, virtualization, DNS, and various operating systems
Bachelor's Degree and 5-7 years of related experience or an equivalent combination of education and experience

Senior Information Security Engineer Resume Examples & Samples

Security + or similar base security certifications
Strong scripting skills
Familiarity with DPI and packet analysis

Senior Information Security Engineer Resume Examples & Samples

Responsible for the evaluation, architecture, development, deployment, and operation of network, endpoint and cloud security solutions
Build complete security solutions by integrating off-the-shelf and custom security tools through APIs and custom code
Responsible for immediate response to and resolution of information security problems. Provide predictive, proactive root cause analysis
Analyze trends to proactively prevent problems and escalate as appropriate
College degree in computer science, data communications, electrical or computer engineering or an equivalent combination of course work and experience
Strong fundamental experience in information security principles and practices
Hands-on system security experience (system hardening, host based security solutions, HIDS, IDS, etc)
Hands-on network security experience (firewalls, WAFs, VPNs, NAC, 802.1x, IPS, malware detection, etc) in a large enterprise environment
Splunk and Splunk ES
Palo Networks PAN OS, TRAPS/ESM, Panorama
FireEye NX appliances and Email Threat Protection
Comodo Managed PKI Infrastructure
Meraki networking equipment
Information Security Certification such as: CISSP, or GCIA is a plus
A strong desire to grow in both engineering and security expertise

Senior Information Security Engineer Resume Examples & Samples

Develops documentation for requirements, architectural designs, engineering drawings and diagrams, as well as operational policies and procedures
Develops and documents best practices for system installation, deployment, and operation
Application installation and configuration
Coordination with other engineering teams for system and network integration
Sponsoring enhancements in the enterprise architecture review process
Continually identify efficiencies for systems, processes and procedures
Perform root cause analysis on recurring issues
5 to 7 years of related experience in an engineer role
Experience with Microsoft and Linux operating systems installation, administration, and troubleshooting
Experience with Active Directory and LDAP
Experience with various forms of virtualization technology (i.e. VMWare, cloud services, etc…)
Web Server experience: IIS 6/7, Apache, Nginx, Tomcat (installation, administration, and troubleshooting)
Databases: MySQL, Microsoft SQL Server 2005/2008 (installation, administration, and troubleshooting)
Knowledgeable with Networking concepts and configurations
Familiarity with basic Cyber Security concepts, controls, and tools

Senior Information Security Engineer Resume Examples & Samples

Must have experience in design and development to meet project requirements
Experience deploying on WebSphere application server using Oracle for the application database preferred
Ability to troubleshoot deployment and performance issues as well as bugs in the code
Must have experience with Oracle Directory Server (formerly SUN Directory Server) and Microsoft AD
The ability to develop installation and configuration documentation using best practice guidelines and policies
Experience working with agile development methodologies
Candidate will be required to support production issues, troubleshooting, monitoring and notification system management

Senior Information Security Engineer Resume Examples & Samples

Certifications preferred: CISSP, CISA; CEH; CSSLP; CCNA, and CCNP
Must have 2+ years’ experience with networking, intrusion detection, VPN, PKI, Checkpoint and PIX firewalls, Cisco; NAC; Identity management and encryption technologies
Must have at least one year of concentrated application-security experience
Experience in developing and implementing Information Security technologies and/or processes required
Experience in product and vendor-service evaluation and managing vendor relationships required
Experience in defining Information Security strategy and integrating security technologies into corporate frameworks is required
Must possess strong verbal and written communication skills: ability to lead discussions with Information Security and other IT groups as well as to produce clear and concise documentation for technical and non-technical audiences
Must possess a basic understanding of ISO 27002 and IT audit frameworks including PCI-DSS 2.0, COBIT and COSO, as well as OWASP

Senior Information Security Engineer Resume Examples & Samples

Bachelors degree in telecommunications, computer science, information technology or 5+ years of progressive technical training/experience is required
5+ year experience in information security discipline with focus on network security theory and practice
Strong working knowledge of Cisco ASAs including software versions 7.x, 8.x and 9.x
Strong working knowledge of Cisco ACS 5.x version or Cisco ISE
Must have hands-on experience of configuring ASAs into multiple context, Active/Active failover, Active/Standby Failover, Policy Maps, Layer 2 attack prevention
Knowledge of Cisco IPS and or MacAfee Intrushield
In-depth knowledge of networking, principles of routing, internet services and protocols and their security implications
Possess effective verbal and written communications as well as strong organizational skills
Strong experience in network engineering, routing and switching concepts and troubleshooting
Working knowledge of various encryption algorithms and techniques
Experienced in the creation of technical documentation including discovery of devices, visio

Senior Information Security Engineer Resume Examples & Samples

Development experience within various layers of the software stack
Proficient with various programming languages such as Python/Perl/Go/C++ for automation or integration with multiple APIs (REST, SOAP, RPC)
Able to research, architect and drive complex technical solutions, consisting of multiple technologies
Solid understanding of network protocols and enterprise network architecture
Experience with software development processes (Agile, Waterfall) and tools (git, svn)

Senior Information Security Engineer Resume Examples & Samples

Uses careful analytical skills to redesign access paradigms
Can handle maintaining large datasets and correlating information with ease
Able to provide technical oversight and guidance to business customers
Understands basic crypto concepts and modern authentication systems
Able to perform as primary driver for large, cross-organizational initiatives
Has depth of knowledge regarding authorization controls and implementations
Performs critical thinking and thoroughly comprehends defense-in-depth concepts
Knowledge of Java programming and ability to identify security issues

Senior Information Security Engineer Resume Examples & Samples

Manages security product and service life cycle
Maintains and supports security technology infrastructures
Balance information risk against the cost of appropriate counter-measures
Identify, plan and implement solutions that contribute to the overall level of Media Temple security to reduce risk
Maintain and improve existing IT Security Infrastructure
SOC/HIPPA compliance

Senior Information Security Engineer Resume Examples & Samples

Design, build and deploy next generation cloud security practices to protect Autodesk’s public and private cloud infrastructure
Required Skills & Qualifications
Desired Skills

Senior Information Security Engineer Resume Examples & Samples

Working knowledge of IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
Basic knowledge of IT audit and control, governance, asset management, software licensing, product and vendor evaluation, and training delivery
Extensive knowledge of technical troubleshooting
Working knowledge of IT systems management including change control, software process improvement, and technical writing/documentation
Basic knowledge of information assurance
Working knowledge of information security architecture, security technologies, administration, audits, network and internet security, and computer crime

Senior Information Security Engineer Resume Examples & Samples

Responsible for providing technical guidance focused on information security architecture
Performs security research, analysis, and design for assigned client computing systems and the network infrastructure
Responsible for the prevention, detection, investigation and response with respect to security threats and attacks. Facilitates security vulnerability assessments and penetration tests
Responsible for working on security alerts, events, and security incidents, including forensic analysis
Helps plan configuration changes for major security infrastructure platforms
Implements, documents and may help develop formal security programs and policies throughout the organization and monitors compliance to these policies and programs
Researches, designs, develops and implements monitoring, response and administration of a variety of network security and remote access service
Contributes general consulting (risk analysis) and project support in the area of information security to IT infrastructure and division computing projects as needed to support new business requirements
Participates in the technical aspects of internal security audits and investigations
Provides technical engineering services for the support of integrated security systems and solutions
May provide advice and guidance to less experienced staff
Must have knowledge of ability to comply with DoD and Army OPSEC regulations
Secret (or higher) clearance or must be obtainable
Typically requires a bachelor’s degree or equivalent, and five to seven years of related work experience
Must have knowledge of and the ability to comply with DoD and Army OPSEC regulations
Must have knowledge of AR 530-1, Operations Security
OPSEC Level II certified per AR 530-1
Knowledge of RMF process

Senior Information Security Engineer Resume Examples & Samples

Design, test and implement information security systems and solutions
Develop information security standards and guidelines, processes and procedures
Investigate security events, both automated (e.g.; system alerts) and manual (e.g.; Service Desk tickets)
Monitor the output of vulnerability assessment tools and collaborate with system owners to address issues that exceed defined thresholds
Monitor and review requests for change for various security technologies to ensure they do not introduce any security and/or compliance risks to the enterprise and meet security policies & guidelines, and compliance requirements
Assist users in finding secure methods and practices to meet business needs
Provide direction to the Security Operations Center team on all of the above functions, ensuring appropriate coverage for Arthur J. Gallagher’s global operations
Coordinate regular security assessments (e.g.; including penetration tests, social engineering exercises, application vulnerability evaluations) with both internal customers as well as external partners/vendors
Collaborate with external groups to identify remediation plans for any security issues found and track work to completion
Bachelor’s degree preferably in a technology related field OR equivalent experience
Minimum of 7 years IT experience, including experience in information security within a large IT infrastructure
Hands-on technical experience with security tools such as Web proxy, vulnerability scanners, disk encryption, data loss prevention (DLP), intrusion detection/prevention system (IDS/IPS) and others
Experience in information security leading practices
Knowledge of information security practices (e.g.; ISO 27001, NIST, COBIT)
Knowledge of regulatory compliance requirements such as Payment Card Industry Data Security Standard (PCI DSS) and Sarbanes-Oxley (SOX)
CISSP, CISA or GIAC certification highly preferred

Senior Information Security Engineer Resume Examples & Samples

Leads the Information Security Team with the design and implementation of security and architectures, to ensure the appropriate security guidelines, policies and procedures are in place to adequately address threats and vulnerabilities
Partners with Technology and Business Unit control owners to serve as a security expert and trusted advisor in providing risk monitoring and mitigation guidance in alignment with industry best practices and regulatory requirements
Serves as the primary assessor of networks and systems to identify, report on, and provide guidance in the remediation of security gaps to include
Manages and performs product evaluations, recommends and implements products/services for Information Security that support strategic operational needs and security requirements. Validates and tests security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies. Trains other team members on new security solutions and transitions ownership, where possible, upon successful implementation
Assists Director with security strategy development and risk prioritization
Bachelor's Degree in Computer Science, Information Systems, Engineering, or equivalent experience
12 years general IT experience
Minimum 5 years of professional Information Security experience
Experience responding to and leading security incident response efforts
Multi-vendor firewalls and border routers, and other internetworking technologies
Web Application Firewalls (WAFs)
Multi-factor authentication & access controls
Authorization controls
Protocol analyzers
Network protocol analysis, design, implementation and maintenance
Network and server virtualization solutions
Security Information Event Management (SIEM) solutions
Ability to lead and prioritize multiple assignments supporting business as usual, user requests as well as special projects
Able to work both independently as well as collaboratively achieving results within established timeframes with no supervision
Ability to train less experienced team members on new security technologies and architectures such that other team will become self-supported with minimal oversight following conclusion of training
Ability to present to large groups and Senior Management
Ability and willingness to accommodate demanding work schedules that vary based on system release and/or network update schedules
Must be able to uphold Choice¿s Values & Performance Principles of collaboration, performance excellence, sense of urgency, openness to new ideas, inclusion & diversity, integrity, customer focus, and respect

Senior Information Security Engineer at Resume Examples & Samples

Act as a subject matter expert on organizational CyberSecurity (CS) vulnerability assessment tools and enforce those CS policy and Standard Operating Procedures
Experienced administering and operating ACAS vulnerability assessment tool
Reconcile customer requirements within acceptable risks determined by DOD policies, command policies and generally accepted practices. Make recommendations for tools and processes to improve CS initiatives
Demonstrate appropriate discretion when handling classified/sensitive information
Conduct continuous analysis to identify network and system vulnerabilities
Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code)
Prepare audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions
Knowledge of server administration and systems engineering theories, concepts, and methods
A DOD TS/SCI clearabce
7 years experience in CyberSecurity (Information Assurance) compliance and vulnerability testing
Current CISSP certification
Exceptional organizational, presentation and communication skills (verbal and written)
Must maintain high levels of initiative and think outside the box
Ability to work cooperatively and proactively with personnel at various levels within the organization
Military background and experience with SOF
Software programming experience

Senior Information Security Engineer Resume Examples & Samples

Architect and implement enterprise security solutions
Lead administration and maintenance for enterprise security infrastructure
Identify, evaluate, and recommend information security technologies that improve our posture
Function as the Technical Lead / SME for enterprise security
Build, maintain, and manage strong relationships across cross functional teams to resolve problems and deliver information security services
Perform Level 3 / Level 4 incident response / support to triage security events/incidents, identify root cause, determine next steps, and drive incident resolution
Collaborate with IT teams to define and establish secure configuration standards for infrastructure
Mentor, cross-train and develop other team members on new security tools and technologies
Minimum of 8 years of experience in an information security role with progressive experience in designing and implementing enterprise security solutions. (Required)
Experience implementing and operating at least four of the following: DNS based protections, email filtering and security, web proxies, anti-virus, threat hunting, or log review/investigation. (Required)
Bachelor’s degree in information security, information systems, computer science, or mathematics
Information security certifications such as Global Information Assurance Certification (e.g., GSEC, GCIH, GCED), Systems Security Certified Practitioner (SSCP), Cisco Certified Network Associate (CCNA) Security, Cisco Certified Network Professional (CCNP) Security, or Certified Information Systems Security Professional (CISSP)
Experience with intrusion prevention systems (IPS), vulnerability scanning/management, system hardening, security standards, data loss prevention (DLP) solutions, and endpoint detection and response (EDR)
Experience with automation, scripting, and integrations using APIs
Passion for architecting, coordinating, and implementing enterprise security solutions
Strong analytical abilities and problem solving skills. (technical, analytical)

Senior Information Security Engineer Resume Examples & Samples

Conduct technical security assessments, code audits and architectural design reviews
Support SDLC and agile environments with application security testing
Develop automated solutions that mitigate risks throughout the organization
Advocate for secure coding practices throughout the organization
Strong knowledge of OWASP Top 10 web and the ability to effectively communicate methodologies and techniques with development teams
BS in Computer Science or equivalent required with minimum of 3 years of experience as a Security Analyst or Engineer
Min of 2 years work experience in application security
Min of 2 years with secure code review, technical risk assessments, and/or static code analysis
Security+ or CISSP certifications are a plus

Senior Information Security Engineer Resume Examples & Samples

Experience in endpoint security, log management, vulnerability scanning, IDS/IPS management
Perform technical security assessments against internal and external facing systems using open source and commercial tools including but not limited to OpenVAS and Rapid7
Implement new security technologies as required to support a dynamic/challenging business environment
Work closely with senior leadership teams in a collaborative environment to improve the current security framework and education of employees
Assist in the maintenance/development of security policies and procedures
Must have a level understanding of business needs, Engineering/IT capabilities, and security requirements to ensure a proper balance is maintained
Provide technical security support to IT, Engineering and business units
Ability to troubleshoot issues affecting the security of Groupon’s computing resources
Contributing to the development of the Global Security Engineering organization’s policies and processes
Evangelize security “kung-fu” at Groupon

Senior Information Security Engineer Resume Examples & Samples

BS Degree in Computer Science, Information Technology, or equivalent work experience
Must have 2+ years of direct experience with modern DLP solutions. Experience with Symatenc DLP highly valued
Must have 2+ years of direct experience with encryption and key management solutions. Experience with Gemalto/SafeNet solutions highly valued
Experience with ServiceNow Security Operations Module is strongly valued but not required
Experience with firewall policy management solutions such as RedSeal or Firemon a plus
Automation and scripting experience specifically with SOAP or REST based API interfaces a plus

Senior Information Security Engineer Resume Examples & Samples

Administer and maintain the security infrastructure
Identify, evaluate and recommend information security technologies that improve our security posture
Build, maintain, and manage strong relationships across internal and external teams to resolve problems and deliver information security services
Escalate security incidents / problems as required and monitor progress towards resolution until the incident/ problem is closed/resolved
Cross-train and develop other team members on new security tools and technologies
Passion for architecting and implementing enterprise security solutions
4 or more years of experience in an Information Security role with progressive experience in designing and implementing enterprise security solutions
Strong analytical abilities and problem solving skills

Senior Information Security Engineer Resume Examples & Samples

BS degree in Engineering or Computer Science and/or proven related work experience in IT security
CISSP/GISP certification is required. GIAC or other security certifications preferred, in addition
Must have a minimum of 7 years of IT security experience
Breadth of IT knowledge across network, operating system, application, middleware, storage, compute, and virtualization technologies
Familiar with Windows/Linux/UNIX internals, and TCP/IP protocols and their functions
Familiar with multiple database types (MSSQL, Oracle, MongoDB, MySQL) and DDL vs DML statements
Familiar with multiple web technologies, including IIS, Apache, Tomcat, Nginx and web application firewalls
Familiar with advanced networking concepts
Familiar with encryption technologies both at rest and in transit
Experience with NIST, ISO 27001, Cobit, SOX and/or other information security management frameworks or regulations
Utilizes a risk based approach in security design, and understands security vs. usability
Expertise in Windows Active Directory, Kerberos authentication, SAML 2.0, and Group Policy
Expertise in IEEE 802.11 security concepts
Expertise in security architecture and systems design consulting, including producing deliverables
Experience with interpreted (Perl/Python/Ruby) and compiled languages (C++/Java)
Building and implementing a secure hardening program across infrastructure, network, database, and application platforms
Experience in continuous monitoring and process improvement programs to monitor secure hardening implementation
Experience in penetration testing, red teaming, and whitehat evaluation of IT systems and applications
Experience in data protection programs including DLP and data classification
Ability to think critically
Willingness to learn outside of work and outside of comfort level
Ability to convey technical information to a non-technical group or audience in a way where all parties understand the information
IT incident handling and management experience, including simulation and triage activities
Ability to manage numerous threads in a hectic work environment and follow through on open items

Senior Information Security Engineer Resume Examples & Samples

Orchestrating deployments of custom RedHat 7 servers
Updating security tools on Linux systems
Configuring and deploying new open-source and commercial security tools on Linux systems
Designing systems architectures and deployment strategies
Make recommendations for solutions needed to meet client demands
5+ years of IT Security experience with Bachelor’s Degree

Senior Information Security Engineer Resume Examples & Samples

Defines, and maintains information security processes, controls, and policies. Liaise with Senior and VP Level IT Management, as well as Legal, HR and Governance to drive security policy balancing enterprise data protection and productivity. This also includes regular auditing and remediation of above. This requires in-depth knowledge of technical regulations and best practices. Additionally, it demands persistent learning of new technologies, industry trends, and technical or social engineering threat vectors
Security Systems Administration - Implement, manage, and maintain all security systems within the enterprise. This requires well-rounded hands-on knowledge in areas such as Windows, Unix, Networking, Firewalls, and Security Vulnerability and Monitoring Tools
Participates in maintaining company compliance with applicable federal and state laws and industry requirements. These include but are not limited to PCI, SOX, and HIPAA. This requires detailed knowledge or certifications in corresponding compliance areas
Perform risk assessments and audits of enterprise systems, and established IT practice to ensure ongoing risk mitigation and compliance
Works closely with IT groups and Business Leads on new initiatives to understand risk at both a project and operational level. This includes architecting and implementing technical or process driven mitigation strategies
Evangelize security across the engineering team and beyond. This includes education, mentorship as well as a commitment to building relationships across the business
Project Leader – Leads, or support complex IT projects as a subject matter expert or consultant

Senior Information Security Engineer Resume Examples & Samples

Implement and support event feeds into the SIEM ensuring accurate event parsing, event filtering, event aggregation, and event transmission through the use of network communication protocols such as SYSLOG, SFTP, SSH/TLS, and SNMP to support the functions of the incident response team
Analyze utilization of Corporate Security owned infrastructure systems to identify causes for system degradations as well as recommend required system enhancements for business case and budget approval
Perform upgrading, patching, hardening, user access permissions, and routine maintenance of Information Security infrastructure systems
Develop and support custom tools and programs for the various Information Security teams based on specified requirements
Develop, modify and follow associated corporate and workgroup processes for applicable to the role (e.g. change and outage management)
5 years of relevant system administration, virtualization, configuration, and support experience
Experience in the areas of networking, database, and programming skills
Familiarity with firewall policy configurations in order to submit change requests as needed
Strong work ethic, willing to take and act on provided direction, ability to work in a fast paced, team oriented environment with strong verbal and written communication skills
Candidate must possess, or be willing to pursue, applicable professional/technical certifications, such as CISSP, GPEN, GWAPT, GISEC, CISM or CISA
5 years of dedicated system administration, virtualization, configuration, and support experience
Proven application development utilizing C/C++, C#, VB.NET, ASP, PHP, PERL, Python, or Java
Proficient in networking, database, and programming skills as well as considered advanced in one (or more) of those same areas
Hands on experience using commercial information security tools such as ArcSight, Archer, Intrusion Prevention Systems, and Web Application Firewalls

Senior Information Security Engineer Resume Examples & Samples

Assessing, building, and supporting security solutions and controls including: SEIM, network firewalls, ACLs, IPS, internet content filtering, Identity and Access Management, web application firewalls(WAF), vulnerability scanners, penetration tests, incident response, Active Directory group policies(GPOs), and logical access controls
Researching and deploying new technologies
Performing internal security audits and monitoring systems to ensure that appropriate access levels are maintained
Preparing for and responding to security incidents
Serving as an internal Information Security consultant to the organization
Communicating threats and countermeasures to management and staff to promote security awareness and compliance throughout the organization
Developing and/or maintaining BCP/DR plans for security systems and participating in tests
Collaborating with IS management, legal, human resources and law enforcement agencies to manage security vulnerabilities or investigations
Strong interpersonal, communication, and leadership skills, including the ability to effectively communicate to both technical and non-technical audiences, in both a one on one as well as in a group environment
An intimate knowledge of the TCP/IP networking protocol suite
Strong understanding of LAN/WAN technologies; experience configuring FTP services, DNS and SMTP architectures
Experience with network protocol analysis
Three or more years of experience in the design and deployment of network security and operating system solutions and information security infrastructure elements such as Firewalls, VPN, DMZ, Security Event Monitoring systems, IDS/IPS, and Directory Services
Strong understanding of common network and system exploits and vulnerabilities
Excellent analytical and problem solving skills. Ability to troubleshoot complex networks and design network security solutions
A solid understanding and work experience with virtualization technologies and host operating systems, including Windows and Linux
Experience with Digital Certificates, SSL, IPSEC, and other encryption technologies
A strong understanding of authentication and authorization methodologies, including knowledge of network authentication protocols including TACACS and RADIUS
Experience with security auditing tools such as COPS, Tripwire, Nessus, etc
BS in a Technology related field or an equivalent work experience
Technical Certifications such as CCNA, CCNP, CCSA, CCSE, SANS GIAC series
Professional Certifications such as CISSP
An understanding of application security and OWAS

Senior Information Security Engineer Resume Examples & Samples

Must have at least 4 years Perl development experience
Must have 4 years Red Hat Linux (or variant) experience
Must have 2 years PHP development experience
Strong knowledge of ISP and enterprise networking concepts and how they are applied
Effective oral, written and presentation skills are required
Ability to effectively communicate across all levels of the business (i.e. executive, market unit, technology group, cross-functional work groups, customer organizations, and the industry)
Highly desirable industry certifications, such as: Red Hat Certified Engineer (RHCE), and Certified Information System Security Professional (CISSP) and/or SANS Global Information Assurance Certification (GIAC)

Senior Information Security Engineer Resume Examples & Samples

5-8 years of related experience in data security administration
Demonstrated skills and expertise in the following technologies: SQL/XSQL Server Administrator (SA), Microsoft O/S and security, Information Assurance (IA), IP Data Networking and Vulnerability Assessment product engineering and design, IP network vulnerability scanner Tier 3 support, REM 3.X / Retina 5.X and greater, ACAS Security Center 4.X / Nessus 5.X or greater and HP Tenable Nessus products
Military experience desired. Completion of U.S military NCO or Senior NCO Academy Course or Officer Basic or Advanced Course is preferred

Senior Information Security Engineer Resume Examples & Samples

Serves as a technical lead for information security project implementations, driving technical site escalations to conclusion and providing a leadership example to junior staff members
Participates in managing and operations of information security solutions and information security audits
Participates in system selection, sizing, cost gathering, system purchasing, physical installation, OS and application configuration for information security solutions
Documents and maintains information related to the information security program. This includes but is not limited to creating and maintaining documentation. Additionally, this position develops, reviews, implements and maintains policies, procedures, and associated training plans for information security and disaster recovery
Conduct in-house penetration testing, vulnerability assessment, code and web application scanning
Help design and implement processes and technology solutions to assess, monitor, audit and enforce compliance with internal and regulatory requirements, such as PCI, HIPAA, SOX, and others

Senior Information Security Engineer Resume Examples & Samples

Develop operational procedures supporting IT security practice
Participate in compliance other responsibilities including; implementing, monitoring systems with the intent to ensure that the security measures for the company's infrastructure meet the highest security standards
Regularly communicate with management regarding security practices and procedures and demonstrates strong technical abilities, problem solving skills and contributes to a team-oriented environment
Actively work with outside vendors, the Infrastructure Team and the Service Desk Team to provide the highest level of security and support to the company
Performs highly technical duties including system analysis, malware analysis, indicator extraction, signature development, and network traffic analysis
Duties may include review of logs and security events, forensic analysis, dynamic malware analysis, developing remediation guidelines, and drafting incident reports
Identifying security risks and assist in developing mitigation plans
Participating in Security related projects
Assisting the Director of IT Security with technical audits of IT systems
Managing and responding to security related requests related to
Bachelor's degree from an accredited college or university; Additional experience in an information security engineering role may be substituted for Bachelor’s degree on a year per year basis
IT and information security related professional certifications (e.g. CISSP, CEH, Security+, MCSE, CCNA/CCNP security, GIAC, CCSE), preferred
Five (5) years implementing and administering security technology solutions
Five (5) years hands on experience with modern networks and operating systems
Script writing, preferred
Strong experience with Information security systems planning and support operations
Strong experience with Information security best practices. Direct experience with PCI DSS, ISO 27001, HIPAA is a plus
Security technologies, such as IDS/IPS, firewalls, identity management solutions, web/content filtering, encryption technologies, and anti-malware systems
Best practices in securing operating systems, applications, databases and networks using a variety of standards
Employee is frequently required to sit for extended periods of time and may be required to talk and listen to employees and/customers

Senior Information Security Engineer Resume Examples & Samples

Develop, implement, review and evaluate System Security Plans, Interconnection Security Agreements, Risk Assessments, Plan of Actions and Milestones (POAM), System Requirements Traceability Matrix (SRTM), Security Assessment Reports, Contingency Plans as well as other required documentation to satisfy Certification and Accreditation (C&A)/Assessment and Authorization (A&A) requirements in accordance with government policies and procedures
Achieve and maintain ATO (Authority To Operate), as required
Experience with security tools (Nessus, HBSS, ACAS, dbProtect, AppScan or similar). Perform scans, review the results, and write necessary reports and plans
Maintain a broad knowledge of technology, equipment and/or systems to include the configuration, maintenance, analysis and use of computer forensics tools, steganography and metadata tools, audit reduction tools, firewalls, various operating systems, and phone switches
5+ years of relevant experience with Certification and Accreditation (C&A) or Assessment and Authorization (A&A)
Applicable professional/technical certifications should be in place, or candidate must be willing to pursue such as Security+, CAP, CASP, CISSP, CISM or GSLC
Hands on experience using and/or processing reports from vulnerability and security assessment tools (NESSUS, HBSS, ACAS, etc.)
Active TS/SCI with current SSBI Security Clearance is required

Senior Information Security Engineer Resume Examples & Samples

8-10 years of experience in cyber threat hunting, data analysis, and configuration of security monitoring platforms
Extensive experience implementing and supporting SIEM products, including Splunk Enterprise, Elastic Stack, and AlienVault
Strong understanding of threat analysis and incident response practices and methodologies
Expert technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, and packet inspection
Experience implementing security detection and response capabilities in cloud computing environments
Experience with endpoint security analysis, including Tanium, McAfee ePO, Windows, Mac, and Linux host event data
Experience with security behavioral analytics platforms used for user and entity behavioral analytics and anomaly detection
Participate in evaluating, recommending, implementing, and troubleshooting security tools
Strong analytical skills and ability to identify advanced threats
Ability to work effectively as part of a team and independently with minimal supervision
Certifications such as GCIH, GIAC, CISSP, Splunk Certified Architect
Scripting skills such as Python, Perl, Shell, Bash, RegEx, Splunk query language

Senior Information Security Engineer Resume Examples & Samples

Directly participate in the utilization, maintenance and optimization of IT Systems for Endpoint, Network, Infrastructure, Application and Data security
Implementing, managing, maintaining and ongoing tuning of various security systems and applications
Receive and appropriately review and implement changes to various IT Security infrastructure, systems configurations to effectively prevent or resolve security events or threats as assigned or otherwise needed
Develop and implement reporting and dashboard capabilities tracking the performance and effectiveness of the IT Security infrastructure, applications and systems
Research, recommend, evaluate and implement enterprise infrastructure security solutions
Provide Subject Matter Expertise to both internal ISI and external vendor teams, advancing adoption of ISI Information Security policies, procedures and guidelines
Train or educate users on new or modified system configurations, policies, operating procedures and security controls as they affect business processes
Maintain IT security systems integrity and availability, system upgrades, patches, changes
Develop and maintain appropriate system and process documentation
Serve as a key resource within the ISI Computer Security Incident Response Team
Support the Senior Manager, Information Security in the delivery of operational services as well as support the Information Security team in the design, implementation and testing of new systems, solutions or projects
Minimum 7 years of experience in systems or network administration\engineering
Bachelor’s degree in Computer Science, Information Technology, or related field, or equivalent work experience
At least 3 - 5 years of experience in IT supporting medium-to-large scale environment (1000+ endpoint systems), with preforming a variety of tasks directly related to the information security triad (confidentiality, availability, and integrity)
Experience with SOX, PCI, GLBA, or equivalent regulations and standards
Willingness to acquire in-depth knowledge of network and system security technologies and products, and continuously improve these skills
In-depth knowledge of configuring, implementing and managing technical solutions (preferably information security related)
Strong working knowledge of infrastructure technologies such as Windows and Linux operating systems; Virtual Infrastructure operations (VMWare / Citrix) database configuration and security; active directory; vulnerability testing; networking protocols and topologies; security architectures; and incident management
Experience implementing and supporting network intrusion detection and network analysis tools, common security vulnerability assessment and familiarity with penetration tools such NexPose or Qualys
Capable of serving in a trusted position of responsibility which requires discretion
Excellent written and verbal communications skills. Must be able to communicate effectively with all levels of staff, including Senior Management and end users
Familiarity with and ability to apply Information Security and Governance Frameworks such as ISO 27000, SOX, FDA, HIPAA
Ability to manage small to medium IT projects from conception to implementation, following organization-specific methodologies
Excellent troubleshooting and analytical skills
Demonstrate integrity, accountability, innovation, and reliability
Demonstrate effective teamwork and working relationships with others
Professional certification(s) a plus (e.g CompTIA Security, CISSP, CISM, CISA, CCIE, etc.)
Advanced technical capabilities in a wide array of platforms and systems (e.g., VMware, Windows, UNIX, SQL, Firewalls, IPS/IDS, etc.)

Senior Information Security Engineer Resume Examples & Samples

Performing security architecture reviews; providing guidance to engineers and developers
Driving implementation of security tools and platforms
Monitor and test web applications for vulnerabilities (including SQL Injection, Cross Site Scripting, etc.)
Promote secure development and coding methodologies
Oversee internal/external vulnerability scans and coordinate related remediation activities
Conduct internal security assessments of platforms and sites
Perform security due diligence of third party tools, vendors and systems
Assist in the resolution of security incidents including root cause analysis
Bachelor’s degree in Computer Science or Engineering or at least 4 years additional experience in Information Security
4 + years’ experience in Information Security with a background in application security
Experience with OWASP related vulnerabilities and mitigation strategies
Proven knowledge of threats, vulnerabilities, attack methods and countermeasures for web based applications, including threat modeling, secure coding, and vulnerability testing
Experience with software development (for example: .NET, Java, C#, etc.)
Familiarity with regulatory and standards requirements and practices (SOX/HIPAA/FISMA and one or more of ISO 27000 series)

Senior Information Security Engineer Resume Examples & Samples

Conduct architecture reviews and security impact assessments for technology and software development initiatives
Perform application vulnerability and code analysis on in-house developed software (to include penetration testing)
Complete and maintain cyber security threat models of the environment
Manage application and infrastructure risk mitigation and vulnerability remediation activities
Support 3rd party assessment & audit activities
Ability to effectively communicate with technical and business leadership audiences

Senior Information Security Engineer Resume Examples & Samples

Provides engineering analysis, design and support for DXC Technology Cyber Services which include but not limited Vulnerability Assessments, Database Activity Monitoring and Data loss Prevention
Experience working with relevant operating systems (Windows, Linux, etc) and databases (MS SQL, Postgres, etc)
Experience working with leading Vulnerability Assessment tools (Qualys, Rapid7, etc) Data Loss Prevention (Symantec DLP)
Possess security certifications (CISSP, CCNA, etc.)
2+ years of Linux and scripting experience
Experience working with IP networking, networking protocols and active directory
Understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists

Senior Information Security Engineer Resume Examples & Samples

Must have experience in requirements analysis, design and implementation of Oracle Identity products
Must have experience in developing and delivering identity management solutions using Oracle Identity Governance products
Required to have experience in design and development of workflows and configurations to meet project needs
Must have experience with SUN Directory Server and Microsoft AD
Ability to work closely with internal customers, infrastructure teams and peers to develop and deliver solutions
Minimum of 5 years of overall IAM experience
Must have experience in installation, configuration and customization of OIM 11gR2
3 year minimum experience in requirements analysis, design and implementation of Oracle Identity products. This includes installation, troubleshooting, maintenance/upgrade strategies, and performance tuning
Experience in implementing forms, rules, provisioning workflows, Java and/or Javascript
5 years J2EE development experience
Solaris OS experience is required
Must have working knowledge of CA SiteMinder, F5 load balancers, firewalls, proxies, LDAP, XML, SQL, JDBC, Web Services, Active Directory, WebSphere, SAML, and Oracle
Experience using Netbeans IDE, Version control using Subversion
Must have experience developing custom Java Web Services
Must have basic understanding and knowledge of PCI and SOX regulatory standards
Must be able to multitask, work independently as well as in a team environment
Must have excellent documentation skills
Familiarity with formal development lifecycle processes (design, development, testing, and deployment)

Senior Information Security Engineer Resume Examples & Samples

Extensive experience implementing and supporting SIEM products (Splunk Enterprise, Elastic Stack, AlienVault)
Experience implementing security monitoring and response capabilities on cloud platforms (Amazon Web Services, Microsoft Azure)
Experience with endpoint security analysis with Windows, Mac, and Linux host event data and related tools (Tanium, McAfee ePO)

Senior Information Security Engineer Resume Examples & Samples

High School Degree/GED
A minimum of five (5) years of information security engineering
A minimum of three (3) years of information security incident response experience
A minimum of three (3) of experience detecting and investigating anomalies, containing and remediating identified incidents, securely gathering malware samples and sending to anti-virus companies, and writing up information security incident reports for executive review
Ability to travel as required (1-2 times annually)
BA/BS Bachelor’s Degree
Knowledge of hotel-based IT systems and applications
Advanced certifications such as CISSP, CISM, CEH, CWSP, GCWN, etc
Experience with web application firewalls, firewalls, IPS, network topologies and protocols, web content filtering/proxies, load balancers, UNIX/LINUX, identity management, access management, active directory, DNS, password management, DLP, logging, SIEM, and security event correlation and analytics

Senior Information Security Engineer Resume Examples & Samples

Contributes to the Information Security reference architecture
Evaluates and develops secure solutions, driving adoption for security engineering
Delivers security engineering ‘security by design’ services across multiple business units and geographies where Tyco operates
Provides services for the security engineering processes, programs, artifacts, and tollgates into the Project Management Office process
Delivers perspective in providing network and system security advice and risk analysis to business units who engage with the Information Security team
Thought leader in architecting and designing security infrastructures
Understanding of how to design security devices, networks and systems compliant with the requirements of a desired security posture or state
Highly knowledgeable of enterprise security incident response strategies, processes, techniques, and can readily apply this knowledge to existing security technologies to drive effectiveness and efficiency within the security organization
Highly knowledgeable of network and system security principles such as defense in depth, granularity of privilege, etc. and how they are applied in practice, not only in theory
Highly knowledgeable of modern network security technologies such as network and host-based intrusion detection/prevention, vulnerability assessment (including app/web-layer interrogation), DDOS protection, Security Information Management, host-based integrity checking, end point security, AV, Data Loss Prevention, etc
Understanding of intrinsic security weaknesses within core infrastructure components such as TCP/IP, VPN, file transfer and remote administration protocols
Highly knowledge of SOX and other regulatory and statutory compliance
A Bachelor's Degree (Master's Degree preferred) in computer science, information systems or other related field; or equivalent work experience
Strong knowledge of security issues, techniques and implications across all existing computer platforms
Conceptual thinking and communication skills — the ability to conceptualize complex business and technical requirements into comprehensible models and templates
Demonstrated technical experience, with the ability to interface effectively with a broad range of people and roles, including managers, IT leaders, and technology vendors
High levels of integrity in the conduct of personal and professional affairs
Ability to maintain the goals and culture of the organization

Senior Information Security Engineer Resume Examples & Samples

Evaluate new product lines and features for currently supported products
Level-of-effort assessment for various projects and deliverables for both internal and external clients
Comprehend and understand vendor roadmaps and release schedules
Maintain centrally managed consoles and critical infrastructure that enable our SOCs to centrally manage third party security technologies
Anticipate operational issues and develop preventative measures
Hands-on experience with security tools such as IBM QRadar, Trend Micro OfficeScan, Trend Micro Control Manager, Trend Micro Deep Security Manager, Bit9, Symantec Endpoint Protection, Microsoft System Center Configuration Manager, CyberArk, etc
7 years working within Information Technology and 5 years specifically in Information Security
Strong organization skills and personal framework for consistency, accuracy and repeatable deliverables
Demonstrated experience in fostering collaboration, innovation, creativity and teamwork, analytical capabilities
Must be familiar with security software products and audit tools used in distributed computing environment
Knowledge of Microsoft Windows Active Directory, Internet security, network security technologies, and third party security or audit tools is required
Must understand how to implement application level security controls and mechanisms
Familiarity with cryptography solutions and processes
Strong technical background in networking and security technologies
Strong background in host based firewalls, antivirus, syslog, network security management, application layer firewalls, application layer security and architecture
Solid comprehension of packet analysis and demonstrated ability troubleshooting incidents using security tools such as Wireshark, tcpdump, nmap, SIEM (log analysis), and IDS/IPS
Experience building and administering UNIX/Linux based security appliances and/or servers

Senior Information Security Engineer Resume Examples & Samples

Develop a set of security standards and best practices for the organization and recommend security enhancements to management as needed; develop strategies to respond to and recover from security incidents/breaches; educate the workforce on information security through training and building awareness
Install and use software (e.g. firewalls, data encryption programs) to protect organization's sensitive information; assist with installation or processing of new security products and procedures
Conduct or manage penetration testing, in which simulated attacks on systems are highlighted to find any weaknesses that might be exploited by a malicious party
Manage security tools that help identify intrusions and watch for irregular system or user behavior
Lead technical and forensic investigation into how the incident/breach occurred and the extent of the damage; prepare reports of findings to be reported to management
Bachelor’s degree from an accredited university required; Computer Science program strongly preferred
4+ years experience as an engineer, implementing and monitoring security measures for the protection of computer systems, networks and information
4+ years experience identifying and defining system security requirements
Ability to research, architect and drive complex technical solutions consisting of multiple technologies
Thorough understanding of the latest security principles, techniques and protocols
Experience with data stream and data messaging services including syslog, web API GET calls, JSON, etc
Experience with data management technologies (e.g. SQL Studio, Data Synchronization Studio)
Working knowledge of network protocols and Wintel/Linux/Unix system internals and transport protocols (TCP, TLS, HTTP/S, UDP)

Senior Information Security Engineer Resume Examples & Samples

Provides engineering analysis, design and support for firewalls, routers, networks and operating systems. Performs vulnerability scans using vendor utility tools. Monitors security audit and intrusion detection system logs for system and network anomalies
3 plus+ years of McAfee or Symantec anti-virus experience
4 plus+ years of Windows Operating Systems
Experience working with IP networking, networking protocols, active directory and understanding of security related technologies
Ability to work on Teams, working within multiple customer environments

Senior Information Security Engineer Resume Examples & Samples

3+ years hands on experience with Active Directory. Proven experience in the development, implementation and troubleshooting of GPO’s for users, workstations and servers
Familiarity with R2, specifically UNIX interoperability in relation to authentication and authorization services
3+ years working with securing Microsoft operating system platforms, including 2003, Windows 7 / Server 2008 R2 / Server 2012, Exchange 2007/2010
2+ years working with defining and implementing security for application layer technologies including IIS, SQL Server, SharePoint, and Citrix
Hands on experience with Microsoft Azure, Azure Active Directory Connect, and Office 365
Experience with MIM or FIM, including custom development
A solid understanding of Exchange Server and how Exchange uses Active Directory
Working knowledge of at least one of the following operating system platforms: Solaris, HP-UX, Linux
Experience with server virtualization technologies (VMware or Microsoft Hyper-V)
Demonstrated ability to provide detailed communication to management and peers, the ability to work independently, and the ability to manage multiple projects with competing priorities
2+ years’ experience developing advanced PowerShell Scripts

Senior Information Security Engineer Resume Examples & Samples

Assist and characterize the threat environment and support development and implementation of effective countermeasures to protect the information networks and information
Implement and document a program to identify, classify and protect information associated with critical cyber assets
Develop and implement automated cyber security capabilities for network intrusion, detection, prevention and analysis; virus, malware detection and prevention; host based end-point protection; and system and file integrity monitoring and reporting
Develop and implement a computer network defense to provide situational awareness, attack sensing and warnings
Design and conduct training for corporate security education, awareness programs and enforcement of compliance regulations
Implement best-practice security procedures, standards and guidelines
Participate in the strategic design process to translate security and business requirements into technical designs
Provide technical support to IT team; Support security posture assessments
Develop, integrate and maintain security toolsets. Lead in security engineering, validation testing of system configuration/hardening
Conduct certification test analysis and technical evaluations for vulnerabilities
Mentor Junior Staff

Senior Information Security Engineer Resume Examples & Samples

The candidate’s primary responsibilities will be performing collections of ESI in support of litigation using CenturyLink’s established forensic tools and techniques. The candidate will learn how to prepare the data for production and importing & managing in a review platform
The candidate would also work to support Compliance investigations by collecting, analyzing & producing forensic data including report writing, again using CenturyLink’s established processes and forensic tools and techniques
Maintain forensic examination report documentation, participate in post-mortems, and write incident reports
Perform forensic data collection and analysis on mobile devices (iOS, Android)
Strong work ethic, demonstrated self-starter, ability to work in a fast paced, team oriented environment
Quick learner who can also share knowledge for the benefit of the team
Strong oral and written communication skills and comfort with presenting technical issues to all levels of management, as well as non-technical staff
Ability to learn, understand and employ techniques for analyzing complex data
Analytic and problem-solving skills related to computers, mobile devices, networking, operating systems and security practices
Basic knowledge of computer networking and network analysis tools like Wireshark and PCAP analysis

Senior Information Security Engineer Fed Resume Examples & Samples

Perform as the ISSO (Information Systems Security Officer) for Federal systems
Writes BC (Business Continuity)/DR (Disaster Recovery)/CP (Contingency Plans)/COOP (Continuity of Operations) plans, test plans, and test reports for federal systems
Manages Information Security Audits by federal departments/agencies, including third party auditors
Conduct periodic reviews to ensure compliance with established policies and procedures ensuring all software, hardware and firmware changes recorded as required by established configuration management procedures
Must possess broad technical knowledge to understand and verify proper security implementation
Self-starter with strong self-management skills, with an ability to organize and manage multiple priorities
Active TS/SCI with current SSBI Security Clearance and a Polygraph are Required
Knowledge of information assurance security policies and procedures (ICD 503, CNSSI 1253, RMF, NIST 800.53 rev3/4, FEDRAMP, DISA SRG)

Senior Information Security Engineer Resume Examples & Samples

Comprehend complex security architectures and network data flows in multiple cloud environments
Thorough understanding and adherence to the Information Security Incident Response Plan
Monitor and address security risks and events across all SaaS offerings
Respond to operational queries, anomalies, and suspicious activity
Analyze, investigate, and perform basic forensics on threats and events
Contain or coordinate containment of identified threats
Enforce security policies, standards, and controls
Participate in outage calls and assist with troubleshooting
Review periodic security reports from internal and external sources
Develop documentation for technical solutions related to security events
Bachelor Degree in Information Security or computer-related field
SANS, CEH, or similar industry information security certifications required
7+ years of overall industry information technology experience
5+ years of direct Information Security experience, preferably in both security engineering and security operations roles
Strong hands-on experience with network, application, and endpoint security solutions, including host-based security, IDS/IPS, DLP, next-gen firewalls, vulnerability management, forensic tools, file integrity monitoring, and Security Information and Event Management (SIEM) solutions
Ability to perform security risk analysis to identify potential solutions and mitigation strategies
Excellent troubleshooting, problem solving, and solution design skills
Candidate must possess excellent written communication skills and the proven ability to present complex, technical information to both technical and non-technical audiences
Advanced knowledge of supporting enterprise technologies, including Linux, Docker, Kubernetes, ITSM, Apache Tomcat, SQL Server, MySQL, Postgres, MongoDB
Solid understanding of distributed security architecture and ability to troubleshoot and automate repeatable activities
Must have take-charge personality and ability to execute an activity or solution to completion
Team player and open communicator

Senior Information Security Engineer Resume Examples & Samples

Must have attained a Bachelor’s Degree in computer science or related IT field
Must have attained 10+ years of experience working as a support analyst within information security operations function
Must have attained security certifications / trainings like Security+, CEH, CHFI, GIAC, CISSP, CISM, ITIL
Must have worked in a professional SOC environment and is well aware of all SOC related processes
Proficient in Security Incident Management and Response
Experience in security device management and SIEM tools
Experience of monitoring security incident, threats, analysing vulnerability assessments, and balancing security requirements with business needs
Experience in creating reports, dashboards and metrics for SOC
In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc
Working knowledge of IT security best practices and configurations as used in desktop, server, and network configurations
Experience of working with other IT professionals to resolve fast-moving vulnerabilities such as spam, virus, spyware and internet filtering
Knowledge of various operating system flavours including but not limited to Windows, Linux, Unix
Experience of documenting status reports, plans, policies, procedures and presentations
Experience of working in security-related IT projects using project management and software tools
Experience of ticketing systems (Issue Tracking)
Experience of security technologies like firewalls, VPN, IDS/IPS, SIEM, Anti-virus, Web Filtering, Vulnerability Scanners, Penetration Testing and security frameworks like ISO27001
Experience with knowledge database and its maintenance is advantageous
Should have worked in 24 x 7 environment
Should be willing to work extended hours or modified schedule to meet deadlines

Senior Information Security Engineer Resume Examples & Samples

Serves as information security subject matter expert for infrastructure, connected vehicle services, streaming and systems and network security
Excellent time management skills, with the ability to prioritize and multi-task, and work under shifting deadlines in a fast-paced environment
5 + years relevant work experience designing and implementing security controls and securing systems, applications, and infrastructure
2 + years relevant work experience - Vulnerability and penetration testing tools and techniques
2 + years relevant work experience - Malware protection and response
2 + years relevant work experience - IDS/IPS and security event/ log monitoring and correlation
1 + year experience - Security program implementation

Senior Information Security Engineer Resume Examples & Samples

Conducts application installation and configuration
Coordinates with other engineering teams for system and network integration
Sponsors enhancements in the enterprise architecture review process
Continually identifies efficiencies for systems, processes and procedures
Performs root cause analysis on recurring issues

Senior Information Security Engineer Resume Examples & Samples

8+ years of exp. in Identity & Access Management or Cyber Security combined with IT engineering or application development
3+ years of exp. in database and directory
Strong engineering mindset, IAM knowledge & programming exp
Product management experience is preferred

Senior Information Security Engineer Resume Examples & Samples

Building and enhancing Role Based Access Control (RBAC) model
Working with the Access Management team to streamline access management reviews
Privilege User Management
Design of access controls (policies, roles, rules)
Analyzing and implementing Segregation of Duties
Migration and consolidation of directory services and IAM platforms
Developing directory designs/architecture, managing directories, associated tools and consolidation projects (LDAP, AD, eDirectory, UnboundID, Sun One)
Federation and Multi-factor Protocols (SAML2, Oath, OpenID) and products (OpenAM, SecureAuth, OpenOTP, Secure ID)
StealthAudit experience
Hands on Windows Server Administration experience and Windows Group Policy Objects (GPO) management experience
UNIX system administration
Functional understanding of TCP/IP networks and Firewalls, functional/advanced understanding of database concepts, Scripting and Programming experience
Ability to relate internal policies and regulatory requirements to business requirements
Assist in remediation and responses to audits, vulnerability assessments and penetration tests
Ability to function as a consultant to other business units on security matters as a recognized subject matter expert
Demonstrated analytical and problem solving skills
Proven experience managing numerous projects and activities simultaneously ensuring the correct priorities are assigned and completed within the constraints of resources (i.e. staff, budgets, time)
The ability to drive quality into every product, project and service the company provides
Proven ability to make decisions based on the given data in a timely fashion. Handle difficult situations and act quickly to resolve them
Results orientation ability to influence those outside of the department to drive desired business results
Five or more years identity and access management experience- (AD / LDAP)
Five or more years of experience in a system administration (e.g., Network, Windows, UNIX) role
Five or more years of experience in information security
Experience analyzing network, event and security logs
Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism

Senior Information Security Engineer Resume Examples & Samples

Superior analytical problem solving and troubleshooting skills with keen attention to detail
Must be able to thoroughly document implementations, modifications and any incident resolutions
Ability to lift and handle packages/hardware with the approximate weight of 50 pounds or more
5 % travel may be required in order to support global data centers and branch offices
Bachelor's degree required, preferably in Computer Science; or equivalent years of experience
Requires a minimum of 5+ years of operational experience as a Security Engineer
Experience at a large corporation with in depth enterprise level security exposure preferred
Security Certifications a Plus

Senior Information Security Engineer Resume Examples & Samples

Responsible for setting direction and developing architecture(s) for DHS-specific Cyber Security packages and mitigation strategies
Designing, developing, and recommending integrated security system and physical control solutions that will ensure proprietary/confidential data and systems are protected
Part of team responsible for understanding system requirements and determining the impacts of requirements and associated designs
Providing technical engineering services for the support of integrated security systems and solutions to manage information-related risks
Implements security designs in hardware, software, data, and procedures

Senior Information Security Engineer Resume Examples & Samples

Configuration, management, and support of various network and host security systems and programs such as Data Loss Prevention (DLP) systems, network Intrusion Prevention Systems (IPS), Security Information and Event Management (SIEM), Host Intrusion Prevention (H-IPS), Application Control, as well as other associated security systems/environments
Develop and maintain policies, processes, and procedures
Monitor, analyze, and investigate related alerts and issues
Develop informational and residual risk analysis reports, as needed
Create and maintain work flow and processes
Provide technical and security guidance and prepare documents that analyze or describe the security functionality of a specific system
Perform other job related duties as assigned

Senior Information Security Engineer Resume Examples & Samples

Implement, monitor, configure, and maintain Sailpoint IdentityIQ certifications, provisioning, and other IAM functions within the organization
Lead teams in clearly defining requirements, deliverables and timeframes in regards to IAM initiatives
Conduct root cause analysis to identify and resolve complex problems impacting the IAM Infrastructure
Develop and/or deliver technical training Sailpoint IdentityIQ. Mentor less senior staff in the execution of their duties
Proficient with Sailpoint IdentityIQ releases 6 and 7
Extensive Experience with Java & XML, HTML and web development
Experience with Relational Databases
Proficient with RHEL and Windows Operations Systems
Understanding of SDLC best practices
Advancced Knowledge of Microsoft Apps and Suites

Senior Information Security Engineer Resume Examples & Samples

Responsible for designing application and database security architecture. Coordinate technical design/review activities with application development, enterprise architecture, database security to develop secure frameworks for applications and databases
Responsible for designing the enterprise security infrastructure and architectural topology, including networks, servers, and endpoints. Integrate information security requirements to ensure the confidentiality, integrity, availability, and privacy of information systems. Ensure consistency and sufficient integration with existing infrastructure
Responsible for adoption of information security requirements into the Design, Implementation and Operations within the Security System Development Life Cycle (SDLC)
Promote acceptance of new security technologies within the organization, balancing business goals, security risks and customer usability. Work with business management to communicate security risk and countermeasures
Assess criticality of identified vulnerabilities within the Information Technology environment and guide the remediation of these vulnerabilities
Strong knowledge of information security products and implementations, with an emphasis on design in the areas of networks, servers, endpoints, applications, databases, and integration
Significant knowledge of security protocols, applications and authentication tools, including Kerberos, SSL and tokens
Strong knowledge of Access Controls, Directory Services, LAN infrastructure and technical standards
Strong knowledge of LDAP, Java/J2EE, BEA Weblogic, Oracle
Strong knowledge of Microsoft Windows and UNIX security principles and best practices
Strong knowledge of cryptography and encryption methods, including PKI and IPSec
Strong knowledge of system and network forensic best practices
Strong knowledge of firewalls and firewall architecture
Strong knowledge of network and host-based intrusion detection systems and architecture
Strong knowledge of secure application development and database security
Strong knowledge of n-tier software application architectures
Working understanding of the OSI Model, TCP/IP and network security protocols
Knowledge of secure application development principles, commonly exploited vulnerabilities and applications, and exploitation techniques
Knowledge of software development languages and packages
Knowledge of Gramm-Leach-Bliley Act (GLBA), Sarbanes Oxley Act (SOX) and other government technology laws
Ability to analyze and resolve problems in fast-paced, dynamic business environment. Good organizational skills to handle multiple priorities
Excellent verbal and written communication skills with strong ability to present persuasive ideas
BS degree in Computer Science or other related area of study required
8 – 10 years progressive experience in information security roles required
10 – 12 years progressive experience in information technology/security overall
CISSP, MCSE, CCNP or other related information security certification required
Project Management Experience preferred
Experience in medium size companies, preferably in Financial Industry Experience preferred

Senior Information Security Engineer Resume Examples & Samples

Risk/Vulnerability Assessment ~~ Testing Strategy & Execution ~~ Design ~~ Security Controls ~~ Configuration ~~ Event Management
Design, lead and conduct comprehensive platform systems assessments to identify gaps, reengineering opportunities, and optimization/efficiency gains
Keep current with emerging security trends, issues and alerts. Communicate known security risks and solutions to mitigate risks to business and technology partners as needed. Manage audits of vendor security processes, procedures, and compliance controls
Serve as a security and platform expert on security tools, database design, network and/or platform (operating system) projects, helping project teams comply with enterprise and Technology security policies, industry regulations and best practices. Through an expert understanding of the business requirements, identify the appropriate security, platform, and configuration requirements for each project. Design, develop and lead the testing approach and execution plan to ensure that new and existing solutions meet security requirements
Analyze application security needs based on the sensitivity or proprietary nature of the data and work with the appropriate teams to develop and execute new or existing security technologies or processes to support the business strategy. Design, test, implement, maintain and support current and future complex information security technologies, processes and procedures. Advise technology partners of appropriate security technologies, functionality, benefits and implementation requirements for each project
Lead the design and development of security platforms that ensure the safety of information assets and protect from unauthorized access or intentional destruction. Lead the development, implementation, maintenance and enforcement of all technology information security policies, procedures and associated plans based on industry standards, best practices and legal compliance requirements. Implement changes to existing security policies and control standards to stay current with the threat landscape
Lead complex projects related to information security regulatory compliance and the implementation and maintenance of all information security platforms, processes and technologies. Assess and document the need for all security configurations or re-configurations and work with appropriate teams to execute them as required. Research, design and advocate new security technologies, architectures and security products that will support the security requirements of the firm
Assume the subject matter expert (SME) role in the management, investigation, resolution and response to security tool technologies. Analyze highly visible and complex security platform incidents to determine root cause and identify process or system changes to prevent reoccurrence. Recommend and schedule fixes, security patches, disaster recovery procedures and other required measures in the event of a security breach
Bachelor’s degree in Computer Science, MIS or Technology Forensics, or related field; or equivalent work experience
7-10 years of relevant experience
7+ years of experience installing, monitoring and maintaining information security solutions - including policy design and implementation
5+ years of experience evaluating and designing security solutions for technology projects

Senior Information Security Engineer Resume Examples & Samples

Join Blackhawk Network’s new SOC in Pleasanton, CA and Pune, India
Participate in Incident Response, Threat Intelligence, and Forensics functions within the SOC
Provide guidance on security tooling selection and implementation - closing the gap in endpoint and network visibility across the enterprise
Assist in the development of effective and efficient internal security policies and procedures, specifically those used for day-to-day security operations
Participate in the detection, response, and the associated communications for security incidents
Work with internal and external penetration testers to regularly test detection and response capabilities
Research and understand emerging information security threats, vulnerabilities, and their countermeasures
Work closely with other members of the Security team to test, tune, and deploy security technologies that are scalable and enhance detection and response
Bachelor’s degree in Computer Science or related discipline; or equivalent experience
2+ years of experience working on a mission critical security operations team
Excellent communication, time management and organization skills
Recent experience detecting and responding to incidents in cloud and hybrid-cloud network environments
Recent experience in leading and driving technical and operational teams in complex environments
Recent experience analyzing network, system, and application data/telemetry, malware, and other incident response related data, as needed
Recent experiencing performing forensics in a predominately Windows and Mac environment. Experience with forensics on *NIX a plus
Strong knowledge of incident response best practices and processes
Strong knowledge of application, network, and system vulnerabilities and modern attacker techniques to exploit these vulnerabilities
Strong knowledge of methodologies for proactively detecting host- and network-based indicators of compromise
Strong knowledge of networking fundamentals networking fundamentals, with a deep understanding of TCP/IP and other core protocols
Strong knowledge of operating system fundamentals and OS command line tools for Windows, *NIX, and OS X

Senior Information Security Engineer Resume Examples & Samples

Build, configure, deploy, troubleshoot and support security systems as per established policies, standards, licensing agreements and configuration guidelines. Implement technical solutions to meet contracted industry standards and audit reports (e.g. ISO 27001, SOC 2)
Assist in responses to external audits, penetration tests and vulnerability assessments
Oversee security patch process and validate compliance
Assist in the investigation of security incidents as required, and recommend corrective actions and process improvements

Senior Information Security Engineer Resume Examples & Samples

Assist on investigative matters, related to information security, as requested by the Office of lnspector General (OIG)
Coordinate with DOL agencies and System Owners and provide guidance and oversight during OIG audits
Provide necessary leadership, execution and support of compliance activities related to Federal Information Technology security mandates including but not limited to: Federal Information Management Security Act (FISMA), Federal Information System Control Audit Manual (FISCAM), Federal Information Technology Acquisition Reform Act (FITARA), Presidential Directives (PD) 63 and 67, Public Law 100-235, Office of Management and Budget (0MB) A-123, 0MB A-127, and 0MB A-130
Conduct Plan of Action and Milestones (PO&AM) reviews, oversight and reporting as well as Privacy Impact Assessments
Coordinate data collection, analysis and reporting for IT security data calls, Freedom of Information Act (FOIA) Requests, Incident reports and other types of data calls that may be necessary
Perform security assessments and review system security documentation
Develop, review, and update Certification and Accreditation (C&A) packages and Authority to Operate (ATO) documentation for systems hosted and owned by Office of the Assistant Secretary for Administration and Management Information Technology Center (OASAM-ITC)
Maintain and manage the required systems security documentation on the Department of Labor (DOL)-adopted Department of Justice (DOJ) Cyber Security Assessment and Management (CSAM) system. Minimum documentation includes
Bachelor's degree from an accredited college or university required, equivalent experience considered in lieu of degree
At least five (5) years of IT security experience required
Knowledge of Security Practices and processes
Working knowledge of Security Assurance, Controls and Compliance programs within the federal space
Excellent attention to detail capability
Ability to work in a fast-paced, dynamic environment
Ability to perform complex tasks with minimal supervision and guidance
Ability to work well independently or in a team setting

Senior Information Security Engineer Resume Examples & Samples

Day-to-day operational support of the hardware, software and managed solutions that protect State of Arizona systems and networks from cyber attacks
Ensuring compliance with Statewide Information Security policies, NIST, FIPS, ISO, PCI, HIPAA and other organizational standard requirements to prevent data loss and/or data ex-filtration
Participating and assisting with information security monitoring alerts and incident responses. Performing and leading in-depth information security forensics and assist with State agencies with formal information security investigations
Responding promptly to any state agency’s requests for assistance, maintaining adherence to organization’s SLA goals of service excellence and exceeding customer expectations
Participating in enterprise information security projects by evaluating infrastructure and applications as they relate to information security architecture, directives and polices
Training technical personnel, responding to service tickets and handling ticket escalations
Applying creative solutions to business problems to ensure business needs are effectively met. Identifying opportunities and assisting with implementing solutions to improve efficiency and reduce waste; and other duties as assigned
Considerable working knowledge of information security technologies; industry trends and best practices in the areas of information security protections, incident response, risk assessment, compliance and vulnerability management
Considerable working knowledge of information security applied within large enterprise environments
Considerable working knowledge of NIST, FIPS, ISO, PCI and HIPAA
Working knowledge of information security controls and best practices applied to cloud solutions and large data center solutions
Excellent customer services, interpersonal, written and oral communication skills
Excellent technical troubleshooting and problem solving skills
Demonstrated ability to balance, prioritize and organize multiple tasks
Demonstrated ability to develop and write technical documentation
Demonstrated ability to work collaboratively in teams and across organizations
Working knowledge of PKI solutions, Microsoft Certificate Services, Hardware Security Modules and cryptographic based protocols like PGP Universal, X.509, Kerberos, PGP, SSL/TLS and IPsec
Consulting with business, project and technical leads on requirements for employing cryptographic capabilities and leveraging encryption services

Senior Information Security Engineer Resume Examples & Samples

Security consulting on critical projects and initiatives
Identify and address security vulnerabilities
Design computer security architecture and develop cyber security designs
Prepare and document standard operating procedures and protocols
Ensure that the company knows as much as possible, as quickly as possible about security incidents
Proven work experience as a senior security engineer or information security engineer
Technical knowledge of database and operating system security
Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc
Experience with network security and networking technologies and with system, security, and network monitoring tools
Thorough understanding of the latest security principles, techniques, and protocols
Ability to build and manage relationships across a large enterprise
Solid analytical and problem-solving skills
Finance industry background

Senior Information Security Engineer Resume Examples & Samples

Will conduct protocol and traffic analysis, has the ability to execute effective countermeasures to current threats to systems and networks, has comprehensive knowledge of the inter-relationship between operating systems, Active Directory, IDS-IPS, vulnerability detection tools, SQL, TCP/IP, encryption, VPNs, and DMZs
Requires strong knowledge of information security exploits and incident handling
Lead engineering projects to implement the information security infrastructure, as well as assist other projects enhancing the Information Security Program, including recommendations on technology strategies that monitor and alert on anomalies
Monitors information security risk management and mitigation through strict governance processes and procedures
Lead or assist in the planning, implementation and introduction of projects for new systems and technologies
Moderate experience with skilled collaboration with business partners and executive leadership to ensure alignment of expectations for installation and maintenance of security controls
Ensures adherence to project schedules; aggressively monitors project budgets; and reallocates resources to avoid budget or schedule variances
Collaborates with assigned vendors to build effective relationships and collaborative team environments
Continually evaluates methods of undertaking and completing projects more efficiently with new modeling and information engineering techniques and different technology platforms
Knowledge of design, implementation, and maintenance of: security incident and event management (SIEM), local area networks and firewalls, Active Directory, group policy objects, scripting, vulnerability scanning, encryption, IDS/IPS, web filtering, LDAP, multi-factor authentication systems, identity and access management systems, exploits and hacker techniques, and, network and operating system security principles
Proactively prepare countermeasures to defend information systemsagainst known attack techniques: backdoors and Trojan horses, buffer overflows, covering tracks in Unix-Linux, on the network, using steganography, denial-of-service, Netcat, format string attacks, IP address spoofing, kernel-mode rootkits, user-mode rootkits, network sniffing, password attacks, passive fingerprinting, war-dialing, web application attacks, worms, bots and bot-nets, and session hijacking
Manage the implementation and ongoing capabilities of a SIEM (Security Incident and Event Management)
Lead the analysis of the intrusion prevention system (IPS) events
Provide forensic analysis of security violations
Conduct periodic self-assessment and gap analysis related to information security controls and manage the remediation to correct the gaps
Verify network, wireless and firewall security systemsby conducting reviews and policy assessments
Support and maintain information security related technologies and architectures, such as, but not limited to, IDS (intrusion detection systems), VPNs (virtual private networks), data loss prevention tools, VLANs, firewall architectures, proxy servers, internet access policy servers, authentication systems, and content screening servers
Ensure compliance to regulations, business requirements and City of Hope policies, standards, and procedures
Design, document, and support network security design changes including wireless network
Document and execute integration processes and standards
Document and report performance measurements for information security related products in service
Conduct system security and vulnerability analyses and risk assessments
Perform special projects as assigned by the CISO

Senior Information Security Engineer Resume Examples & Samples

Bachelor’s degree in computer science, electrical engineering, computer engineering, information technology or related field
5 years of experience in the field of Information Security, including 3 years of experience in Security Architecture & Risk Management
In depth knowledge Security Risk Management frameworks and principles
Good knowledge of IT security controls and applying appropriate controls to manage security risk
Experience in developing security policies/standards and performing security risk assessments

Senior Information Security Engineer Resume Examples & Samples

Support the Security Operations Center
Develop policies and procedures to ensure agency's compliance with departmental policies, federal law and regulations
Develop and implement information sharing regarding cyber security best practices and common vulnerabilities
Conduct, as needed, system penetration testing, vulnerability assessment, and security risk analysis
Support process, technical and R&D activities
Conduct research of new technologies, systems and processes to make recommendations on the enhancement of the OASAM and DOL's security posture
Perform research and preliminary proof-of-concept testing of security tools
Serve as the System Owner liaison
Conduct incident response activities to include investigation, containment, and mitigation of undesired activities that pose a risk to the Department's IT assets
Prepare and submit SAR responses
Perform audit log, firewall, forensic reviews
Analyze events and correlation to specific incidents
At least eight (8) years of Information Technology experience required
At least two (4) years of information Security experience required
Critical thinking in cyber security risk analysis or similar relevant area of focus
Cyber security incident response experience
Experience with three or more of the following insider threat, counterintelligence, counterespionage, cyber security, criminal justice, incident response, application security, network security, security operations, security monitoring, or security-focused system’s engineering

Senior Information Security Engineer Resume Examples & Samples

As requested by the Office of lnspector General (OIG), assist on investigative matters, related to information security
Conduct privacy impact assessments
Coordinate data collection, analysis and reporting for IT security data calls, FOIA requests, incident reports and other types of data calls that may be necessary
Provide necessary leadership, execution and support of compliance activities related to Federal information technology security mandates including but not limited to: Federal Information Management Security Act (FISMA), Federal Information System Control Audit Manual (FISCAM), Federal Information Technology Acquisition Reform Act (FITARA), Presidential Directives (PD) 63 and 67, Public Law 100-235, Office of Management and Budget (0MB) A-123, 0MB A-127, and 0MB A-130
Bachelor’s degree from an accredited college or university required, equivalent experience considered in lieu of degree
Knowledge of security practices and processes
Working knowledge of security assurance, controls and compliance programs within the Federal space

100

Senior Information Security Engineer Resume Examples & Samples

A solid working knowledge of information security technologies, industry trends and best practices in the areas of risk assessment, compliance and vulnerability management
A working knowledge of specific information protection regulations (HIPAA, CGIS, IRS, etc.)
A working knowledge of ISO27000, NIST 800 and other information security standards
Skills to detect, isolate, and mitigate cyber threats
Skills to identify opportunities for improved security processes and systems
Both oral and written communication skills
Skills to plan, document, coordinate, and execute the tasks required to successfully complete projects
Skills to manage multiple tasks and establish appropriate priorities to enable you to meet deadlines
Ability to establish and maintain effective working relationships
Ability to consult and advise case teams on best practices for physical and electronic security protocols as in compliance with Agency policies
Ability to work collaboratively within a team and across the organization
Ability to coordinate with external service providers on hardware and software infrastructure necessary to maintain required levels system protection
Ability to assimilate feedback and modify project plans and initiatives as appropriate
Ability to detect, recognize, and mitigate cyber security threats
Ideal Candidates will have a Bachelor’s degree plus a minimum of 4 years of experience in information security systems engineering (or equivalent experience); System Security Certified Practitioner (SSCP) and Certified Information Security Systems Professional (CISSP)

101

Senior Information Security Engineer Resume Examples & Samples

Bachelor’s in Information Security, Computer Science, Engineering or 5+ years of professional experience working to secure consumer websites, mobile applications, or large corporate infrastructure a must
Demonstrated ability to manage complex security environments with multi-site WAN, LAN and WLAN infrastructure
Experience identifying Information Protection needs and defining System Security Requirements; designing System Security Architecture; developing detailed Security Designs--all while understanding business impact
Prior technical and operational Networking experience with FWs, VPNs, load balancers, IDS, web applications, application proxies, SSL
Knowledge of vulnerabilities in Linux, Mac OS and Windows operating systems, databases, and networks, in relation to hardening, configuration, deployment, and administration
Knowledge of information security principles, web applications and a level of familiarity with malicious code and common techniques used by hackers
Knowledge of PCI DSS requirements mandatory and of security standards and frameworks like ISO 27001 or SSAE16 is desirable
Experience managing Vulnerability Scanning and Network Penetration testing programs
Active member of IT Security user groups with security certification (CISSP, CEH, GWAPT, GPEN, OSCP, etc.) will be an added advantage
Demonstrated experience applying security risk assessment methodology to system development, including threat model development, vulnerability assessments, and resulting security risk analysis
Strong experience with a broad range of security technologies, including next generation firewalls, DLP, FIM, CASB, NAC, IDS/ IPS, IdAM, SIEM, Endpoint Protection, Anti-malware
Experience in evaluating project needs, determining tasks and durations and takes responsibility for projects--driving them to completion
Be able to architect and design as well as be hands-on and implement
Highly self-motivated with ability to tackle challenges without supervision
Exceptional organizational skills; detail-oriented
Strong time management skills; ability to juggle priorities; nimble
Personable and flexible with demands and changes in extremely fast-moving business environment; ability to quickly and seamlessly switch between strategic and tactical/executional tasks
Passion for Sephora, our programs, clients, store associates, and marketing
Provide application security consulting SME Support to developers
Familiarity with SDLC. Programming experience a plus
Knowledge and understanding of application or software security such as: web application penetration testing, secure code review, secure static code analysis
Knowledge of Palo Alto Networks, Fortinet or similar network security platforms
Experience with security in cloud provider ecosystems, including Amazon AWS, Microsoft Azure, and OpenStack

102

Senior Information Security Engineer Resume Examples & Samples

Assess, design, implement, automate, and document security processes and solutions leveraging Amazon Web Service (AWS) and other third-parties
Monitor system logs, SIEM tools, and network traffic for unusual or suspicious activity
Investigate and resolve security violations by providing postmortem analysis to illuminate the issue, and identify causes, possible solutions, and preventative measures
Develop procedures to automate security tasks during code builds and deployments
Report unresolved security exposures, misuse of resources, and non-compliance situations
Collaborate with the DevOps team to build infrastructure and servers on AWS

Download Senior Information Security Engineer Resume Sample as Image file

Related Job Titles

Information Security Engineer Resume Sample

Senior Manager, Information Security Resume Sample

Senior Security Engineer Resume Sample

Senior Application Security Engineer Resume Sample

Information Systems Security Engineer Resume Sample

Information Security Engineer, Senior Resume Sample

Senior Security Software Engineer Resume Sample

Security Engineer Information Security Resume Sample

Information Security Senior Resume Sample

Senior Information Security Resume Sample

Safety & Occupational Health Resume Sample

Information Security Analyst Senior Resume Sample

Browse More

Senior Information Security Engineer Resume Samples

The Guide To Resume Tailoring

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Resume Builder

15 Senior Information Security Engineer resume templates

Read our complete resume writing guides

How to Tailor Your Resume

How to Make a Resume

How to Mention Achievements

Work Experience in Resume

50+ Skills to Put on a Resume

How and Why Put Hobbies

Top 22 Fonts for Your Resume

50 Best Resume Tips

200+ Action Words to Use

Internship Resume

Killer Resume Summary

Write a Resume Objective

What to Put on a Resume

How Long Should a Resume Be

The Best Resume Format

How to List Education

CV vs. Resume: The Difference

Include Contact Information

Resume Format PDF vs Word

How to Write a Student Resume

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

MTS Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer at Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

Senior Information Security Engineer Resume Examples & Samples

How to Make
a Resume

50 Best
Resume Tips

200+ Action
Words to Use

Internship
Resume