Senior Security Engineer Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the senior security engineer job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.

USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.

SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Create a Resume in Minutes

J Vandervort

Jay

Vandervort

228 King Throughway

Boston

+1 (555) 135 2537

228 King Throughway

Boston

Phone

p +1 (555) 135 2537

Experience Experience

Phoenix, AZ

Senior Security Engineer

Phoenix, AZ

Pfeffer Group

Phoenix, AZ

Senior Security Engineer

Create, distribute, analyze and evaluate network management performance reports to requestor
Work on improvement of existing tools and development of new tools
Manage network, intrusion detection and prevention systems
Provides central contact point for user support and problem management for managed security applications (Firewall, IDS, Encryption, SIEM, EIQ, Web filtering)
Perform service management for security devices, including problem, change, asset management
Establish operational procedures for performing system lifecycle management
Provide input and assist in collection of established metrics for reporting

Dallas, TX

MSS Senior Security Engineer

Dallas, TX

Aufderhar, Kerluke and Eichmann

Dallas, TX

MSS Senior Security Engineer

Perform other duties as assigned
Provide support for integration and onboarding activities to ensure smooth client transition to MSS operations
Perform on-call support for operational clients concerning connectivity and access
Create architecture diagrams outlining the technical solution for connectivity and access to the client
Build IPSEC VPN tunnels to client networks
Assist with the creation and maintenance of processes, procedures, standards, and policies
Create/maintain/update internal documentation

present

Houston, TX

Senior Security Engineer & Forensic Analyst

Houston, TX

Wilkinson LLC

present

Houston, TX

Senior Security Engineer & Forensic Analyst

present

Upgrade security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements
Prepare system security reports by collecting, analyzing, and summarizing trends
Provide security architecture & systems engineering consulting to Incident Response Analysts and other IS staff
Ensure that all Cyber Security related capabilities and solutions are operating effectively
Review log-based data, both in raw form and utilizing SIEM or aggregation tools
Employ best practices and forensically sound principals such as evidence handling and chain of custody
Supporting the establishment, enhancement, and continual improvement of an integrated set of correlation rules, alerts, searches, reports, and responses

Education Education

Bachelor’s Degree in Computer Science

California State University, Fullerton

Bachelor’s Degree in Computer Science

Skills Skills

Strong in distributed reliability engineering with a solid understanding of application data flow and how it meets system infrastructure
Possess project management skills, with the ability to create detailed project plans and ability to drive projects to completion
Good communication skills and an eye for detail. Able to perform well under stress, particularly in emergency response situations
Strong analytical skills with the ability to work with detailed information
Excellent interpersonal skills as well as strong verbal and written communication skills; comfortable leading meetings and cross-team efforts
Able to manage costs and profitability for a work area and/or large projects
Knowledgeable on DNS, DHCP, FireWalls, IPS, basic routing/switching
Have strong data knowledge, and ability to analyze and present complex data visually in a meaningful way
Excellent written and verbal communication. Ability to present at an executive level
Good knowledge of Unix operating systems

Create a Resume in Minutes

15 Senior Security Engineer resume templates

Read our complete resume writing guides

Pki-senior Security Engineer Resume Examples & Samples

Design, test, implement changes/additions to the PKI infrastructure
Provide consulting to all lines of business's within the bank on security related topics to include encryption, certificates, 2nd factor authentication etc
Interface with vendors that provide security/encryption related services to the bank
Participate in defining and developing the strategic plan for PKI
Lead the definition and implementation of POCs around PKI, OTP and other certificate related technologies
Ensure 24x7 uptime of the PKI
Bachelors degree or higher in engineering or a related field with 7+ years of experience in PKI technologies
Demonstrated expertise in managing PKI services and infrastructure (PKI SME)
Strong Windows experience
Strong Linux/UNIX experience
Understanding of networking concepts
Experience working with HSMs
Experience integrating and migrating enterprise services/systems
Ability to coordinate and support large & complex projects including product upgrades and deployment of new capabilities and enhancements
Experience leading (or being a senior member of) a highly technical team
Background in delivering full-life cycle projects
Working knowledge with any of the following is a strong plus
Venafi Certificate Lifecycle Management
VeriSign Identity Protection (VIP)
Microsoft Certificate Authority (CA)
Strong Authentication Solutions

Senior Security Engineer Resume Examples & Samples

Design and oversee security assessments including penetration testing, application security reviews, application vulnerability assessments, and threat assessments
Manage the processes for reviewing and auditing Russell’s technical infrastructure (including vulnerability scanning, patch management and ethical hacks) and ensure the timeliness of reviews and appropriateness of system and network changes; manage the process for the production of appropriate metrics for this task
Participate in information security audits performed by Internal Audit and external auditors, including the development of management responses and remediation of exceptions
Participate in security Incident Response process to ensure incidents are identified, reviewed and resolved in accordance with established CSIRT policy and procedures
Promote awareness of IT security policies and practices; conduct security training sessions and presentations for Associates and Application Development teams
Conduct technical analysis of emerging security technologies and cryptography technologies; determine appropriateness for inclusion in the strategic architecture
Maintain high-level and detailed knowledge on the computing, networking, and high availability best practices, and evolving technologies and threats
Manage and participate in the review and approval of changes to Russell’s information security systems, architecture and management practices and procedures; this will include both Russell and outsourced/ managed service initiated changes
Bachelor’s degree is preferred
Certified Information Systems Security Professionals (CISSP) required
Certified Information Security Manager (CISM) is preferred
Formal training and experience in SSO Technologies (ADFS, SAML 2.0, WS Federation) and coordinating with relying parties
Formal training and experience in Microsoft Cloud Technologies and integration (Azure, Office 365, CRM Dynamics Online)
Some scripting and /or development ability to customize existing security tools. Proficient in PowerShell
This position needs extensive knowledge of networking protocols; network and security best practices including computer network defense, and technical intrusion analysis techniques; project management; and security architecture
Demonstrated ability to communicate (both written and oral) in a tactful, responsive and timely manner is essential
Advanced education in computing security, risk management, audit and controls is preferred; CISM and CISSP designations are mandatory

Senior Security Engineer Resume Examples & Samples

Manual Penetration Testing
Black Box Dynamic Testing
Vulnerability Remediation
Minimum of 4 years in Information Security Field
Penetration Testing Execution Standard Automation Framework (PTES)
Previous experience with teaching applications security
Previous software development experience
Experience with multiple SDLC’s such as Agile, Dev Ops, and Waterfall
Previous experience with debugging and fuzzing binaries
Penetration Testing – WebInspect, Acunetix, Netsparker Appscan, Fortify, Ounce, Vercode, Burp Suite, NMAP, Nessus, Metasploit, Core Impact, Qualys, Kali Linux, Backtrack, Samurai WTF, OWASP ZAP, SQLMap and manual tools
OSCP - Offensive Security Certified Professional
Information Security Education

Senior Security Engineer Resume Examples & Samples

Review all firewall and access control list changes for possible security holes
Perform security audits both internally and externally within the Cox Automotive
Maintain confidentiality of all security incidents, events and information
Act as an escalations point for junior level security engineers
Experience working in a matrix organization collaborating with cross-functional team members while driving the enterprise risk and security strategy and policies
Extensive experience with information security technologies including, content filtering tools, firewalls, intrusion detection and prevention systems
Ability to analyze systems, firewall, and IDS/IPS logs to identify indications of security events
Experience with event/log analysis
Experience in a Security Operations Center (SOC) environment
Security Certifications

Senior Security Engineer, Identity Management Resume Examples & Samples

In collaboration with management, design solutions for authentication, authorization, and auditing
Provide technical leadership is all aspects of OIM & OAM from early phase proposals through, design, code, test, deploy and maintain
Work with project teams to ensure access management requirements and policies are complied with and followed
Collaborate with business data owners to develop and implement access policies governing access to confidential and other business data
Participate in the evaluation, selection and implementation of third-party access solutions
Communicate security information among different groups at Cox Automotive
Administration of enterprise Identity and Access Management suite of products consisting of multiple instances, managing replication, schema administration and troubleshooting performance issues
Administration of enterprise Cloud-based Identity and Access Management SSO solution, integrating applications and troubleshooting performance issues
Advise the security manager of all security concerns that may affect Cox Automotive. Provide options and solutions to resolve these concerns
Perform capacity planning and monitoring of all security devices to keep ahead of future growth. Report capacity needs and concerns to the security manager. Work to ensure maximum network uptime
Work towards providing a fully redundant high availability security infrastructure at all times
Provide On-call support
Must have direct, recent experience with identity and access management implementations, and demonstrate in-depth technical acumen
Implementation experience with at least one type of Identity Management and Access Management software system
Strong development experience with applications integration, workflow design, connectors, reconciliation, reports, attestation
Implementation experience with single sing-on service, authentication/authorization and modeling entitlements for applications
J2EE, Java, JSP, XML, LDAP, SQL, Unix, NT background
5+ years progressive IT experience
2+ years identity and access management experience / background preferred
3+ years of experience in developing, implementing or architecting information systems
Requires a Bachelor's Degree in Computer Science, Information Systems, similar field or equivalent work experience
Security Certifications a plus

Senior Security Engineer Resume Examples & Samples

Operate in a multi-stream Master Control environment while ensuring that all content follows the log
Edit automation playlist as necessary to ensure that all desired elements are broadcast correctly
Maintain current knowledge of the operation of all technical equipment within the department
Record from satellite all pre-scheduled programming and/or commercials; insuring proper technical set up of recording machine and checking recorded material
The ability to manually operate on-air equipment with the same reliability as the automation systems during high-pressure situations
Monitor transmitters for proper operation
Maintain transmitter operating logs and official program log to FCC, FAA and TBS requirements
Prepare commercial and programming material for air
Operate news ENG receiving equipment
Additional duties as necessary
Must be able to work well under pressure
Must be able to work well with others in a constantly and sometimes immediately changing situation
Must have the ability to make decisions and take prompt action
Must be able to work alone and unsupervised when necessary
Must be able to work an assigned shift during the 24 hour, 7 day “on air” schedule
Must have attention to detail with great accuracy
Knowledge of video file formats and transfer methods
Must be able to rename/copy/move/delete files as well as transfer files via FTP or download files via http
Use and knowledge of specialized and standard broadcast equipment
General knowledge of FCC rules and regulations
Have a working knowledge of FCC regulations pertaining to: EAS, television transmitter operating parameters, tower lighting, close caption requirements, audio and video levels and the Children’s Television Act. Experience with transmitter operation is a plus
Minimum 1-2 years experience with operation and set up of commercial television equipment

Senior Security Engineer Resume Examples & Samples

Provide input on the selection, deploying, enhancing and/or supporting technical and non-technical security controls throughout the enterprise
Provide technical leadership within the security organization
Identify and respond to current and emerging threats
Provide input and feedback into the organization’s security program and risk management
Bachelor Degree or equivalent critical thinking experience
Certified Information Systems Security Professional – CISSP; SANS (GCIH, GCIA) ; ISACA

Senior Security Engineer Resume Examples & Samples

Demonstrates extensive expertise in engineering practices. Integrates broad working knowledge in related disciplines to create integrated engineering solutions for complex business situations
Resolves complex engineering problems, collaborating with others. Accountable for resolving specific issues within a particular area, application, technology or system
Drives continuous improvement in establishing and meeting system level performance measures
Pursues continuous learning
Identifies and pursues areas for development and training

Senior Security Engineer Resume Examples & Samples

Hands-on network security experience (firewalls, WAFs, VPNs, NAC, 802.1x, IPS, malware detection, etc) with implementing and supporting a large enterprise environment
Hands-on System security experience (system hardening, host based security solutions, HIDS, IDS, etc)
Monitor network and security devices
Building complete security solutions by integrating off-the-shelf and custom security tools through APIs and custom code
The ability to adapt to and implement new technologies
Ability to provide network vulnerability assessments and engage in penetration testing
Strong ability to troubleshoot
Problem Solving - Analyze and resolve problems of medium complexity
Research and recommend alternative actions for problem resolution with minimal direction
Production Support - Responsible for immediate response to and resolution of technology infrastructure problems. Provide predictive, proactive root cause analysis
Provide input for departmental budget. Recommend cost saving improvements
Computer malware forensics
Security logging, event management, and security event correlation
Development experience (Python, Perl, shell scripting, or similar)

Senior Security Engineer Resume Examples & Samples

Practical experience and expertise (6+ yrs.) in implementing security engineering theory and practice including education programs
Experienced in leading comprehensive security planning and testing including disaster/continuity planning (6+ yrs.)
"Experienced in defining security policies and standards and setting/managing security compliance programs (6+ yrs.)

Senior Security Engineer Resume Examples & Samples

Manages infrastructure vulnerability and compliance monitoring/reporting solutions and organizes related remediation and governance activities to mature infrastructure security policy and technology frameworks and effectively improve infrastructure security posture company-wide
Identifies areas for architectural, engineering and operational improvements of existing infrastructure security solutions, and drives such improvements start to finish
Creates and maintains documentation of infrastructure security related policies, standards and processes
Utilizes existing infrastructure security solutions and develops new ones to bridge infrastructure security area gaps
Develops automation of infrastructure security monitoring and reporting activities
Provides infrastructure security program transparency to management and compliance by reporting the company's infrastructure security posture on a regular basis, providing trend data and progress insights
Manages the prioritization and remediation activities/projects and collaborates with impacted departments in remediation
Develops and updates infrastructure security program governance criteria and process, and drives adoption within commercial engineering
Develops and updates infrastructure security metrics for framework maturity, security posture governance and reporting
5-7 years in InfoSec, 5 years primarily in infrastructure security area
Industry recognized network certification is preferred but not required
Experiences working in a complex business environment, preferred work experiences include diversified enterprises and E-Commerce

Senior Security Engineer Resume Examples & Samples

Operates as a lead contributor in the support of the clients product development from a technical security perspective. Design, deploy and support the technical infrastructure for third party access to the clients systems, applications and infrastructure, including Firewall, IDS, VPN, and Authentication systems
Performs operating system and security assessments, application vulnerability assessments, and compliance auditing across multiple platform and application environments
Works with management to develop information security standards, procedures and guidelines across multiple platform and application environments
Works closely with IT and product development teams, in a senior level capacity, to support design of secure infrastructure and applications, assisting in or facilitating the implementation of protective and mitigating controls. Works with cross-functional Security Incident Response Team as needed
Participate in projects as an technical team leader and Solutions Delivery Lead (SDL). Design and deploy technical mitigation strategies for application protection
May represent the organization on projects and may perform in a project leadership role and/ or supervise activities of lower level staff. Failure to obtain results or erroneous decisions would normally result in substantial expenditure of resources to correct or achieve results. 4-7 years of Technical Security Experience
Broad knowledge of many aspects of information security with in depth understanding of many of the following areas: Firewall, IDS, WAF, VPN, Authentication technologies, Key Microsoft Technologies, Cisco, Checkpoint, and network fundamentals. Industry certifications: GIAC, CISA and/or CISSP preferred
Knowledge of Unix, Linux, Windows, Internet Security

Senior Security Engineer Resume Examples & Samples

Must possess a minimum of 5 years of experience in information security
Must have expertise with network security tools: Firewalls, NIPS, WIPS, VPN, DLP, etc
Typically possesses experience with Sourcefire, Lacope, Fortinet, and Arsight
Typically possesses 7 years of experience with network/application security engineering
Typically possesses 7 years of experience in network engineering, operating systems, requirement and protocols
Typically possesses experience supervising groups of 3 or more employees
Typically possesses experience with various platform security tools: AV, HIPS, firewalls, DLP, etc
Typically possesses knowledge of emerging technologies such as mobile and Cloud
Demonstrated knowledge of large, modern networks, their challenges, common approaches to overcome their challenges, and their inherent security strengths and weaknesses
Demonstrated knowledge of various platforms (e.g., Windows, Linux, etc.)
Demonstrated knowledge of various database security tools
Must possess strong written and verbal communication skills
Ability to coordinate multiple projects and adjust to changing priorities in a fast paced environment
Demonstrated strong personal mastery, including ethics, interpersonal skills, and engage in continuous learning
Plan, implement, upgrade and monitor security controls for the protection of USC computer networks and information systems
Respond to computer security breaches and malware outbreaks
Review proposed change control request to ensure proper alignment with policies, standards and guidelines
Issue, follow-up on, resolve or drive resolution of open Tier 3 security event tickets. Perform Service Delivery of Security Operations Infrastructure
Serve as a technical resource in advising and assisting all departments and schools for issues relating to network security
Assist with the development of metric and scorecards in support of the information security program for quarterly and annual Information Security reports to executive management Other Functions
Implement or coordinate remediation required by audits, as necessary
Master’s degree in Computer Science, Information Security, Engineering or Business Management
5 years of network/application security engineering experience
One or more IT certifications such as: CCNP certification, MCSE certification, MCITP/MCTS certification
One or more security certifications such as: CISSP, CISA, CISM, CRISC, GSEC, GSEC
Experience with Cloud and Mobile emerging technologies
Experience with Sourcefire, Lacope, Fortinet, and Arsight

Senior Security Engineer Resume Examples & Samples

Act as a security engineering expert and technical champion within VMware
Understand and communicate security issues and their risks to the engineers and management
Execute on day to day tracking and monitoring activities of the team
Coordinate with both new and experienced security engineers as well as product developers and quality engineers
The desire and ability to work in emerging technologies such as virtualization, cloud and software defined networking
Experience as a security engineer working on activities such as threat modeling, security code review, penetration testing, vulnerability analysis and tools development
Knowledge of the software development lifecycle and specifically the secure development lifecycle
Strong understanding of security issues in at least one of the following areas
Web Application
System Software
Current skills developing software in both Java and C/C++
The passion to make VMware customers more secure

Senior Security Engineer Resume Examples & Samples

Coordinate the development of information security policies, standards and procedures. Work with IT departments and data custodians in the development of such policies. Ensure policies support compliance with external requirements. Oversee the dissemination of policies, standards and procedures
Coordinate the development and delivery of an education and training program on information security and privacy matters for employees/contractors
Assist in developing and implementing an ongoing risk assessment program targeting information security and privacy matters; recommend methods for vulnerability detection and remediation and oversee vulnerability testing
Assist in implementing information security policies and procedures for the organization
Ensure Global Information Security Operations Team conforms to information security policies, standards, laws and regulations
Conduct reviews and audits to ensure compliance for information security Policies and Procedures. Monitor compliance with information security policies and procedures, referring problems to the appropriate department manager
Analyze Technology and Enterprise Computing controls and provide recommendations for improvements in accordance with frameworks
Engage CME Group Internal Audit, CME Group Compliance, CME Group's external auditors, Technology and Enterprise Computing Division Management and Staff to ensure effective communication and reporting transparency for Global Information Security Projects and Programs
Assist with reporting and communicating at a strategic level on efforts within IT Risk and IT Change Management programs. Analyze and make suggestions for enhancements to these programs while ensuring industry best practices and standards
Assist with implementing portions of ISO 27001 and an ISMS
Assist with internal investigations
Assist with implementation of Identify and Access Governance tool
Keep abreast of latest security and privacy legislation, regulations, advisories, alerts and vulnerabilities pertaining to CME Group and its mission
Assist with Security Awareness Program and ongoing education
Assist in defining processes within the Assurance and Security Management areas of the Global Information Security Department
Ad hoc requests

Senior Security Engineer Resume Examples & Samples

Education Required: Bachelors (Technical)
Experience Required: 7+ years relevant experience
Industry certifications: GIAC, CISA and/or CISSP/CSSLP preferred
Compliance
Service-oriented architecture
Demonstrate and articulate solution security to both internal/external peers and non SME audiences
Work closely with engineering and leadership teams to ensure that security recommendations and issues are communicated effectively and to guide the security architecture
Work closely with agile development teams and their delivery deadlines to remediate application vulnerabilities detected through security scanning tools
Actively manage the security activities associated with secure software development, including performing peer code reviews, to address risks and threats
Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks. Also demonstrate a strong understanding of enterprise, network, system and application level security issues
Experience of system hardening processes, tools, guidelines and benchmarks
Secure software development practices like threat modelling, secure design principles, secure coding, code analysis, security testing, etc
Platform-as-a-Service solutions such as Cloud Foundry or OpenStack
Virtualization solutions such as VMware and related technologies
Ideally should have some knowledge of scripting and/or programming languages - Perl, Python, RESTful API Experience of Security frameworks (ITIL/ISO) and/or standards/practices such as CIS, DISA STIG, or NIST
Experience of industry and regulatory compliance requirements such as PCI DSS, SOX, HIPPA or GBLA

Senior Security Engineer Resume Examples & Samples

Demonstrates extensive expertise in information security and engineering practices. Integrates broad working knowledge in related disciplines to apply integrated security solutions for complex business situations
Drive design and architecture decisions in the direction of security best practices
Deploy, maintain, and administer security tools and associated software and hardware
Utilize network mapping, host enumeration and scanning tools when necessary
Bachelor’s degree in computer science, math, engineering, or equivalent training or experience preferred
5+ years of IT proficiency and experience including some combination of system administration, security infrastructure, networking, development, etc…
5+ years’ experience working with Microsoft, Unix, Linux, and mobile (iOS and Android) platforms
5+ Experience with security technologies such as Firewalls, WAFs, vulnerability scanners, IDS/IPS, encryption technologies, AV, SIEM, DLP, FIM, etc…

Senior Security Engineer Resume Examples & Samples

Build and optimizing systems to hunt down targeted malware and other targeted threats on Autodesk network using custom build systems which can consume external and internal threat feeds
Researching latest threat activity and provide threat assessment reports and evangelize security to protect Autodesk against these and other threats
Bachelor’s degree (B.S) in computer science or related field, or equivalent work experience, education requirements can be relaxed for the right candidate
5+ years in the area of information technology in three of the following areas: systems engineering, networking, applications engineering, security, databases, storage, client-side technologies or systems' administration, experience requirement can be relaxed if the candidate as authored tools or have published research papers
Advance system administration skills on Network, Linux and Windows environments
Excellent analytical skills, organizational skills, ingenuity and ability to work as part of a team
Experience with infrastructure and security Operations, vulnerability management, and patch and configuration management
Experience with virtualization technologies and cloud at host and network level including but not limited to VMWare, Citrix, AWS and CloudStack
Investigating network and host based security events and incidents
Experience with log monitoring and correlations and correlating events from multiple security tools like log correlation engines, Net flow, host monitoring solutions etc
CISSP (Certified Information System Security Professional) from ISC2 or the GSEC (GIAC Security Essentials Certification) from the SANS Institute or preferably author or contributor to a security tool

HBO Senior Security Engineer Resume Examples & Samples

Establish application security baseline utilizing applicable frameworks
Formalize application validation against the established standards and baseline and identify remediation controls
Perform application security assessments early and often, assist in appropriately addressing any weaknesses, and ensure that products are free of known security holes
Work with security partners to conduct security assessments and penetration tests of key systems
Security certifications such as CISSP, CISM, CISA, GIAC, Ethical Hacker are a plus
Scripting language development (Python, Ruby or Perl)
Minimum of 5+ years of IT Security experience
Strong analytical, communication and collaboration skills
In-depth knowledge of enterprise networking in relation to IT Security
Experience in cloud security as applicable to applications including load balancing, horizontal and vertical elasticity, session management and other network controls
In-depth understanding of common protocols ranging from mid-level (IP, TCP, UDP) to application level (Syslog, SSL, HTTP, FTP, DNS)
IP Multicast : PIM,IGMP,MSDP,SSM
Comfort with routing protocols
SNMP, Netflow experience
Troubleshooting LAN/WAN performance and optimization
Comfort with host and network virtualization technologies
And IP Storage
Palo Alto Firewalls and Checkpoint Firewalls
Experience in application security
Strong experience with manual interception proxies such as Burp, Fiddler, Zap
Excellent ability to discover and demonstrate flaws XSS, CSRF and Injection attacks (SQLi)
Familiarity with tools such as Metasploit, SQLMap, Burpsuite
Proficiency with Linux, Apple Mac OS, Microsoft Windows

Senior Security Engineer Resume Examples & Samples

Supports requests and incidents from internal customers
Owns assigned tickets/incidents until resolved or escalated
Leads team initiatives, manage deliverables and schedules
Performs on-going research and strategic planning
Creates detailed process documentation
Provides direction to other security engineers, including appropriate mentoring and coaching
Provides second/third level support and maintenance
Participates in technical design of new projects to ensure CIA objectives
Participates in on-call rotation
Leads incident response efforts
8+ years of IT infrastructure-related security experience including in-depth knowledge of network security, event monitoring and correlation, forensic analysis, system security, end-user support, system administration, threat modeling, incident response, penetration testing, identity and access management and environmental security with expertise in at least four of these categories
Experience with ecommerce
Akamai
OWASP application security
Experience with logging solutions
LogLogic
Snort
Experience with cryptography
Vormetric
Cisco and Juniper appliances
LAN, WAN, NAC, and VPN technologies
IPS and IDS
Experience with Vulnerability Management
APTs
Qualys and TrendMicro
Patch Managemen
Security certification is required i.e. CISSP, CEH, GSEC
Networking certification is desirable i.e. , CCNA
Prioritizes tasks and communicates status; recognizes and escalates risk and issues
Self-motivated, detail-oriented, organized, strong time management and task prioritization
Able to persuade others
Completes tasks without management supervision
Evaluates data from disparate sources and performs root cause analyses
Able to plan and manage large- scale projects within ad-hoc teams
Exercises analytical thought processes with an ability to clearly communicate those insights
Accurately updates documentation
Additional software development experience is desirable
Microsoft Office applications: Excel, Word, Visio, PowerPoint, OneNote, Project
Bachelor’s Degree from an accredited college/university with an emphasis in computer science is desired but not required

Senior Security Engineer Resume Examples & Samples

Provide security reviews, oversight and management of Information Security Infrastructure for Asia region
Closing work with other IT groups to ensure security controls and model problems into technical solutions
Provide safety report to security management

Senior Security Engineer Resume Examples & Samples

Evaluate Information Security requirements
Help define information security tools architecture
Refine and develop configuration standards
Evaluate current tools such as endpoint security, threat intelligence, identity and access management and web and email security - identify any issues and changes that need implementing
Take charge of threat and vulnerability management processes
Manage and review system security incidents and escalation

Senior Security Engineer Resume Examples & Samples

Ability to design/develop, and configure Firewalls, Intrusion Detection/Prevention Systems, Network Based Malware Detection/Prevention systems and DDOS protection solutions
Ability to develop Engineering artifacts such as Design Blueprints, and Reference Architecture documents
Ability to generate and effectively present ideas to management
Ability to translate technical ideas and concepts into general principles
Ability to successfully manage a number of concurrent projects
Ability to produce management approved documents such as PARs and PMF artefacts
Possess excellent written and verbal communication skills
Minimum of 3 years working in the network security space
In depth and current technical knowledge of IP internetworking and the security exposures and mitigating designs and processes associated with them
Thorough understanding of Firewalls, IDS/IPS, DDOS mitigation solutions, and network malware prevention solutions, IP addressing, routers, switches, TCP/UDP/IP protocols and the underlying security aspects associated with them: SSL, IPSec, etc., application protocols: FTP, HTTP, etc
Knowledge of Project Management principles
Basic financial acumen

Senior Security Engineer Resume Examples & Samples

Develop technical solutions to help mitigate security vulnerabilities and architectural weaknesses
Design and develop tools and technologies to enhance the security of client endpoints and servers
Automate and streamline existing processes and procedures
Provide security consultancy and advice to product and infrastructure teams with a focus on cloud security, network security and operating system hardening
Conduct security vulnerability research in areas relevant to Twitter
B.S./B.A. Computer Science, Computer Engineering preferred
6+ years work experience

IT Senior Security Engineer Resume Examples & Samples

Master the Security domain and succeed in a challenging, yet rewarding position within a highly skilled and experienced team
Bring yourself in and become a part of the solution by designing new and extend existing systems in the IT Security domain at Credit Suisse, delivering these solutions globally and to all business units
Become an important engineering peer to the support organizations, providing 3rd level support and ensuring the maintenance level of various Security products
Take up the opportunity of direct participation within key global programs within the Credit Suisse and help to shape the future of the Bank's IT services
Working knowledge & experience with one or more of the following areas in IT Security

Senior Security Engineer Resume Examples & Samples

5 years of IT-related work experience
Minimum 3 years in a dedicated IT Security role, overseeing security systems, configuring security policies, installing agents, and troubleshooting system issues
System administration experience, preferably Linux
Strong network troubleshooting skills
Proficiency administering security tools including Sourcefire IPS, FireEye, McAfee Antivirus, Web Gateway, BitLocker, and TripWire
Basic project management capabilities
Strong collaboration and partnership abilities with teammates, vendors, and third party service providers

Senior Security Engineer Resume Examples & Samples

Possess subject matter expertise in system software security
Significant demonstrable experience as a security engineer, working on penetration testing, vulnerability analysis and tools development
Strong understanding of System Software internals
Current, deep skills developing software in C/C++

Senior Security Engineer Resume Examples & Samples

Design, build, test, implement, document, and maintain network security infrastructure and tools
Develop requirements, perform assessments and evaluate new technologies
Recommend and implement improvements to security systems
Interface with external vendors, resolving technical issues, and maintaining relationships
Routinely modify security functionality, writing detection signatures as requested by the security operations center
Collaborate on projects and security operations within the IT teams, and the various business units
5+ years experience in Technical Leadership of enterprise network security projects
7 years experience in all technical aspects of Network Security Engineering
Working experience with intrusion detection systems
Experience with advanced rule-based design, global objects, and rule optimization
Experience in network capacity planning, data security and compliance, and general network management best practices
Familiarity with many different network architectures, network services, system types, network devices, development platforms and software suites required (e.g. Linux, Windows, Cisco, Active Directory, .NET, etc.)
Ability to produce quality technical documentation for complex solutions
Experience in designing security solutions involving security products, systems and internetworking
Demonstrated success as a member of a highly collaborative team
Bachelor’s degree in Computer Science, Information Technology or equivalent experience is required

Senior Security Engineer Resume Examples & Samples

Review security events and alerts, vulnerability and configuration data, and other information from the MSIT IT environment, combined with intelligence, to identify potential & active threats to systems & data
Analyze attacks reported from multiple sources both internal and external. Conduct detailed comprehensive investigation and triage on wide variety of security events, and implement cleanup and remediation processes
Use security business intelligence to drive prioritization and improvements within Microsoft security programs
Install, configure and support multiple security event technologies
Keep up to date on emerging vulnerability and threat trends, and using this knowledge to drive proactive threat monitoring
Participate in creating innovative ways to use a wide range of security event data to advance detection methods
Create procedures around proper records and documentation of team's engagement models
Collaborate with security partners and threat intelligence teams to derive indications and warnings of impending threat
Participation on Incident Response that includes root cause and lessons learned
Mentor and develop more junior analysts
5+ years experience with common security operations systems, for example, Intrusion Detection Systems (IDS), Security Incident Event Management systems (SIEM), anti-virus log collection systems, etc
Demonstrated experience with reverse engineering and malware analysis in order to enhance protection and detection capabilities
Demonstrated experience working with a wide variety of security logs to detect and resolve security issues
Development experience with a variety of languages: PowerShell, Java, .NET/C#, SQL, JavaScript, web and database technologies
BA/BS in Computer Science, MIS, or related field or 5+ years of equivalent experience
Ability to deal with the ambiguity associated with working in a fast paced and changing environment
Ability to manage and deliver multiple project phases at the same time
Excellent interpersonal and group dynamic skills. Strong written and verbal communication skills
Background in threat intelligence and digital forensics a plus

Senior Security Engineer Resume Examples & Samples

Participate in code reviews and educate the engineering teams on best practices for writing secure code and usage of static code analysis tools
Focus on keeping personal skills current
Basic penetration testing skills
Experience with automation tools and deployments
A working knowledge of Agile Development
BS or MS degree in Computer Science or Engineering OR equivalent years of relevant work experience

Senior Security Engineer Resume Examples & Samples

Work with clients and tools vendors to address all security related issues
8-10 years of experience actively working in or with security and networking devices
Knowledge of compliance standards such as HIPAA, PCI, SOX, Etc…
Strong analytical skills balanced with effective communication and excellent customer service skills

Senior Security Engineer Resume Examples & Samples

Perform security and privacy risk assessments on Linux and open source based infrastructure components and designs
Design and implement security enhancements for large scale Linux deployments in close collaboration with development and operational teams
Maintain engineering and security documentation; provide training and awareness to employees at all opportunities

Senior Security Engineer Resume Examples & Samples

Capture, maintain and monitor information security risks in designated repositories
Evaluate security risks and identify and define compliance strategies in accordance with policies and standards
Communicate with multiple departments and levels of management in order to resolve technical and procedural information security risks
Provides reports to leaders regarding the effectiveness of information security and makes recommendations for the adoption of new policies and procedures
Act as a liaison between internal/external audit and teams to ensure commitments are met and controls are properly implemented
Work with internal and external auditors to analyze and remediate issues immediately to maintain security of network and corresponding data infrastructure
Represents Information Security/PCI Compliance Operations among other departments & committees
Conducts knowledge transfer training sessions to security operations team upon technology implementation (as required)
Stay abreast of current threats, security trends, and methodologies and technologies that arise constantly
Troubleshoot and respond to worldwide network security problems, events, incidents
Create and/or maintain systems and network infrastructure documentation
Maintain security monitoring infrastructure, and implement monitoring infrastructure where necessary
Provide assistance to management in cases of security investigation and violation of company regulations when required
Defining, developing, and implementing new security components and integrations
Experience with a diverse set of security and web/network security technologies: Firewalls, IPSec VPN, SSL-VPN, Proxy, IDS/IPS, DLP, Encryption, Packet Sniffers, Vulnerability Scanners, D/DoS toolkits, SIEM, Netflow, SPLUNK, various audit tools, as well as penetration testing frameworks and their respective methodologies and standards
Must have solid experience and hands on expertise on Vulnerability Scanning, Security Scanning, Penetration testing, Risk Assessment, Security Auditing, Security Posture Assessment
Experience with cross company applications and incidents
Working knowledge of networks and data center standards and procedures
PCI/ISO framework experience
Ability to work on multiple concurrent engagements
Ability to function independently and with minimum supervision
Execute other duties as prescribed by the Manager
Security Certification: CEH is preferred; other security certifications are +
Requiring minimum of 3 years of experience in security related role
Duties may include infrequent travel
Effectively manage a number of projects and priorities in parallel
Communicate effectively and tactfully with all levels of personnel, both in person and on the telephone
Pay close attention to complex detail and understand written and oral instructions
Organize and schedule work effectively
Work well under time constraints
Handle multiple tasks with changing priorities, communicating changes in scope and schedule to all parties concerned
Work independently with minimum supervision
Proficiently utilize MS Office
TCP/IP and other related protocols,
Vulnerability scanning, intrusion detection, anomaly detection and associated technologies and methodologies
Hands on and strong expertise on various security/vulnerability testing tools i.e. Nessus, Qualys, Nexpose, IBM Security AppScan, Client Fortify, etc
Good exposure to security testing (Black box/Grey box/White box) and vulnerabilities associated with them across platforms (Windows, Unix and Linux platforms, web, etc.)
The latest hacking techniques and appropriate countermeasures, firewalls, rule base analysis, stateful inspection, encryption and associated algorithms
Understanding common network/web/app attacks, attack methods, and network defense architectures
Common threat methodologies (Sans, OWASP, etc.)
Knowledge and understanding on the creation/implementation of secure networks, firewalls and intrusion-detection systems

Senior Security Engineer Resume Examples & Samples

Serve as an escalation point for all security issues for Maker Studios, providing outstanding customer service through timely, high quality issue resolution
Proactively maintain, monitor and improve the systems and security posture with a focus on service excellence
Partner with the business and technical teams to design, deliver and maintain highly available, performant and cost effective security systems and services
Perform penetration testing on any new systems or applications implemented
Provide support to application development teams ensuring all applications are thoroughly reviewed and tested prior to release
Ensure all of The Walt Disney Companies Information Security policies and standards are adhered to
Minimum 10 years of experience providing systems administration and security support services in a mission critical environment
Deep knowledge of intrusion detection, firewalls, computer forensics, data loss prevention, data encryption, and vulnerability management concepts
Strong understanding and working knowledge of IP Networking, web technologies, network and server security including standard practices
Deep understanding of the Advanced Peristant Threat landscape with demonstrated ability for providing active defense strategies to mitigate the risk

Senior Security Engineer Resume Examples & Samples

Respond to cyber security incidents by collecting, analyzing and preserving digital evidence
Identify and help troubleshoot anomalies
Collaborate with technical teams to identify, resolve, and mitigate events
Ability to manage multiple incidents at a single time
Monitor incidents submitted and establish correlation to broader threats when they may exist
Conduct advanced computer and network forensic investigation functions
Participate in leadership groups throughout the company to plan and test incident response capabilities
Bachelor’s degree from a four year accredited college/university but substantial relevant experience could substitute
5+ years of experience in information security related positions, preferably in Incident Management, event analysis, penetration testing
Strong familiarity with security issues surrounding network computing and experience in implementation of security systems and controls. Must have a thorough knowledge of information security components, principles, practices, and procedures
Formal training or proportionate work experience in security tools (scanners, Intrusion Detection Systems, and security analysis tools both on the network and on host based systems)
Experience with computer forensics concepts and procedures, investigations, collections, evidence handling, analyzing and preserving digital evidence and live response techniques
Have a thorough understanding of the common and uncommon threats and vulnerabilities related to applications, architectures and databases, thin clients, thick clients, mobile and virtualized applications
Have a firm understanding of outside security threats and risks to an information technology infrastructure and use those skills to develop custom incident response protocols as deemed necessary
Working knowledge of EnCase Enterprise is preferred
Preferred Certifications: One or more of the following certification designations is preferred
GIAC Certified Incident Handler - GCIH
GIAC Certified Forensic Analyst - GCFA

Senior Security Engineer Resume Examples & Samples

Manage and Maintain Tripwire File Integrity Monitoring(FIM) and Systems Integrity Monitoring(SIM) consoles
Complete installation of all supported devices, including implementation, testing, reporting, alerting, and operational support resource training
Create, modify, test, and implement approved changes to supported devices based upon customer requirements
Verify system status and health including memory usage and disk space and validation of process execution
Maintain current standard operating procedures and documentation
Correlate configuration changes on the file integrity server with applicable OPAS change tickets to ensure configuration changes are valid
Monitor reports for notifications of configuration changes
Ensure configuration policies are applied
Review application patching on file integrity servers and determine servers needing upgraded; work with the Intel team to determine when patching should be applied
Communicate with vendors to solution and execute system changes
Provide vendor problem case management for on-going and critical production issues
Execute or oversee system back-up and restore testing procedures and processes
Promptly notify management and end users of file integrity incidents and take appropriate remedial or preventative actions
Create, validate and test emergency system availability, disaster recovery and business continuity plans
Perform periodic self-testing to ensure system performance and coverage meet expectations and capability requirements
Verify monthly, weekly, daily and ad-hoc reports are created and running properly and are distributed as needed
Attend change management calls
Participate in projects concerning supported products
Review work tickets concerning file integrity
Work with vendors to obtain quotes and pricing for renewals
Mentor junior level engineers
Ensure that Service Level Agreements (SLAs) are met
Report common and repeat problems (trend analysis) to management; propose process and technical improvements

Senior Security Engineer Resume Examples & Samples

Minimum 5 years of security experience
Experience with infrastructure components utilized within the security industry (firewalls, intrusion detection/prevention, DDoS defense, etc.)
Strong software development, design and architecture skills
Bachelor’s Degree required or relevant experience

Senior Security Engineer Resume Examples & Samples

Excellent understanding and experience of engineering Windows/Linux endpoint solutions
Scripting and Development Skills (Powershell, VBscript, C#, Perl, Python, Java)
DNS / WINS
Basic web development skills (HTML, JavaScript)

Senior Security Engineer Resume Examples & Samples

Define and lead programs that support and align with a cloud based online service strategy and engineering requirements for evolving information security services, mechanisms, and safeguards
Lead the development and implementation of cloud based security policies and procedures, control standards, and operational practices
Partnering with engineering, program management and operations personnel within the service delivery organization to implement changes to process and technology
Developing metrics that demonstrate current risk state, indicators of progress, and business alignment for those activities
Lead the on-going operational security assessment and measurement of information security risk objectively and consistently
Analyzing threats and current security controls to identify gaps in current defensive posture
Identify appropriate technology/data sources and drive the collection of data necessary to effectively evaluate threats
Ensure that operational, security incident trends and observations are considered with regard to the evolution of the ECM Platform's information security services and capabilities
Work in active partnership with C&E security teams and other cross company stakeholders to understand business and technical requirements and develop supporting security principles and objectives that will enable alignment and growth
Work in active partnership with development teams during operational security reviews providing leadership and security design guidance
Communicate threat and vulnerability observations clearly to leaders and subject matter experts
Acts as a liaison to Compliance and internal audit departments and work in conjunction with technical counterparts to remediate audit and security findings
Formally and informally respond to regulatory audit requests with regard to information security services, mechanisms, and safeguards
Help develop communications and actively promote related campaigns for information security awareness across ECM
Keep current on organization's business practice, technology, security issues and legislation that impact the company’s security policy
Communicating objectives, strategies and progress to stakeholders
9+ years’ professional experience in cloud-based or online services security engineering, or service engineering
5+ years’ experience in cloud-based or online services Compliance related activity
5+ years’ experience in Program Management, creating a security framework, SIRRP process and forensic handling methods
4+ years’ experience creating a reusable security framework working with Corporate security and broader corporate programs
Has worked or been part of an online service compliance team for more than 5+ years and has completed more than 2 annual audit cycles
Demonstrated critical thinking skills; familiar with tools for structured decision making
Able to form working relationships and drive alignment with diverse stakeholders
Excellent written and oral communication skills; can effectively communicate complex technical concepts
Able to drive multiple parallel projects in different phases at the same time, and has been involved in at least 3 Cloud-based/online services scale projects
5+ or more years’ experience in working on large-scale online cloud based services
Experience and understanding of cyber security in one or more of the following disciplines: network engineering, Windows Server, SQL Server, Active Directory, public key infrastructure, web applications
Preferred to have certifications in one or more of the following disciplines preferred: CISSP, networking, Microsoft Windows Server, Microsoft SQL Server, information security
Familiarity with MOF or ITIL preferred
BS or BA in Computer Science, Information Systems, Information Technology or a related field or equivalent experience is preferred

Senior Security Engineer Resume Examples & Samples

At least 3-5 years’ experience working in a progressive information security operations or engineering group
Imperva DBF or WAF exposure
Deep understanding of network routing and switching architecture, design and troubleshooting
Qualys experience desired

Senior Security Engineer Resume Examples & Samples

Assist in the implementation, management and monitoring of the strategic, enterprise information security and risk management program to ensure the integrity, confidentiality and availability of systems and technology and ensure confidential company data is protected
Leverage information security expertise and technology to support a secure infrastructure, secure applications, and overall data security; drive projects and security operations with IT Operations, development teams, and users across the organization
Coordinate with the Director so that policies, procedures and related security education are aligned with business risk and compliance requirements
Partner with IT Operations and Development to ensure appropriate technologies are in place and monitoring and controls are in place for compliance with established security policies and procedures
Work directly with business units to facilitate IT risk analysis and risk management processes; identify acceptable levels of risk, and establish roles and responsibilities with regard to information classification and protection
Provide and develop subject matter expertise to support management on the maintenance of a broad range of information security standards, best practices, and compliance requirements
Work with developers and architects to ensure security is appropriately built into the software development cycle. Offer assistance, advice and guidance as required
Coordinate the performance of internal and external network and systems vulnerability assessments and penetration tests and advise on mitigating vulnerabilities
Support the processes for appropriate internal testing of applications prior to deployment
Coordinate organizational efforts in response to security events and incidents
Assist the Director in coordinating use of external resources involved in the information security program
Collecting, monitoring and analyzing IT security metrics to measure the effectiveness of IT security management processes and producing relevant reports
5+ years of progressive IT solutions and security experience
Good understanding of the commonly used concepts, practices, and procedures within Information Security
Good understanding of operating systems (Windows, Mac, Linux) and network (Router, Switch, Firewall) security
Good understanding of application security, secure programming and web platform security
Understanding of vulnerability analysis, penetration testing, encryption technologies, intrusion detection, incident response
Expertise in Securing Cloud, Mobile and emerging technologies security a plus
Knowledge of risk assessment procedures and policy development a plus
Understanding of security requirements for Sarbanes-Oxley, ISO Certifications, Data Privacy laws, and PCI. Cyber security, including support of highly secure web environments experience a plus
Extensive interpersonal skills with the ability to work effectively with end-users, IT peers, managers and vendors
Ability to effectively adapt to rapidly changing technology and apply it to business needs

Senior Security Engineer Resume Examples & Samples

7 years+ in Information Security space
Strong experience with mobile device management (MDM) solutions
Experience implementing advanced endpoint protection solutions

Senior Security Engineer Resume Examples & Samples

Develop and maintain electronic discovery and forensic program procedures including guidelines and flow diagrams to be implemented on an ongoing basis. Maintain general knowledge of RE technology strategies and technical trends and how they might influence eDiscovery processes and capabilities
Develop tools or metrics that allows for the measurement of successful program implementation and tracking of caseload
Possess a solid understanding of modern computer file system concepts, forensics and secure evidence handling techniques. Proficient in Windows, networks, PC, OSx, etc. technologies and associated metadata including disk hardware and secure transfer technologies
Communicate current issues and status to requesting parties highlighting key accountabilities, milestones, dependencies, risks, financial impact, resources, etc. to ensure transparency and consistency of communication
Interface with senior executives within the firm during recovery requests and be able to describe complex technical issues in a clear non-technical manner
Develop and maintain formal reports for analysis performed and communicate status and issues to the requesting party throughout the investigation process
Establish or reinforce existing multi-directional communication processes for providing feedback, identifying risks and escalating issues
Lead forensic analysis and review security logs/data for anomalous activity or in response to security events; collaborate with respective peer groups to take appropriate action to safeguard company information assets against current and foreseen threats
5+ years of IT security experience
BS Engineering/Computer Science/Computer Security or equivalent experience required
Licensing/certification required (at least one of the following): industry certification such as EnCE, ACE, CCE, or GIAC (or related)
Strong knowledge of security environments
Ability to analyze security events for anomalous activity
Possess a solid understanding of modern computer file system concepts, forensics and secure evidence handling techniques
Proficient in Windows, networks and PC technologies and associated metadata including disk hardware and secure transfer technologies
Proficient with PC and server-based applications and protocols
Experience with PC forensic toolkits, including EnCase & FTK
Experience with Microsoft Exchange 2000+ and Outlook 2000+Experience with Boolean and full-text search tools and techniques
Possess project management skills, with the ability to create detailed project plans and ability to drive projects to completion
Have strong organizational skills
Experience supporting non-technical organizations including human resources and legal departments
Maintain general knowledge of RE technology strategies and technical trends and how they might influence eDiscovery needs
Familiar with e-Discovery (e-Disco) and digital forensic processes and with the Electronic Discovery Reference Model (EDRM)
May have experience related to
Forensic imaging and extraction
Advanced registry and internet history analysis
Data obfuscation and steganography detection and analysis
Metadata extraction and analysis
Network forensics and analysis
Technical report generation

Senior Security Engineer Resume Examples & Samples

BS in Computer Science or Computer Engineering, or at least 5+ years of comparable industry experience
Strong programming skills (C++ and/or C#) and understanding of data structures/algorithms
Strong problem solving skills and technical judgment.”

Senior Security Engineer Resume Examples & Samples

Architect, design, implement, support, and evaluate security-focused tools and services including project leadership roles
Develop and deliver training materials and perform general security awareness and specific security technology training
Participate in tier 2 and tier 3 security operations support
2+ years of experience and involvement with development team(s) that delivered commercial software or software-based services (development, QA testing, or security role)
Experience with scripting (e.g., PERL, shell scripting)

Senior Security Engineer Resume Examples & Samples

Design, test, and deploy various security solutions for 2U’s internal and external systems
Hack into test environments during red-team exercises
Strike a balance between building things and breaking things
Provide consultation on information security designs to various departments at 2U
Promote secure coding practices within the software development teams
Work on improvement of existing tools and development of new tools
Analyze, escalate and remediate security incidents, identify false positives, correlate suspicious activity, etc
Knowledge of security standards, principles, techniques and technologies (OWASP, ISO27001, NIST etc.)
SANS certifications and participation in Bug Bounty programs are a huge plus

Senior Security Engineer Resume Examples & Samples

Familiarity with IDS types, similarities and usage
Experience with McAfee ePO
Familiarity with Linux based operating systems (CentOS, RHEL, Kali) and security hardening
Experience with Amazon Web Services
Experience with Configuration Management solutions such as Chef, Puppet, or SaltStack
Basic experience of data parsing (Python, BASH, grep, SED, AWK, etc.)
Excellent information management practices, such as thorough documentation, usage of wikis, blogs and other collaboration tools
Knowledge of ITIL process framework

Senior Security Engineer Resume Examples & Samples

Bachelors' degree or equivalent and a minimum of fourteen (14) years' of experience in IT and/or Cyber
Minimum of six (6) years' experience in managing all phases of systems C&A activities ranging from early concept development to system retirement
Experienced in the doctrine, technologies, C&A, and documentation and connection requirements for controlled interfaces/Cross Domain Solutions
Expert in the maturation of Information Assurance (IA) architectures that successfully integrate multiple IA domains to include access control, OSPEC, telecommunications, network and Internet security, cryptography, application security, physical security and continuity, and disaster recovery
DoDD 8140.01 and DoD 8570.01-M-compliant Cybersecurity Systems Engineer
Computer Science BS degree or similar degree
Excellent writing skills and ability to communicate effectively, including public speaking, and briefing senior officers
Excellent communication and leadership skills and experience
Experience with space systems and their related ground systems

Senior Security Engineer VG Resume Examples & Samples

Supporting project managers in identifying and coordinating technical activities
Gathering requirements, performing gap analysis, developing and presenting potential solutions, and creating detailed design and implementation plans
Integrating security into the design and implementation process to conform to established State Department security standards, policies, and procedures
Reviewing evolving security requirements and policies and making recommendations for existing systems to ensure compliance
Identifying security architecture and implementation gaps, vulnerabilities, and risks; developing, testing, and implementing solutions to address the gaps, and new or updated requirements
Evaluating emerging technology (e.g., social media, mobile computing) and making recommendations
Supporting Assessment & Accreditation (A&A) as a security SME, to provide recommendations on meeting required controls
Bachelor’s degree in a technical or engineering related discipline, or equivalent experience; and 8+ years of relevant experience
Required Experience/Skills/Attributes
Experience with A&A SP 800-53 and CNSSi 1253 security controls
Extensive knowledge of network operations and security including but not limited to authentication and authorization solutions, next generation firewalls, antivirus, VPN, routers, ports, protocols and services, and application layer security
Experience with system development lifecycle, and early incorporation of security throughout the lifecycle
Technology certifications including, but not limited to
Cisco Certified Network Associated (CCNA) Security
GIAC Certified Perimeter Protection Analyst (GPPA)
Security-focused Cisco specialist (e.g., ASA, Cybersecurity, IOS Security)
Palo Alto Certified Network Security Engineer

Senior Security Engineer Resume Examples & Samples

Developing and implementing, tools, technologies, and models which can be productized to security operations center (SOC) staff, threat intelligence analysts, or others in the identification or prevention of cyber security incidents
Provide architectural thought leadership for the data analytics environment leveraged by SunTrust to perform advanced hunting or analysis
Provide engineering support, where necessary, for the data analytics environment
Support the Security Operations Center (SOC), if required, during security investigations
Excellent research, analytical, and problem solving skills
Strong command of Linux-based operating systems and system administration
Experience with host and network security concepts, such as system hardening, log management, intrusion detection & prevention systems, firewalls, etc
Command of at least one programming or scripting language, such as Python, Perl, .NET, etc
Strong expertise with the Hadoop framework (i.e. Hadoop, M/R, Spark, Hive, Pig, etc.)
Experience with SIEM technologies, such as QRadar, ArcSight, Splunk, RSA, LogRhythm
Experience with data science technologies (i.e. SAS, MLlib)
Experience with NoSQL technologies, such as MongoDB, ElasticSearch, etc
Proficiency in Microsoft software: Outlook, Word, Excel, PowerPoint, and Visio
Ability to demonstrate effective decision making, results delivery, team building and the ability to stay current with relevant technologies and information security concepts
Demonstrated initiative and team work competencies
Adaptability, flexibility and ability to work as part of a team across functional boundaries, as well as in an individual capacity
Proven abilities to see the big picture while maintaining firm comprehension and management details

Senior Security Engineer Resume Examples & Samples

Creation of custom IPS signatures
Creation of custom Yara signatures
Creation and implementation of custom Proxy, HIPS, NIPS, and/or DLP rule sets in order to further protect the enterprise
Creation and implementation of custom alerting rules in SEIM and disperse Logging infrastructure that will feed into a Cyber Security Operations Center for review and investigation
Review proposed firewall, proxy, and other network infrastructure changes in order to determine the most restrictive rules, while still fulfilling the needs of the business
Leveraging sound IT knowledge to identify/respond to common attacks through common vectors and methods with support from senior team members as needed
Gathers structured data for the purposes of metrics and reports
Implementation of technical responses to identified Indicators of Interest in Security tools related to cyber-attacks to aid in blocking or alerting on future activity
Ability to competently describe and document system functionality, problem areas, and feature gaps in new and existing analytical tools
Actively attempts to enrich team value by sharing knowledge
Strong experience and knowledge of tools used for network security (DLP, NIPS, HIPS, AV, Firewalls, etc)
Experience in signature development (IPS, yara, A/V, etc.)
Experience with open source tools (Security Onion, moloch, Elastic Search, etc.)
Solid understanding of *nix and Windows operating system functionality
Scripting and coding experience (bash, PowerShell, python, etc.)
Superb analytical, documentation, and communication skills a must
Experience developing and proposing technical solutions for complex problems
Experience in in-depth evaluation of disparate data sources (trends and reporting)
Experience in system testing and use case development in support of highly technical customized applications

Senior Security Engineer Resume Examples & Samples

Perform cross-functional collaboration with the other members of the information security team to manage information security risk identification, mitigation and acceptance processes in coordination with security operations; risk planning, mitigation and remediation to address information security deficiencies
Gives counsel to ensure that internally developed and commercially available business applications include adequate Information Security controls; Consults process owners on the identification, development and testing of Information Security controls for risk mitigation effectiveness
Identifies potential areas of compliance vulnerability and risk; develops/implements corrective action plans for resolution of problematic issues, and provides general guidance on how to avoid or deal with similar situations in the future
Building and assisting in operating an internal security monitoring competency, utilizing modern security technologies to provide comprehensive security assessment of the Equifax environment
Determine user requirements under prescribed guidance and establish the appropriate Security Controls necessary
Collaborate closely with the various Security and Information Technology teams globally to insure that they have what is needed to protect the enterprise and that best practices are implemented uniformly across the company
Implement and administer multiple security solutions, standards and procedures to insure the protection of sensitive information being processed, stores or transmitted within and between computer networks and systems
Assist in the planning of projects and monitoring progress
7+ years of previous technical experience with security networking and/or software development
Knowledge of infrastructure and Software Development Life Cycle (SDLC) design and implementation process is critical for success in this role. In this role you will be responsible for developing and driving adoption of best practices around security assessments within Equifax global platforms
Ability to determine user requirements under prescribed guidance and establish the appropriate Security Controls necessary
CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager) and/or CISA (Certified Information Systems Auditor) certification

Senior Security Engineer Resume Examples & Samples

Configure and analyze security tools and software
Coordinate with IT and end users to minimize disruptions and protect assets
Document, prioritize, and analyze security threats, incidents, and key metrics
Review daily and periodic data to identify, report, and remedy vulnerabilities
Provide technical advice on access control, security models, disaster recovery, business continuity planning, and security awareness training
Plan, implement, monitor, and troubleshoot internal information technology security policies, application security, access control, and corporate data safeguards
Perform network scanning and vulnerability assessments
Analyze and define security requirements for local and wide area networks
Update secure configurations by routinely reviewing vendor sites, bulletins, and notifications for security information
Monitor and log security concerns and incidents, and generate reports and track performance
Maintain physical and code environment to protect servers, switches, and entire information technology (IT) system while balancing overall load
BS in Computer Sciences/ Information Systems/related major or have a business background with an IT focus with a minimum of 7 years technical experience in security
10+ years, hands-on, broad-based information security experience
5+ years working in a regulated environment
7+ years technical experience across multiple platforms (i.e. Mainframe, Windows, UNIX)
Must qualify for at least 5 of the requirements listed below
Very strong communication skills: oral, written, presentation, facilitation
Ability to think and act both strategically and tactically
Can communicate to a mixed audience of IT and Business professionals
Able to quickly grasp design patterns and principles
Technical hands-on security infrastructure responsibilities
Relationship management and conflict resolution skills
Ability to strongly advocate positions in the face of adversity
Willingness to mentor fellow employees
Proven track record of problem solving and successfully implementing cost effective solutions
Collaborative with the ability to achieve impact and influence
Superior verbal and written communication and presentation skills
Possesses strong organizational skills
Strong interpersonal skills and the ability to work independently
Demonstrates sense of urgency and a high-degree of initiative and professional judgment

Senior Security Engineer Resume Examples & Samples

Analysis of event feeds, intelligence, malware samples, and incident data for evidence of malicious or anomalous activity, and to better understand adversary TTPs
Build and mature security data analytics program for advanced detection capability
Authoring and implementation of original detection rules for various monitoring systems on the basis of current threats, vulnerabilities, or other specifics to the BCBSA computing environment
Ingest, create, and share intelligence, TTPs, and threat data (IOCs)
Support team engineering and vulnerability management programs
Fuse locally derived and externally sourced cyber threat intelligence into signatures, techniques, and analytics intended to detect and track the advanced threat
Continuous tradecraft analysis and tracking of adversary TTPs and incorporating into the TD&R process
BS degree in Computer Science, MIS, Computer Engineering or equivalent work experience
5 years’ experience with a minimum of 2 years in one or more of the following: incident response, application security, network security, security operations, security monitoring, or security focused system’s engineering
Minimum of one year scripting or programming experience in Ruby, Python, Shell/BASH scripting, Java, C/C++, C*, Perl, or other languages
Sharp analytical abilities and proven technical architecture design skills
Data analysis skills using SQL, big data technologies, or scripting
Experience with IR, SIEM, Threat Intelligence, and Forensics tooling
Demonstrated technical domain expertise of detection and response technologies and processes
Demonstrated experience in response activities associated with advanced attacks

Senior Security Engineer Resume Examples & Samples

BS degree or equivalent work experience and seven (7) years in a software development and/or systems integration environment
Five (5) years managing and scripting server orchestration and management tasks for Linux and Windows environment
Three (3) years of hands-on experience designing, developing/implementing deployment automation tools in a production environment (including Puppet)
Three (3) years of maintaining/extending configuration management infrastructures through IT automation tools
Industry knowledge in performance management, scaled solutions and methodologies
Experience developing and maintaining security configuration baselines for IT infrastructure components
Experience with cloud and hypervisor providers
Scripting experience (Python, Ruby, etc.) and configuration management tools
Certifications are a plus: CISSP, CCNA, CISM, CEH, GPEN, GWAPT, GCIH, Security+
Support security engineering tasks to include evaluating, configuring, testing, implementing and integrating new security solutions and capabilities in a SIEM, Message Threat Protection, Endpoint Protection, Privileged Account Management and similar on premise and/or cloud-based tools
Help "stand up" an automated provisioning and configuration management team responsible for integrating Puppet and cloud provider services
Coordinate with platform, storage, networking and software development teams to develop a highly extensible cloud service environment that can be adopted and integrated in a wide range of scenarios
Configure and manage the Puppet master instance
Create and maintain policies to apply CIS/STIG benchmarks to FCC mission application components (servers, switches, etc.)
Function as a technical expert on cloud infrastructure projects pertaining to the automation, orchestration and provisioning of infrastructure-as-a-service solutions supporting Windows and Linux based servers in cloud environments
Evaluate architectural alternatives and set the technical strategy for the underpinning elements, cloud and automation services
Participate in cloud-based services planning, design, and implementation to include third-party cloud service providers

Senior Security Engineer Resume Examples & Samples

Skills in Hadoop, Development, Engineering, Architecture, Analytics
Thorough understanding of security technologies which are deployed in large ‘Tier 1’ organisations
Demonstrated experience supporting critical infrastructure running on Unix and Windows
Experience with relational database systems and health monitoring

Senior Security Engineer Resume Examples & Samples

General
Demonstrated ability to influence and consult (providing options with benefits, risks and challenges) while providing thought leadership to stakeholders in solving process and/or technical problems
Deep understanding of the IT lifecycle and related planning processes
Demonstrated experience delivering results, finding innovative solutions, managing and leading in a fast paced dynamic complex environment
Ability to provide third-party oversight of vendors, suppliers, and contractors who provide a broad spectrum of products and services

Senior Security Engineer Resume Examples & Samples

Providing security engineering support for a cyber security/crypto modernization program
Generating technical whitepapers to document results from security engineering analyses and technology assessments performed for the specific tasks
Performing research and test and evaluation of Cyber Security, Cryptographic Modernization, COMSEC (suite A and suite B algorithms), TRANSEC, Key Management, Information Assurance technologies, market research for hardware and software Commercial off-the-shelf (COTS)/ Government off-the-shelf (GOTS), and open source network products for areas including Network Intrusion Detection, Intrusion Prevention, Audit Logs, Denial of Service, Attack Alert and other related security applications
Proposing new ideas to support Information Storage, Data Purge Tools and Security Management Systems
Ten (10) years or greater industry experience in developing cryptographic systems to include specifications and algorithm (eg Suite A and Suite B) development, integration with embedded system, and security accreditation/certification
Advanced Degrees and/or certifications in a directly related field are highly desired
Experience required in designing tactical communications security architecture to include
SRW
WNW and MUOS Waveform Applications
SINCGARS
SDR product developments (ie HMS Rifleman and Manpack radios or variant)
EMANE SRW/WNW models

Senior Security Engineer Resume Examples & Samples

Working knowledge of RACF and zSecure security system and process including all daily functions such as managing users (mainframe and PC applications), commands, resetting passwords, monitoring helpdesk tickets, running ad hoc reports upon request and troubleshooting incidents
Manages the daily functions of RACF Infrastructure administration for multiple databases
Follow troubleshooting procedures to resolve issues and / or coordinate with the appropriate support groups
Assist with development of solutions to operational problems
Work with the customers, vendors, suppliers and other mainframe operations staff to resolve issues
Create and maintain RACF group structure
Perform RACF Database consolidation
Own and drive RACF related security projects in the mainframe environment
Participate / Facilitate on SOX, PwC and internal audits for RACF applications and infrastructure
Manage the addition of digital certificates to RACF
Write documentations and Standard Operating Procedures as needed
Participates in testing of software upgrades and disaster recovery tests
May require after hours and weekend support for high priority processes
At least 3 years of experience supporting RACF and zSecure
Working knowledge of various mainframe software / Tools
ZLock, zAlert, zSecure, TSO, JCL, REXX, CA7/11, Command Verifier and SDSF
Candidate must have the ability to work independently and accurately
Ability to build and maintain strong relationships with appropriate customer base, internal IT partners, product vendors and senior management
Ability to manage multiple priorities and deliver timely results
Must be able to coordinate and manage diverse technical and operational tasks
Work experience in computer security and good customer service skills
Knowledge of Microsoft Office including WORD, EXCEL, and ACCESS
Highly motivated and excellent organizational skills
Candidates must be willing and able to work overtime which includes all shifts, weekends and holidays
Support z/OS UNIX System Services (USS) and WebSphere environments
Provide off hours support for Disaster Recovery planning and testing
Able to provide 24 hours support 7 days per week 365 days per year, when required, for RACF related
Knowledge of CARLa language
Understanding of RACF interfaces for products like IMS, DB2, CICS and Unix
Understanding of Sysplex environment / configuration

Senior Security Engineer Resume Examples & Samples

Responsible for building and deploying the blueprint the IAM architects have designed
Effectively collaborate with the IAM architect to constructively question and review IAM architecture design decisions
Engage with external consultants to translate and integrate external tools and solutions into Sentara's IAM architecture
Install and deploy IAM products or provides the connectivity for Software-as-a-Service-based IAM services into the Sentara environment
Expertly document any installation and Software Development Life Cycle processes
Configure and maintain identity objects within the IAM tools and solutions
Promote code and policies from lover level (development) environments to higher level (staging) and production environments
Responsible for developing, source-controlling, maintaining, and porting code required for the customization of the IAM environment
Responsible for handling support tickets and troublesnse procedures, based upon emerging security threats
5-10 years’ experience in an enterprise Identity & Access Management product

Senior Security Engineer Resume Examples & Samples

You’ll work closely with our internal development teams in US and offshore. Ideally you will have a solid development background in have progressed as application security expert for cloud and non-cloud deployment environment
You’ll help setting up secure coding practice and guide the team to embrace the methodology. Working with a data scientist, you’ll also ensure the teams are collecting and analyzing the usage data to determine abnormality
You will work closely with security compliance team to understand technical and assurance requirements, help in the analysis of the requirements and drive people, process and tools changes related to security
Your ability to keep up to date on all new security challenges and work with our teams to develop protection mechanisms is the key
Experience in secure development especially for internet facing as well as intranet, Mid-range and cloud hosted applications
Experience in legal/compliance requirement (e.g., Sarbanes-Oxley)
Experience in data collection and analysis to determine possible threat
Strong understanding of authentication and authorization protocols
Knowledge of security products and technologies(SSL/TLS/Kerboros/SAML)
Experience in applying security in Cloud technologies like AWS, Containers, Microservices, etc
Experience in industry standard certifications like PCI DSS, SOC2, HIPAA, FedRAMP
Expert in Web Security (OWASP Top 10)
Experience in Java/python/unix
Ability to communicate issues effectively as well as educate developers to secure coding practice
8+ years total experience and 2+ years in Cloud Security

Senior Security Engineer Resume Examples & Samples

Operational support of firewalls, web gateways, intrusion protection, load balancing and remote access which includes troubleshooting issues and escalating to vendors
The Engineer will support FTP/SFTP solutions for data transfer along with experience with third party solution providers
Desired skills include creating VPN solutions for supplier/partner integrations
Concise communication skills for creating and updating network diagrams and configurations, preparing white papers, training documents, and or technical presentations as required
Bachelor degree in Computer Science or other technical field preferred
Current Security Certifications preferred

Senior Security Engineer Resume Examples & Samples

Working with sales teams to develop security opportunities
Candidates for this position should have at least 10 years of directly relevant security design/sales engineering or operational experience
Bachelors degree in telecommunications engineering or a related technical discipline preferred
Certified Information System Security Professional (CISSP) certification
Relevant Splunk, Arcsight, FireEye, Fortinet, Palo Alto or other certifications
The candidate must be self-motivated, have excellent oral and written communication skills, and the ability to work autonomously and in a team environment
Candidates are encouraged to provide examples of presentations and/or documents you have authored

Senior Security Engineer Resume Examples & Samples

Minimum 5 years’ experience focusing on Identity and Access Management (IAM)
Minimum 2 years’ plus federal experience in the information security space
Experience in one or more of the following Identity and Access Management (IAM) vendor tools and software solutions

Senior Security Engineer Resume Examples & Samples

10 years of technical experience in the Information Security field with anunderstanding of advanced security protocols (HTTPS, SSH etc.) and standards, including a demonstrated ability to perform complex analysis
A strong understanding and working knowledge of IP Networking, Web Technologies, Network and Server Security including standard practices
Decision-making qualities including the implementation and security of wireless network technologies
Expertise in LAN/WAN and other network related concepts and principals. implement Information Security/Networking best practices and procedures
Demonstrated knowledge and exposure to different types of encryption technologies and concepts
Ability to travel as necessary
Certifications in CISSP or CISA
Experience with computer forensics
Mobile devices and BYOD Security principles and concepts

Senior Security Engineer Resume Examples & Samples

Prior application security experience
Excellent verbal, written and presentation skills
Ability to partner and communicate effectively with IT and business leadership
Knowledge of relevant information security best practices
Web applications
Prior secure code review experience
Ability to partner and communicate effectively with developers

Senior Security Engineer Resume Examples & Samples

Designed and implemented enterprise network firewalls in the Retail or E-Commerce industries
Strong understanding of firewall topology and zone based methodology
Strong understanding of JUNOS and ScreenOS firewall code along with tools like NSM and Space with Juniper Firewall Certifications a plus
Good understanding of dynamic routing protocols such as OSPF, iBGP, and IS-IS
Strong understanding of the OSI model with emphasis on Internet application and transport protocols
Strong knowledge of the SDLC process and Information Security Architecture Frameworks
Understanding of Web Programming languages such as HTML, JavaScript, and PHP
Strong knowledge of scripting and regular expressions such as Bash and Perl
Understanding of Apache and Database Administration
Bachelors of Science or equivalent experience with a CISSP certification a plus
Strong written, verbal, and communication skills with emphasis on coordinating third party contracted resources
Able to read and understand network and data-flow diagrams

Senior Security Engineer Resume Examples & Samples

Development, design and implementation of security processes and technologies worldwide for Concur’s hosted data centers, including security controls, protocols and practices in conjunction and collaboration with other security representatives throughout the company
Manages the support for security related incidents with internal IT and Cloud Services organizations
Leads (Incident Commander) the Security Incident Response process and procedures
Management of all technical security equipment, including IDS/IPS devices, Data Loss Prevention equipment, web content filtering equipment, SEIM
Perform access certifications and other identity and access management related tasks
Innovate and help grow Concur’s bespoke security platform
Finding solutions, rather than problems in response to the needs of a given business unit
10 years ‘Hands on’ security experience a plus, or an equal amount of desire to develop deep technical security knowledge
Experience in a network engineering, endpoint protection, monitoring and analytics or an information security position

Senior Security Engineer Resume Examples & Samples

Implement, administer and maintain company security solutions including perimeter, network and endpoint defenses
Implement, administer and maintain SIEM and log management solutions
Develop and maintain detailed configuration and process documentation
Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors; and
Minimum 7-10 years’ experience in the information security or information technology fields
Demonstrated experience writing rules and/or alerts for SIEM tools such as Splunk, SolarWinds or LEM
Demonstrated experience writing rules and/or alerts for Intrusion Prevention Systems
Bachelor of Science in a technical discipline or equivalent experience

Senior Security Engineer Resume Examples & Samples

Monitor, audit and maintain 2K’s Security Operation Center systems
Monitor, track, and analyze networks/systems for potential security violations and respond to all such incidents
Act as subject matter expert for information security events and or incidents
Ensure security event SLA’s are met
Report security trends and or problems to management
Participate in on-call rotation for security incidents
Research novel and emerging threats that apply to 2K and the gaming industry in general
Participate in security root cause analysis and follow-up
Develop, maintain and run security operations reports
Create executive dashboards for vulnerability assessment, patch management and incident response
Develop correlation rules, tuning policies, and automation and application logic for security operations systems
Assist in developing the Computer Security Incident Response Team (CSIRT) and appropriate policies, standards and plans
Engineer technological and process improvements for security operations

Senior Security Engineer Resume Examples & Samples

Must have an active Top Secret security clearance, with the ability to obtain DHS suitability
Bachelor’s degree in Computer Science or Information Systems is preferred but not required
7+ years of advanced cyber security experience inclusive to networking, TCP/IP, DNS, email protocols, conducting red/blue team assessments, scanning tools, and writing comprehensive reports
In-depth knowledge of sophisticated threats and understanding of complex, cross-domain, systems architectures
Experience in the design and development to reference security architectures and implementations of security systems
Superior interpersonal, communication, presentation, and writing skills
10% travel or sometimes extended and occasional weekend work may be required

Senior Security Engineer Resume Examples & Samples

Five (5) years in the IT field to include six (6) months in a Security Architect or related role
Experience providing and validating security requirements related to broad range of operating systems, databases, and server configurations
Experience security and monitoring cloud providers (Office 365, ZenDesk, Service Now, Appian, Azure, AWS, Softlayer or similar providers)
Experience developing and reviewing security related enterprise standards, policies and procedures; proven record of applying, tailoring and augmenting 3rd party security baselines for mobile devices, laptops, workstations, servers and cyber security defense infrastructure
Collaborate and follow up with other technical stakeholders to architect and discuss technical solutions and address any major impacts
Conduct security architecture verification and validation activities
Design, develop, engineer and implement solutions to security requirements
Perform complex risk analyses including risk assessments
Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory and resource demands

Senior Security Engineer Resume Examples & Samples

Focusing on real-time mission critical technologies of security: SCADA, electrical power, building management and other control systems
Implementing and maintaining security policy
Advising development staff on application security
Host and network security tools and implementation
Coordinating intrusion and penetration tests
Leading design reviews for complex systems
Functionally decompose complex problems into simple, straight-forward solutions
Have a complete understanding of the various system interdependency and limitations
Understand business context to decisions made within and across groups
Advise and consult with internal customers on risk assessment, threat modeling and fixing vulnerabilities
B.S. Degree in Computer Science or equivalent. Must have solid working experience and knowledge of Windows
Unix/Linux operating systems experience development (at the kernel or device driver level), network protocols and hardware virtualization technologies
At least 5 years of experience in infrastructure or application-level vulnerability testing and auditing
At least 2 years of system, network and/ or industrial controls security experience
Knowledge of controls protocols such as BACnet, Modbus, Modbus TCP/IP, LonWorks, and XML
Strong process and procedure ownership experience for system audits
Consistent implementation of security solutions at the enterprise level
M.S. Degree in Computer Science or equivalent
Certification in SCADA or Industrial Control Systems (GICSP or equivalent)
Top Secret security clearance with Sensitive Compartmented Information (TS/SCI)
Experience with cloud computing technologies
Strong knowledge of data structures, algorithms, and designing for performance, scalability, and availability
Experience with web-based applications and/or web services-based applications, especially at massive scale, are very applicable and helpful
Programming in C, C++, Java, Python, Perl, and/or Ruby
Scripting skills (e.g., Perl, shell scripting
Internet and operating system security fundamentals
Demonstrated ability to achieve stretch goals in a highly innovative and fast paced environment

Senior Security Engineer Resume Examples & Samples

A bachelor’s degree in Computer Science or related field
5 years’ experience in infrastructure or application-level vulnerability testing and auditing
5 years’ experience in system, network and/or application security engineering
A consistent track record implementing security solutions at the enterprise level
Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, BGP and other routing protocols)
Professional experience and detailed technical knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security
The ability to embrace change and a rapidly evolving work environment with a positive attitude
A Master’s degree in Computer Science or related field
10 years' experience in infrastructure or application-level vulnerability testing and auditing
10 years' experience in system, network and/or application security engineering
Proven history of mentoring team members
Knowledge of Identity and Access Management principles
Industry security certification (CISSP, CEH, etc.)

Senior Security Engineer Resume Examples & Samples

Leverage your strong teamwork skills as you and your teammates engage with other engineering and operations teams spanning the entire technology stack - endpoints, networks, databases, and applications - to engineer and deploy cutting-edge defensive solutions to modern threats
Lead information security engineering projects
At least five years of experience in system and/or network security engineering
Strong knowledge of current security threats, trends, and mitigations
Strong coding skills in multiple common languages (e.g. Perl, Python, Ruby, shell scripting, PowerShell)
Seven years' experience in system, network and/or application security engineering
Experience with industrial controls systems/ SCADA security
Experience and detailed technical knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security

Senior Security Engineer New World Resume Examples & Samples

Tear apart game architecture and systems and work with development teams to create security fixes
Create automated breach discovery systems to detect and assess threats
Produce high quality threat models
Outreach to internal development teams to generate alignment between initiatives
Develop anti-tamper technologies to detect and prevent cheating
Monitor underground for cheating and fraudulent activities
Minimum of 3-5 years software development experience using C++
Minimum of 5 years of experience with vulnerability testing and auditing techniques within the game development field
Experience developing automated security testing tools
Experience with multiple programming languages (such as Java, C++), especially scripting languages (such as Python, Ruby, Perl, etc.)
Experience with driving large, company-wide initiatives
Experience providing training and mentorship

Senior Security Engineer Resume Examples & Samples

We are seeking an experienced and knowledgeable expert who has proven design and deployment experience
The role involves working with platform developers and infrastructure engineers to secure the platform data and transactions
The role includes the opportunity to implement Security Services requirements for the platform
Security Services include, security monitoring, authentication, roles based access control, logging, privileged account management and password vaulting, web services security, web single sign on
This individual will be working in a high-performing technical environment. A well-qualified candidate will be comfortable working both hands-on and at the architecture/design/development levels of a solution
The position provides an opportunity to participate in an energetic and fast paced environment using the latest in technology and tools to build and secure an advanced financial services processing platform running in a virtual cloud-based IaaS datacenter
The Senior Security Engineer is responsible for liaising directly with infrastructure and platform developers to design and test standardized security solutions that meet stated security control objectives
Work closely with information technology teams and business stakeholders to understand goals, determine security requirements, design, and implement application and data security solutions to meet business objectives, IT strategic initiatives, corporate and regulatory requirements
Hands-on design, develop, integrate, and update system security solutions that provide confidentiality, integrity, availability, authentication, and non-repudiation
Coordinate with systems architects and developers to provide guidance in the development and integration of secure design solutions
Validate IT solutions collaboratively with infrastructure and application development project teams ensuring that corporate security policy, standards and industry best practices are met
Drive the selection, POC, implementation and operational deployment of new security technology solutions to ensure the confidentiality, integrity and availability of business data
Develop disaster recovery and continuity of operations plans for new security systems under integration, and ensure testing prior to systems entering a production environment
Deploy and configure technology, partnering with IT Infrastructure teams and vendor product professional service partners
Act as system owner for security technologies and, working with the IT infrastructure team, ensure they remain properly maintained
Stay current with developing technologies, emerging threat landscape and predict impact of changing technologies
Must have at least 6 years experience including security related engineering solution, SDLC/Agile development and DevOps
BA/BS degree in Computer Science, Information Systems, Cyber Security or a related technical field. Master's Degree is a plus
Demonstrated experience in defining security solutions for large, mission critical systems comprised of multi-tier web applications, enterprise messaging and web service based applications and batch processing
Knowledge of cloud deployments and associated security risks is required, an understanding of IaaS and SaaS based risks and mitigating security control solutions is essential
Demonstrated experience of working directly with vendors to ensure requirements can be met and familiarity with RFP/RFI processes
Demonstrated Java programming experience and ability to review Java code for specific characteristics
Demonstrated experience with building IaaS cloud based solutions including AWS, Azure, etc.. including set up of their network security and identity and access management capabilities
Hands on experience with security technology including Firewalls, DLP, enterprise antivirus, multifactor authentication, Active Directory, ADFS, PKI with certificate lifecycle management, encryption for data at rest and in transit is required
Candidate must have demonstrated experience with Windows, Linux, Red Hat, etc. hosts, operating systems
Familiarity with security aspects of databases and middleware including MS SQL, Oracle, Tibco EMS
Familiarity with network security techniques including virtual networking, IP routing, micro-segmentation using subnets and vlans, firewall-based network ACLs
Knowledge of cloud solution orchestration tools including Chef, Puppet and scripting tools like Python, Perl
Familiarity with information security policies, standards, industry best practices, and frameworks is desirable (ISO 27K, NIST 800-53, FISMA, etc.)

Senior Security Engineer Resume Examples & Samples

3 – 5 years of hands on experience with both physical and network/host level security with an excellent understanding and knowledge of enterprise firewall functionality. This includes but is not limited to: Checkpoint (NGX, GAIA, SPLAT, R65-R77, etc.), Cisco (FWSM/ASA), Juniper (SRX, ISG, NetScreen etc.), Palo Alto, Fortinet, etc
3 – 5 years of experience working with TCP/IP, Ethernet networks and troubleshooting tools (tcpdump, trace, etc.)
Advanced understanding of Internet protocols such as UDP, ICMP, DNS, SMTP, POP, HTTP, and SNMP
Advanced understanding of Caching/Proxy/AV devices. This includes but is not limited to: Bluecoat, Cisco etc
Advanced understanding of Global/Local load balancing devices. This includes but is not limited to: F5 (LTM, GTM, ASM), Cisco CSS etc
Advanced understanding of VPN devices. This includes but is not limited to: Juniper, Cisco, etc
Advanced understanding of SSL devices. This includes but is not limited to: Alteon (Accelerators), Juniper, etc
Understand how proposed architectural changes will impact the customers’ business and be able to articulate outcomes to technical and non-technical audiences
Advanced understanding of Enterprise Management tools. This includes but is not limited to: Provider-1, Enterprise Manager, Bluecoat Director, Panorama, Fortimanager etc
Experience working in 24x7 centers with complex, mission-critical, high transaction, high availability environments
Advanced understanding of networking technologies, eg. routers, switches, routing protocols, etc
Will have excellent verbal and written communication skills and have the ability to work in a team environment
Must be able to effectively interface with customer employees, Program Office employees, other Verizon employees and Senior Management
Ability to provide critical information in a clear, concise and quick manner
Must enjoy working in a fast paced environment
Advanced Linux/Unix skills
Ability to multitask, prioritize and resolve urgent issues
ITIL Certification required (or must obtain within first year of hire)
CISSP Information Security certification
Vendor certifications such as Checkpoint CCSA/CCSE, Palo Alto certifications Fortinet certifications or Proxy/Bluecoat certifications; F5 certifications
Juniper Certification (JNCIA-FWV, JNCIx-SEC, etc.)
Cisco Security or Network certification(s)
ITIL v2/3 certification
Linux/Unix scripting
Web Development/Scripting
Ideal candidate will have understanding of industry trends in all areas of Information Security
Ideal candidate will have a strong, multi-discipline, operations background with emphasis on supporting business critical environments

Senior Security Engineer Resume Examples & Samples

Recommend steps and plans to improve EPA’s security posture via security device placement, optimization of existing architecture, and evaluation and implementation of new technologies
Assess new and emerging security threats to identify security risks and impacts to WAN and data center operations
Provide technical guidance for and participate in the installation, configuration, and management of enterprise security infrastructure, including IPS, firewalls, VPN, and vulnerability scanners
Review IPS system and SIEM tool logs, report potentially malicious findings, and assist with incident response activities
Assist firewall team with development, review, implementation, and audit of firewall rules
Oversee the hardening, monitoring, and maintenance of security components to provide protection against malicious external threats to EPA’s intranet, public access, and DMZ networks
Provide weekly and monthly status, performance, and compliance reports as required by client
Participate in a 24x7 on-call support rotation to resolve issues with security infrastructure devices
Assist system administrators with interpretation of vulnerability scan results and remediation efforts as needed
Review general support systems (GSS) and application security plans for compliance with NIST guidelines, and help document the implementation and successful operation of technical security controls
Support and participate in external oversight audits as needed. Document audit findings in a Plan of Action and Milestones (POAM), and track mitigation progress
Maintain and update Standard Operating Procedures and Standard Configuration Documents for security infrastructure components
Closely coordinate with and assist other task orders and teams as required, especially the Network Operations team, Internet and managed service providers, and Enterprise Computer Security Incident Management (ECSIM)
Operational experience with a broad range of security tools such as IPS, firewall, VPN, vulnerability management, patch compliance, web filters/proxies, and log collection/analysis. Familiarity with some or all of the following vendors
Fortinet firewalls and supporting products
Tenable Nessus and/or McAfee Vulnerability Manager
Scrutinizer or other NetFlow tools
ArcSight SIEM
Forward thinking for development of technical, procedural, and strategic solutions
Strong leadership skills with the ability to manage technical projects and to mentor other security engineers and analysts
Positive and professional demeanor exhibited with team members and clients
Detail oriented with excellent organization and time management skills
Willingness and desire to openly exchange ideas and facilitate knowledge sharing
Understanding of and ability to work within corporate processes while meeting the needs of clients
Advanced security professional certification such as CISSP or SANS GIAC, or the ability to demonstrate equivalent knowledge
Familiarity with National Institute of Standards and Technology (NIST) Special Publications 800 series, including 800-18 (System Security Plans), 800-53 (Security Requirements), and 800-30 (Risk Assessment), as well as Federal Information Processing Standards (FIPS) publications
Understanding of government requirements and guidelines (International Organization for Standardization (ISO), Federal Information Security Management Act (FISMA), Federal Risk and Authorization Management Program (FedRAMP)) is desirable
Python or Perl scripting/programming skills

Senior Security Engineer Resume Examples & Samples

BS Engineering/Computer Science or equivalent experience required (at least one of the following): CISSP, CISM, SANS, GIAC (or related), ethical hacking/penetration tester certification, and/or security risk assessment certification
Compliance and governance: help achieve compliance; identify compliance initiatives as well as author and promote appropriate security policies
Lead analysis and review security events for anomalous activity; collaborate with respective peer groups to take appropriate action to safeguard company information assets against current and foreseen threats
Lead the exploration of practical security solutions to address emerging threats and compliance requirements, including design and implementation of recommended solutions
Develop and implement security programs: manage and execute project deliverables; communicate to affected stakeholders including departments within the organization; develop program procedures including guidelines and flow diagrams to be implemented on an ongoing basis; and develop tools or metrics that allow for the measurement of successful program implementation
Assess and measure security programs to ensure closed-loop operations, seek out and execute upon opportunities to reap program maturity, and deliver innovative solutions to obtain efficiencies
Develop and maintain program procedures including guidelines and flow diagrams to be implemented on an ongoing basis
Develop tools or metrics that allows for the measurement of successful program implementation
Strong understanding of compliance and governance initiatives
Ability to identify emerging security threats
Ability to develop effective client surveys
Ability to conduct vulnerability assessments, threat analysis, and reporting
Solid understanding and promotion of security policies
Understanding of industry standards

Senior Security Engineer & Forensic Analyst Resume Examples & Samples

Manage the full life-cycle for SIEM, Network Behavior Analysis, System Forensics and other security platforms to include the daily administration, planning of upgrades, new deployments, and maintaining operational data flows
Provide security architecture & systems engineering consulting to Incident Response Analysts and other IS staff
Maintain security by monitoring and ensuring coverage, effectiveness, compliance to standards, policies, and procedures; assisting in conducting incident response analyses; developing and conducting training programs
Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities. Tuning SIEM for performance and event data quality to maximize system efficiency
Research and maintain a deep understanding of current and emerging technologies and Cyber Security solutions
Upgrade security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements
Prepare system security reports by collecting, analyzing, and summarizing trends
Assist with the acquisition, vetting, and validation of cyber threat intelligence from various internal/external sources, and integrating them within security platforms
Supporting the establishment, enhancement, and continual improvement of an integrated set of correlation rules, alerts, searches, reports, and responses
Conduct ongoing and regular Cyber Security capability assessments and reviews including people, process and technologies; ensuring that all security capabilities and tools are operating effectively
Ensure security capabilities are reviewed and compliant within defined risk levels while considering hardware/software currency, performance/availability, security and information
Identify and document any risks, issues or critical success factors that may require immediate action
Define, implement, and communicate metrics driven scorecards to measure the effectiveness of Cyber Security Operations
Ensure that all Cyber Security related capabilities and solutions are operating effectively
Participate in the Computer Security Incident Response process
Responsible for identifying continuous security capability improvements that will help protect our computing environments
Capture / analyze network traffic for indications of compromise
Identify and collect actionable intelligence regarding ongoing information security threats
Review log-based data, both in raw form and utilizing SIEM or aggregation tools
Employ best practices and forensically sound principals such as evidence handling and chain of custody
Establish timelines and patterns of activity based on multiple data sources
Manage effective liaison relationships with other IS groups, vendors, and others
Serve as a mentor and team leader
Candidates must be a US Citizen and have the ability to obtain a U.S. government security clearance
Minimum of 8-10 years of Cyber Security and/or security engineering experience
3+ years security engineering / administration experience
2+ years SIEM experience desired
Technical skills proficiency in the following areas: security information event management, network communication using TCP/IP protocols, basic system administration, basic understanding of malware (malware communication, installation, malware types), intermediate knowledge of computer network defense operations (proxy, firewall, IDS/IPS, router/switch, open source information collection
Self-starter with the ability to proactively engage and develop relationships with subject matter experts and analyst counterparts
Recent experience (last 3 years) performing NETFLOW or PCAP analysis using common analysis tools (Wireshark, etc)
Ability to apply formal intelligence analysis methods, develop hypothesis, prove/disprove relationships, always ask why, defend your analysis, and apply attribution to cyber threat activity. Proven project management experience, including developing project plans, schedules and budgets for moderate scale projects
Experience with compliance requirements from DOD, NASA, NIST, SANS, OWASP desired
Travel requirement of up to 15%
Expert level experience in SIEM administration (ie ArcSight, QRadar or EnVision)
Experience applying Kill Chain analysis, Cyber Intelligence
Certifications (any): CISSP, CEH, Security+, SANS certification(s), Network+, CCNA
Skilled level of knowledge of common attack vectors and penetration techniques
Solid working knowledge of networking technology and tools, firewalls, proxies, IDS/IPS, encryption, and protocols
Advanced Data Visualization proficiency leveraging COTS tools
Skilled level of knowledge about malware analysis (reverse engineering)
Skilled level of knowledge to research, compile, and report actionable intelligence threats
Excellent oral and written communication and presentation skills
Excellent teamwork skills and the ability to successfully interface with other IT Groups
Demonstrated advance skills in conducting forensic analysis of digital evidence, network traffic, managing event analysis/correlation and related incident investigations
Process control design and testing methods
Metrics development and reporting
System configuration and architecture
Demonstrated strong working knowledge of various information technologies and industry best practices
Demonstrated ability to take initiative and accountability for achieving results

Security Engineer / Senior Security Engineer Resume Examples & Samples

Working autonomously, design, implement, and maintain the security and monitoring infrastructure operated by the Cybersecurity Directorate
Independently research and make technical recommendations regarding NCSA’s cybersecurity policies, practices, system development, architecture and posture
Using independent judgment, triage and resolve automated security alerts and any security tickets
Perform system administration functions of the security and monitoring infrastructure operated by the Cybersecurity Division, including maintaining software and operating systems
Make technical recommendations regarding NCSA’s cybersecurity policies, practices, system development, architecture and posture
Help ensure the security and integrity of NCSA systems according to NCSA policies and procedures by providing expertise to system operators on securely configuring systems and performing regular audits
Work independently to detect, investigate, mitigate and remediate digital intrusions and other incidents with cyber components
Provide on-call and off-hours support as assigned; job duties may require working schedules that are outside of normal business hours
Serve in a supervisory role to junior-level Security Engineers, including guiding and assisting with project tasks, and assigning some project tasks
May supervise students and interns
Bachelor's degree required, preferably in computer science or related field. Alternative baccalaureate degree fields will be considered/accepted if accompanied by equivalent experience (depending on nature and depth of experience as it relates to current NCSA technologies)
6 or more months of classroom, volunteer, or internship experience installing, configuring, and administering UNIX-like servers
6 or more months of classroom, volunteer, or internship experience installing and analyzing computer event logs (e.g. syslog) and network traces (e.g., pcap)
1 year or more of experience using Shell programming and/or a scripting language in classroom, volunteering, or on the job
One or more years work experience in the area of computer security, Linux system administration, and/or network administration
Experience working in a high performance data center administering multiple servers (virtual and physical) with a centralized configuration management system (e.g., Puppet and git)
Experience giving presentations to a technical audience
Proficient programming experience in a non-scripting language, outside the classroom, on a team, with git or another version control system
Two or more years of professional experience installing, configuring, and administering UNIX-like servers using a centralized configuration management system (e.g., Puppet & Git)
Two or more years of professional experience in the area of computer/network security
Two or more years of professional experience using shell programming and/or a scripting language
Experience working in a high performance data center
Enterprise network administration or configuration experience
Security certifications from SANS or similar organizations
Experience giving presentations to a technical audience, in particular, security training and education

Senior Security Engineer Resume Examples & Samples

Manage client networks and security infrastructure from the Security Operations Centre
Accepting, managing and updating service requests to ensure contracted service levels are met and escalating issues affecting delivery of service to management
Meeting agreed SLA’s by leading a team of professional services employees in the provision of high level security support to our clients
Understanding the complexity of escalated technical problems in order to properly allocate resources to developing and implementing solutions in the most cost effective manner
Understanding and managing the requirements of being part of a 24x7 on-call operation, including but not limited to, shift hand-over, operational advice, guidance, support and escalation
Execution of the Managed Services business plan and strategies relating to Engineering
Monitoring and maintaining policies and procedures
Required tertiary qualifications
Desirable Industry / Vendor certifications such as
Intel Security Certified Product Specialist—NSP,
Cisco Firepower Next-Generation IPS (SSFIPS),
Sourcefire certified professional (SFCP),
IBM Security Network Intrusion Prevention,
HP TippingPoint Certified Security Expert (TCSE),
Imperva Certified SecureSphere Professional (ICSSP),
F5-CTS,ASM (303),
Cisco Certified Internetwork Expert (CCIE),
Palo Alto Networks Certified Network Security Engineer (PCNSE), Check Point Certified Security Expert (CCSE),
Strong background in Strong background in McAfee NSP IPS, Cisco FirePower or Sourcefire IPS, HP Tipping Point, FortiGate IPS, IBM Proventia, Juniper IDP, Imperva WAF, Incapsula, F5 BIG-IP Application Security Manager(ASM), Snort etc

Senior Security Engineer Resume Examples & Samples

Cisco Certified Internetwork Expert (CCIE), Palo Alto Networks Certified Network Security Engineer (PCNSE), Check Point Certified Security Expert (CCSE), Certified Cloud Security Professional (CCSP), Juniper Networks Certified Expert Security (JNCIE-SEC),
Fortinet Network Security Expert (NSE7/8), F5 Certified Technology Specialist, FireEye System Engineer (FSE), Blue Coat Certified Proxy Professional (BCCPP), Proofpoint Certified Administrator (PCA),
Intel Security Certified Product Specialist—NSP, Sourcefire certified professional (SFCP), Cisco Firepower Next-Generation IPS (SSFIPS),
Certified Information Systems Security Professional (CISSP), etc
Systems Security Professional (CISSP)
Strong background in Check Point (UTM), Palo Alto (UTM), Fortinet (UTM), F5 (LTM, GTM, ASM and APM), Cisco (Firewall, FirePower IPS, IPSEC VPN, SSL VPN)
Highly Desirable
Experience with Proofpoint (Email), Bluecoat (Proxy/Reverse Proxy)
Experience with Imperva WAF, McAfee NSP IPS, Cisco FirePower IPS or Sourcefire IPS, HP Tipping Point, Arbor, FireEye, Carbon Black, Juniper (IDP), RSA, Tufin etc
Good understanding of vulnerabilities, threats, risks, payload analysis, raw packet analysis, compliance and other aspects or security governance
Experience working at the TAC or a MSSP

Senior Security Engineer Resume Examples & Samples

Understand customer requirements from a technical and business perspectives
Work with the customer to define projects designs and provide recommendations
Write implementation steps which will be used by the operation team
Support the operation team during migrations and configurations
Participate in solving technical issues in collaboration with the support team
Maintain and update customer documentation
Degree in Engineering or equivalent training with professional experience
Strong analytical thinking and knowledge of procedures
Knowledge of routing and switching principles (CCNA level)
Required expert level product knowledge: (minimum 2)

Senior Security Engineer Resume Examples & Samples

REQUIRED: Strong background in Check Point (UTM), Palo Alto (UTM), Fortinet (UTM), F5 (LTM, GTM, ASM and APM), Cisco (Firewall, FirePower IPS, IPSEC VPN, SSL VPN)
Highly Desirable: Experience with Imperva WAF, McAfee NSP IPS, Cisco FirePower IPS or Sourcefire IPS, HP Tipping Point, Arbor, FireEye, Carbon Black, Juniper (IDP), RSA, Tufin, AlgoSec
Desirable: Experience with Juniper (Netscreen/SRX), Proofpoint (Email), Iron Port (Web, Email Proxy), Bluecoat (Proxy/Reverse Proxy), Zscaler, Barracuda,
Desirable: Experience with designing and implementing WAF (Web Application Firewall) policies, IDS/IPS policies and IPS/WAF custom Signature rule writing
Desirable: Good understanding of vulnerabilities, threats, risks, payload analysis, raw packet analysis, compliance and other aspects or security governance
Desirable: Experience working at the TAC or a MSSP

Senior Security Engineer Resume Examples & Samples

Manage, own and coordinate technical resolution of faults
Manage client expectations and escalate critical situations to appropriate levels of management
Accept, manage and update service requests to ensure contracted service levels are met and escalating issues affecting delivery of service to management
Meet agreed SLA’s by leading a team of professional services employees in the provision of high level security support to our clients
Understand the complexity of escalated technical problems in order to properly allocate resources to developing and implementing solutions in the most cost effective manner
Understand and manage the requirements of being part of a 24x7 on-call operation, including but not limited to, shift hand-over, operational advice, guidance, support and escalation
Monitor and maintain policies and procedures
A relevant tertiary qualification with desirable Industry / Vendor certifications such as: CCIE, CCSP, CCSE, JNCIS, NSE 8, SSFIPS, ICSSP, PCNSE, F5 Certified Technology Specialist etc
At least 8 years of network security experience working with enterprise clients
A strong background in Check Point (UTM), Palo Alto (UTM), Fortinet (UTM), F5 (LTM, GTM, ASM and APM), Cisco (Firewall, FirePower IPS, IPSEC VPN, SSL VPN)
Experience with Imperva WAF, McAfee NSP IPS, Cisco FirePower IPS or Sourcefire IPS, HP Tipping Point, Arbor, FireEye, Carbon Black, Juniper (IDP), RSA, Tufin, AlgoSec would be advantageous
Experience with Juniper (Netscreen/SRX), Proofpoint (Email), Iron Port (Web, Email Proxy), Bluecoat (Proxy/Reverse Proxy), Zscaler, Barracuda would be advantageous
Experience with designing and implementing WAF (Web Application Firewall) policies, IDS/IPS policies and IPS/WAF custom Signature rule writing
A good understanding of vulnerabilities, threats, risks, payload analysis, raw packet analysis, compliance and other aspects or security governance
Experience working at the TAC or a MSSP would be advantageous

Senior Security Engineer Resume Examples & Samples

Manage customer networks and security infrastructure from the Security Operations Centre
Desirable: Experience with Juniper (Netscreen/SRX)Iron Port (Web, Email Proxy), McAfee IPS/Epo & F5 (LTM, ASM,APM)
Desirable: Experience with Juniper (IDP), RSA, Sourcefire, Fortinet, Tipping Point, Imperva, Tufin
Desirable: Good understanding of vulnerabilities, threats, risks, compliance and other aspects or security governance

Senior Security Engineer Resume Examples & Samples

Responsible for operation of tools that will identify, prevent, contain or mitigate technical security risks that exist in the RL IT Infrastructure o Run penetration test processes and protocols against high-risk areas of the IT environment o Build risk assessment models for new/existing IT infrastructure components o Document areas of significant exposure to the IT environment and recommend solutions
Create/run scripts and programs used to conduct and/or manage digital forensic investigations o Build response programs for cyber incidents o Coordinate with Loss Prevention on cyber investigation models
Manager the infrastructure (manager, client, reporting engines, etc) for a variety of security tools, including
Experience with advanced forensic and security analytic tools
Experience with performing forensic investigations and participation in eDiscovery activities
Cyber-crime related law enforcement experience
3-5+ years of Network and/or Host Security experience
Strong expertise in security configuration of various operating systems, including all relevant versions of Windows, Unix and Linux
Strong expertise in log data analysis
Strong expertise in data extraction and parsing scripting (shell, pearl, macros, excel, etc)
Strong expertise in configuring and utilizing vulnerability assessment scanners (ex: Foundstone, Nessus, ISS, etc)
Strong expertise in the use of host security configuration assessment tools (ex: Policy Auditor, ESM, etc)
Strong expertise in conducting digital forensics investigations
Proven system problem solving skills and experience resolving complex business issues
Strong knowledge in network security architecture
Experience working with risk tracking tools

Senior Security Engineer Resume Examples & Samples

Minimum of 3 years Information Systems Security experience or 5 years of Information Technology, system administration, and/or networking preferred
Implement, and maintain security infrastructure
Maintain appropriate event logging for detecting and reporting of key security events
Create and maintain technical system documentation
Provide security input into technical efforts such as system, network, application and database design
Knowledge and understanding of security systems, risks, concepts and terminology
Hands on experience with the security aspects of critical technologies (e.g. Linux, UNIX, MVS, Windows, Web, LDAP, DBMS, Network, Firewalls, IDS/IPS, Authentication, Authorization, DNS, Vulnerability Assessment Tools)
A basic understanding of project management and system development lifecycle methodologies is preferred
Comprehension of basic scripting languages (e.g. shell, PERL, Visual Basic, PHP, Expect)
Ability to diagnose security, network, and system issues

Senior Security Engineer Resume Examples & Samples

Collaborate with stakeholders on drafting and implementing security policies and controls
Draft security requirements that allow development of tools which align strategic visions with pragmatic execution
Mentor, develop and grow next generation of security team
Design and implement security best practices in AWS
Partner with various teams to identify, plan, and implement security best practices in their respective areas
Implement and manage identity management and distribution systems for SSH keys
Proactively identity potential security issues and provide mitigation strategies
Develop and implement security scripts and tools to streamline routine security processes
Expert level of experience with bash and Python
Proven track record of managing security within AWS
Thorough understanding of Linux filesystems
Deep understanding of Internet protocols including TCP/IP and HTTP
Knowledge of Operating System internals (memory management, scheduling, TCP/IP stack)

Senior Security Engineer Resume Examples & Samples

Crate Tanium content for use on Windows, Linux, AIX systems
Work with malware and incident response teams to identify malicious incidents with network
Create reports for presentation to executive leadership
Work independently to augment the Tanium infrastructure to respond to emerging threats
Ability to utilize existing infrastructure for Tanium
Work with STIC Leadership to develop roadmaps for Tanium Components
Works with STIC on creating and maturing existing Tanium Content
Acts as Tanium SME in support for incidents
Generate documentation and guides for use of Tanium for STIC/Forensic Analyst use
Identifies gaps in processes & procedures
Identifies security gaps within enterprise
Responsible for being on call

Senior Security Engineer Resume Examples & Samples

Hands-on experience with security tools such as, McAfee WebGateway, McAfee AV, SEP, Tripwire, and other like services
5 years working within Information Technology and 3 years specifically in Information Security
20%-Collaborate with others to understand processes, procedures, applications, technologies
20%-Drive application and technology compliance with corporate and regulatory policies/standards & industry best practices

Senior Security Engineer Resume Examples & Samples

Next Generation Firewall experience: concepts, design, and administration
SIEM solution experience: incident handling and responding at the host level, troubleshooting
Vulnerability management concepts and administration: scanning environment, risk assessments, thread analysis

Senior Security Engineer Resume Examples & Samples

Protect Go Daddy infrastructure by containing and eradicating adversaries through
Historical trending analysis of security event data
Innovate through constant improvement in rules, tools, knowledge, and automation
Collaborate with Go Daddy teams to continue to improve our security posture and be upstanding citizens within the security community
Perform threat research of adversaries, such as attacker campaign analysis, frequency and trending analysis, predictive attacker/victim relationship models using Diamond Model, analysis of external sources of threat information for validity in our environment
Perform static/dynamic analysis of binaries
Coordinate response efforts to threats across the industry
OSI Model
Cyber Kill Chain
Windows
Threat Landscape
Security coding practices
OO analysis and design and design patterns
Utilize a programming language (Python, Go, Java etc.)
Solve complex problems by implementing solutions using the most appropriate programming languages, best practices, and/or tools specific to technology platform and tier (front-end, middle, database)
Conduct security investigations
Troubleshoot

Senior Security Engineer Resume Examples & Samples

Assesses the organization’s network security posture through the use of automated tools and manual techniques to identify and verify common security vulnerabilities
Uses creative approaches to identify vulnerabilities that are commonly missed in security assessments
Exploits vulnerabilities and identifies specific, meaningful risks to ACI based on industry and business focused weaknesses to attempt to compromise client environments
Uses social engineering techniques to obtain sensitive information, network access and physical access to client sites
OSCP, OSCE, GIAC certifications strongly preferred
Knowledge of Incident, Problem and Change Management programs

Senior Security Engineer Resume Examples & Samples

Engineer, implement and monitor security measures for the protection of computer systems, networks and data
Experience in implementing and maintaining network or security systems
Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, SIEM / log management, content filtering
Experience with formal project management processes
BS degree in Computer Science or related field or relevant work experience

Senior Security Engineer Resume Examples & Samples

Able to articulate technical details and risks to business leaders
Enjoys multitasking, organizing and prioritizing complex projects to meet deadlines
Collaborate with other motivated colleagues working towards a similar goal

Senior Security Engineer Resume Examples & Samples

Maintain knowledge of threat landscape by monitoring OSINT and related sources
Develop Intrusion Detection/Intrusion Prevention (IDS/IPS) signatures
Develop technical documentation as needed
Security training and outreach to both internal development teams and the greater security community

100

Senior Security Engineer Resume Examples & Samples

Define the technical requirements and scope for all technical and physical security systems to be delivered within the programme of work to ensure a site wide fully integrated security system is designed, approved and accepted
Ensure the EPR security design and specifications are interpreted correctly and new designs are up to date, fit for purpose and meet regulations and requirements
Ensure detailed documented records are created and maintained to ensure future clarity of the process and outcomes
Support the delivery of the programme activities to ensure they are delivered safely, on time, to budget, meeting business & technical requirements
Inform on the progress of the programme - track progress against milestones, deadlines, and provide key stakeholders with reports on these matters
Anticipate, manage and resolve issues within the programme. Identify risks and facilitate the resolution of all issues raised, develop, and update the programme and escalate any issues to the Engineering Manager
Interface with other programmes to ensure a high-level view of how the total project is progressing and to identify and adopt the use of best practice
Establish and maintain effective working relationships with all project team members
Degree qualified or equivalent experience in electrical or electronics engineering
Experience in the management of design of Security System in for Oil & Gas Projects
Experience in specifying and designing complete technical and physical security solutions
Solid experience on large engineering / infrastructure projects
Track record of providing innovative security solutions within a technically complex and dynamic environment whilst ensuring high levels of safety, security and environmental responsibility, ideally within the Oil & Gas or Energy sector
Experience of successfully engaging senior management and diverse groups of stakeholders
Experience of developing technical solutions, with design decisions validated through design interface
Excellent presentation, influencing and facilitation skills
Knowledge and/or practitioner of Project and Programme Management
Able to demonstrate a technical knowledge of current electronic security management systems and current electronic security systems
Knowledge and/or experience of the Saudi Aramco Projects security equipment approvals process
Minimum 10 plus years of experience in similar discipline in Oil & Gas Project esply in Aramco Projects or GCC region Projects

101

Senior Security Engineer Resume Examples & Samples

Troubleshooting connectivity issues between the program unique environments and customer networks or other ancillary connection such as analyst VPN sessions
Troubleshooting operational issues with the VMware Horizon infrastructure and Check Point firewalls
Develop systems with programmers to automate potential workflows with VSOC analysts to improve efficiency
Work with different internal groups to identify new requirements and help design a solution for meeting those new requirements
6 years of technical working experience working experience
3 – 5 years of experience in Information Security Engineering
Well-rounded technical background in IT and security products, understanding of infrastructure development from scratch, and ability to communicate ideas in an effective manner as it ties into existing infrastructure
Knowledge of VMware Horizon View and Check Point firewalls
Basic Linux understanding
Self-starter, self-driven, and critical thinker

102

Senior Security Engineer Resume Examples & Samples

Excellent working knowledge and understanding of enterprise hypervisors (VMware vSphere, and Hyper-V)
Excellent working knowledge and understanding of enterprise security products and applications such as Trend Micro, Tenable Nessus, F5, ForeScout, etc
Good understanding of Cisco IOS (switch, router, firewall, wireless)
Good understanding of Dell Sonicwall and switches
Excellent working knowledge and understanding of IP networking protocols such as DNS, DHCP, & TCP
Good understanding of networking technology including switching (LAN, WLAN) and IP routing
Knowledge of complex computer system and knowledge of security measures at a large university, hospital or research organization is desirable

103

Senior Security Engineer Resume Examples & Samples

Own the security of the technology stack supporting our SaaS applications, including VMs, Docker containers, OS configuration, and networking
Create secure configuration templates and network architecture standards, for our SaaS offering as well as our corporate IT infrastructure
Perform threat modeling to identify weaknesses, and provide remediation guidance
Design and build security into our next generation software-defined network, for both on-prem and cloud environments
Periodically and proactively assess system and network alignment with established baselines and standards
Minimum of 5+ years of experience in technical infrastructure security related function
Deep knowledge of the security aspects of microservices and associated technologies, including Docker configuration, and distributed file systems (e.g., Ceph, NFS)
Deep knowledge of authentication protocols, applied cryptography, PKI, and TLS
Deep knowledge and experience in Unix, Linux and OS X
Working knowledge of directory and distributed authentication/authorization technologies (OpenLDAP, Active Directory, RADIUS, SAML, OAuth)
Strong scripting skills (Perl/Python/Shell) and ability to write code for automation
Experience in a technical security role with hands on experience in design and implementation of network security, operating system security, vulnerability assessment
Experience with customizing open source tools for enterprise deployment
Experience with audits and certifications to regulations and standards like PCI DSS, SOC 2, ISO 27001:27002

104

Senior Security Engineer Resume Examples & Samples

Strong analytical skills and cross functional knowledge across multiple security disciplines
Strong knowledge and working experience with databases and data warehouse technologies and solutions
Familiar with interpreting the log output of a wide selection of network and host device classes (HIDS, NIDS, Firewalls, Proxies, Routers, Switches, WAF's, Servers, Desktop Controls, Endpoint Protection, etc.)
Functional experience with text and data representation and manipulation (XML, HTML, Regular Expressions, Wiki Markup, SQL)
System-administrator functional experience with Linux/Unix and Windows server operating systems
Packet-level behavioral familiarity with most major TCP/IP application protocols ( DNS, SMTP, HTTP, BGP, LDAP, IMAP, SSH, FTP, KRB5, DHCP, CIFS)
Working experience with systems automation in a major scripting language (Perl, Python, etc.)
Project/program management experience
Must possess a high degree of integrity, be trustworthy, and have the ability to work independently
Language -English ; any other European language is an advantage

105

Senior Security Engineer Resume Examples & Samples

Oracle Identity systems (11G) – OIM, OAM, OAAM
Cloud-based IAM (SSO)
Must have experience in requirements analysis, design and implementation of Oracle Identity and Access Governance products
System upgrades and installation
Implementation of IAM best practices
OIM: Develop and deploy DBAT, AD, EBS and custom connectors
OAM: Custom Authentication Schemes, configuration and fine tuning of proxy servers, WNA and Kerberos configuration, Access Gate configuration and SSO integration with custom and commercial off-the-shelf products; and configure SAML provisioning
Java and RESTful development skill are highly desired
Administration of enterprise Oracle IAM suite of products consisting of multiple instances, managing replication, schema administration, troubleshooting performance issues
Administration of enterprise Cloud-based IAM SSO solution, integrating applications, troubleshooting performance issues
Configure Identity Federations with external business partners and vendors
Configure Authentication and Authorization rules for new and existing applications
Provide day-to-day developer support in Java including analysis, debugging and maintenance
Responsible for designing and executing design changes and enhancements to the current IAM technology stack
A comprehensive understanding of IAM technologies, Industry standards and current regulatory requirements for reporting SOX controls and certifications
Designing and developing automated provisioning and reconciliation of resources
8+ years of IT experience in developing, implementing or architecting information systems
5+ years technical architecture experience integrating identity and access management software
5+ years hands on experience/administration of Oracle Identity and Access Management suite (10/11G): OIM, OAM, OAAM
5+ Provisioning experience
4+ years RBAC experience
Experience with at least the following development environments/languages: J2EE, Java, JavaScript, SQL
Experience with Oracle WebLogic and other open source application serves like Tomcat
Working knowledge of High Availability solutions (e.g. load balancing, failover, etc.)
Knowledge in Directory Services (AD, OID, OUD, OVD)
Familiarity with major operating systems such as Microsoft Windows and Unix
Experience with SAML authentication and authorization
A good understanding of TCP/IP networks, HTTP, and DNS technologies
Cloud-based IAM SSO experience
UNIX commands
Bachelor’s degree in Computer Science or related field or equivalent combination of industry related professional experience and education
Strong potential for growth and acceptance of additional responsibilities
Demonstrated ability to write report segments and to participate in presentations
Ability to work as a member of a team and independently
Open to travel requirements

106

Senior Security Engineer Resume Examples & Samples

You have 3 or more years of experience with administering firewalls and leveraging working knowledge of system administration for Mainframe, Unix, Middleware, CISCO, Linux and Microsoft operating systems
You have previously been responsible for security information / event manager configuration
You have MS Office professional tools suite experience
Database security/hardening
You have PERL and/or shell scripting knowledge

107

Senior Security Engineer Resume Examples & Samples

Perform inventory activities for industrial power systems and SCADA systems
Ensure NERC-CIP compliance for the industrial power systems and SCADA systems, to include development and validation of documentation artifacts in support of NERC-CIP compliance
Identify potential threats and respond to reported security violations
Determine causes of security breaches and research, recommend and implement changes to procedures to protect data from future violations
Assist in educating users on security procedures

108

Senior Security Engineer Resume Examples & Samples

Research and recommend solutions that meet security standards while ensuring functionality for business continuity
Leads enterprise-wide definition, establishment, and maintenance of data security-related infrastructure, applications, and processes
Develop security test scenarios for unit, process, function, integration, and acceptance testing
Design and develop integration schema and linkage for multi-platform business and technological solutions
Evaluates the security of new technologies and assist with the plan to integrate them into the company environment
Recommend best practices for security controls without hindering functionality
Define the minimum security configuration for all IT systems
Evaluates new and proposed security systems and technologies
Reviews, develops, test, and implements security plans, products, and control techniques
Translates security standards to project teams
Assist with vulnerability and intrusion assessments
Develops guidelines for the usage, control, maintenance, and auditability of information and computer resources
Fill the role of security architect on small to medium size project engagements with assistance from the lead security architect
5+ years

109

Senior Security Engineer Resume Examples & Samples

Escalated incident research and evaluation
Complicated customers change request
Emergency change requests (those changes that need to be put into effect in fewer than six hours from notification)
Support for Lifecycle Engineering to verify continuity of quality service through the evolution of Customer’s security architecture as needed
Recurring upgrades and projects
Greater ownership of tickets, working them fully towards resolution/ leading technical troubleshooting calls with customers
Liaise with senior management and other Verizon teams
Problem management, root cause analysis investigations
Assist the Verizon SOC on work requests related to MSS and security incident
Work with customers and vendor partners to troubleshoot and resolve problems associated with those security products
Weekend on-call rotation every 5 – 6 weeks
5+ year’s of experience as a Security Engineer with an expert knowledge of 5 or more of the following products: Checkpoint firewalls; Juniper SSG, ISG, SRX, IDP firewalls; PulseSecure SA; Cisco ASA firewalls, FirePower, FWSM; Fortinet Fortigate, FortiManager; Palo Alto firewalls, Panorama; McAfee Web/e-mail gateway, Arcsight; Splunk; Tippingpoint IPS, Sourcefire IPS; Cisco IPS; Bluecoat Proxy; F5 LTM, ASM, GTM; Imperva SecureSphere WAF
Demands familiarity with security engineering principles, theories, concepts and technologies as well as applied knowledge of established procedures, policies and practices
Candidate must have a progressive experience with IPS and Firewall technologies with a focus on industry trends and technology advancements and how they relate to Managed Security Services
High level of initiative, drive, motivation, leadership, problem solving, communication, collaboration, creativity, customer service, quality awareness, and time management skills
Expert technical skills in managed security devices
Exceptional problem solving skills
Ability to drive process improvements and identify gaps
Proactive in engaging with customers and other internal teams
Develops resolutions to complex problems that require the frequent use of creativity
Bachelor’s Degree in computer science, security or other technical field
Security Certifications CCSE, CCSP, JNCIP, CISSP

110

Senior Security Engineer Resume Examples & Samples

Federal Top Secret Security Clearance
Security Certifications: CISSP, CISA, CISM
Network Certifications: CCNA, CCNP
Checkpoint Certifications: CCSA or CCSE
ITIL certification

111

Senior Security Engineer Resume Examples & Samples

Assist in the development of technology security requirements and standards aligned to business strategy, security policies and objectives, and technology development and operations processes
Provide evaluation, analysis, development and implementation of IT Security systems/technologies across all security domains, including the necessary documentation to ensure manageability of the systems post implementation
Enforce compliance with set controls, standards, policies and procedures while carrying out IT activities
Implement penetration testing along with ethical hacking. Suggest and execute IT technologies, strategies and policies to guard company's and customer’s information assets
Implement security program plans from the strategic unit of the security organization
Support and provide consultancy for audit compliance actions. Implement periodic, on-demand project audits plus vulnerability analysis
Perform security vulnerability assessments to identify technical weaknesses; work with IT operations and software development staff to create mitigation and/or remediation plans, and manage regular and ad-hoc reporting to appropriate business and technology risk owners
Develop security processes, procedures and performance metrics; deliver regular and ad-hoc security reports and briefings to management and technical audiences, as needed
Analyze system logs/interact with external SOC to identify suspicious activities and take appropriate action
Coordinate with different groups to ensure that all application, network and OS environments are patched on a regular basis
Serve as an information security engineering subject matter expert; deliver guidance and awareness of security standards and requirements in cross-functional technology project settings and through development and delivery of formal and informal information security training
6+ years of combined hands-on experience in technical security engineering, research and/or consulting
Demonstrated ability to build and operate technical security solutions at a global enterprise level
Strong understanding of enterprise, network, system/endpoint, and application-level security issues and risks
Strong understanding of TCP/IP networking; comfort working with Linux and Microsoft Windows-based system platforms
Demonstrated experience with the following types of security technologies: distributed denial of service (DDoS) tools and services, network access control systems, network and application firewalls, IDS/IPS systems, data loss prevention, web proxy, vulnerability assessment platforms and tools, antivirus and malware prevention and analysis tools, and log management, correlation and security information and event management platforms and tools
Experience with automating and scripting tasks in engineering or security incident handling scenarios
4-year degree or job-related certification required with advanced degree or additional certification preferred. (e.g. CISSP, CISA)
Knowledge of IS27001 and similar standards is preferred

112

Senior Security Engineer Resume Examples & Samples

Conduct security operations necessary to maintain the confidentiality, availability, and integrity of enterprise data and information systems
Provide excellent customer service for internal and external customers in support of security initiatives, incident response, and support
Maintenance of security tools and technologies throughout the enterprise environment
Evaluate, design, and implement security related solutions, adhering to established change control processes
Provide technical security planning, implementation, configuration, support and troubleshooting services on all security technologies
Provide accurate, clear, and concise documentation of system requirements, specifications, and final builds
Perform all necessary functions associated with the implementation and integration of security tools and platforms into the enterprise environment
Assist with the development, implementation, and administration of information security policies, standards, and procedures, adhering to industry best practices
Assist in defining the security strategy and integrating regulatory compliance requirements (e.g., PCI, GLBA) into the organizational security roadmap
Assist in ensuring that the corporate IT environment is secure and complies with all internal and external audit requirements
Implement and maintain cryptographic controls (e.g. data at rest, data in transit) in line with security requirements
Identify potential security risks, and define and document remediation options or mitigating controls
Review and approve submitted application and systems change requests for security compliance
Participate in 24x7 on-call rotation
Perform related duties as requested
5+ years of experience with managing security controls, to include defining policies and administering devices such as Cisco and Paloaltonetworks firewalls, IDS/IPS platforms, DLP devices, e-mail/web filtering solutions
6 + years of technical experience working with security solutions and conducting security operations
6+ years of network security experience and reviewing security tools and solutions and making recommendations on utilization and strategy
6 + years of experience with network protocols, data flows and attacks within an IP environment
5+ years of experience in building configurations for security devices and building an automated process to support large-scale deployment
Extensive knowledge and experience with security software, firewalls, intrusion detection systems and other security systems and network monitoring
Extensive hands-on technical knowledge of network systems, protocols, and standards such as Ethernet, LAN, WAN and TCP/IP
2+ years programming/scripting experience – one or more of: C,C++, Java, Perl, PHP, Python, shell

113

Senior Security Engineer Resume Examples & Samples

You have at least 3 years of experience in a similar role
You have an excellent technical knowledge of
Security features (802.1X, VPN, IPS/IDS, Wifi, PKI, SSL, …)
Checkpoint firewalls (GAIA 77.30)
Fortinet Fortigate/Fortimanager/FortiAnalyser (5.x)
CISCO ASA firewalls
Cisco switches and routers
Security of Windows server 2003-2012 environment
Security testing
You have excellent knowledge of Networking Protocols (TCP/IP, SNMP, DNS, DHCP, ISCSI, etc.),
OSI layer 1-7
Troubleshooting tools (Wireshark, commandlinetools, …)
Endpoint security (antivirus, encryption, certificates)
Citrix (XenApp, Netscaler, …)
Netflow, Nagios, SNMP, Sysslog
Nessus vulnerability scanner
MS SQL
Vmware basics
You are strongly experienced in design, implementation, maintenance and troubleshooting of network and security equipment
You have analytical and creative problem solving skills for design, creation and testing of networks
You have excellent communication skills to communicate system proposals to IT-management and customers. But also to provide systems diagnoses and resolution for current systems
You have the ability to integrate moderately complex hardware and software systems
You have developed coaching skills to assist less experienced colleagues
You have the ability to work independently and as part of a team
You are flexible and willing to work outside business hours if necessary
You are fluent in English. A good level of French, Dutch or German would be a plus
Work location: preferable 3-4 days Beerse ( Belgium) , 1-2 day flexible (BE-NL)

114

Senior Security Engineer Resume Examples & Samples

Ensure that all systems, applications, endpoints, and networks have appropriate and adequate security controls in place, and create structures to ensure the ongoing maintenance and effectiveness of these controls
Provide leadership and security expertise to project design, development, testing and deployment teams to ensure that all applications meet security requirements and are coded in a secure manner
Gain widespread support and compliance with information security requirements & standards. Regularly monitor compliance through log reviews; respond to intrusion alerts, etc
Serve as the technical lead/technical subject matter expert on the Incident Response Team in responding to various security incidents such as denial of service attacks, virus/worm infestations, security breaches and questionable internal activities
Working with IT Leadership and the Security Architecture group, research, recommend, and evaluate commercial information security products and services to determine which of these should be adopted by or tested by the company
Provide special technical guidance and recommendations to co-workers about the risks and control measures associated with new and emerging information system technologies as needed
Participate as the lead technical subject matter expert in periodic information systems risk assessments and code reviews, including those of new or significantly enhanced business applications and their underlying supporting infrastructures
Assist in the preparation and periodic update of information security policies, architectures, standards, reports and other technical requirements documents needed to enhance security
Assume leadership roles in the development of detailed proposals and plans for new information security systems that would reduce operational risk, augment the capabilities or enable new capabilities for the company
Assist with the research, evaluation, selection, installation, configuration and adoption of automated tools that enforce or monitor the compliance with information security policies, procedures, standards, and similar information security requirements
Identify and determine causes of security violations and verify/assist in the corrective actions to assure data and application security
Interact with internal and external auditors as needed to ensure regulatory and policy compliance

115

Senior Security Engineer Resume Examples & Samples

Design, Deploy, and configure Data Loss Prevention (DLP) technology
Assist with resolution of operational product deployment, implementation, and functional issues
Engage with business contacts and IT to identify sensitive data and monitor for unauthorized disclosures
Evaluating, testing, and planning the deployments of new data protection technologies
Interpret and summarize technical information for presentation to non-technical business contacts
Develop and improve processes and procedures for data protection activities
Requires on-call and off-hours work
At least 2 years of experience operating data loss prevention products ( McAfee, Symantec, Verdasys, etc)
Familiarity with networks and enterprise architecture
Familiarity with encryption products
Understanding of data query tools and techniques (SQL, SIEM, Splunk, etc)
Strong familiarity with data classification concepts and processes
Experienced in a wide variety of technical solutions focused on data protection and cyber security
Experience with data loss prevention, encryption, document labeling and/or data discovery products
Minimum 3 years of experience in an information security discipline

116

Senior Security Engineer Resume Examples & Samples

Work within TSG and other departments within Bain to ensure secure, consistent delivery of resources and assets. This will be accomplished by actively participating in the development of the criteria for new projects across a variety of function areas, ensuring that security concerns are addressed at the beginning of any new project and that they continue to be included as projects develop and mature. As plans and process are implemented and supported by this role, it is the responsibility of the person in this position to properly manage the security related documentation and tracking. (“Practical, At Cause”)
Work with senior TSG management to evaluate projects, establish priorities and communicate timelines to deploy security technology solutions. Tests and implements appropriate security methods and control techniques to protect users and data. Develop, test and implement security plans, products and control techniques. Drive consensus among staff in the design and implementation of new or modified information security processes. (“Results Oriented”)
Investigate information security incidents as needed and apply knowledge in forensic investigations, data recovery and the handling of digital evidence. Participate in the incident management process, working with other staff to quickly contain incidents and develop proactive measures to mitigate the risk in the future
Tracks projects and reports status to appropriate management
Effectively communicate complex technical issues with sensitivity to diverse audiences
Create a climate and convey a sense of urgency to drive security risk remediation with aggressive deadlines. (“Honesty”)
Work with outside vendors and internal customers to deliver high quality and secure computing environment in a cost effective manner
Bring awareness and controls into the various IT functional areas for security management. (“One Team”)
Other duties as assigned or as responsibilities dictate
5+ years’ experience in IT infrastructure and/or security technologies including project management
Understanding of network based security technologies (Firewall, IPS, IDS, SIEM, and ACL)
Understanding of scripting languages for automation
Knowledge of application security issues and configuration best practices for Windows Operating Systems, Microsoft Server products (Exchange, IIS, Lync, SharePoint) and associated Office products, mobile devices
Understanding of Cloud based solutions (SaaS, PaaS and IaaS service delivery models) to ensure solutions meet the security needs of stakeholders
Ability to work independently with minimal oversight on complex system administration tasks. Strong hands-on technical skills and background (including knowledge of Operating Systems and Network Devices). Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts. In-depth knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls including risk assessment methods and technologies
Knowledge of security policies, regulations, compliance issues, and processes
Attention to detail and priority/time management

117

Senior Security Engineer Resume Examples & Samples

Provide superior customer service for internal and external customers in support of security initiatives, incident response, support, and maintenance of security tools and technologies throughout the enterprise environment
Analyze complex technology, data communications and/or operational problems and implement solutions
Design, configure, install and maintain server hardware/software and peripheral equipment
Collaborate with other IT, security, engineering team(s) and business teams to develop technical requirements for their systems or networks then implement solutions and provide technical support as required to meet these requirements
Seek and recommend alternative processes to improve service delivery to the organization in a secure and cost-effective manner

118

Senior Security Engineer Resume Examples & Samples

Monitor and define events for our Security Incident Event Management (SIEM) tool
M.S. Computer Science, Data Science, Intelligence, or Security Studies Credentials: GIAC, CISSP, or CFE Criminal investigative experience: FBI or Secret Service cybersquad or equivalent Civil investigative experience: fraud audits & investigations, due diligence
Senior experience within a Security Operations Center or equivalent experience performing computer security incident detection & response activities
Programming/scripting skills in at least one of following: Python, Ruby, Go
Ability to effectively identify, analyze, and malware
Understanding of TCP/IP and common protocols (HTTPS, SSH, FTP, etc)
Familiarity with OS X, Linux, and Windows systems

119

Senior Security Engineer Resume Examples & Samples

Scripting- Powershell scripting is ideal but open to different languages. Will be doing automating configurations for the network DNS sync holding. Creating black lists, white lists for network
Secure Authentication- Federated Authentication, SAML Oauth 2.0 Must have familiarity with some kind of single sign on
Active Directory- Need to know how it works inside and out. Group Policies, Security Policies. Creating security groups. Must monitor active directory

120

Senior Security Engineer Resume Examples & Samples

Blue Coat Certified Proxy Professional (BCCPP),
Proofpoint Certified Administrator (PCA),
Palo Alto Networks Certified Network Security Engineer (PCNSE), Check
Strong background in Blue Coat (Proxy/Reverse Proxy), Proofpoint Enterprise/Cloud
Experience with Check Point (UTM), Palo Alto (UTM), Fortinet (UTM), F5 (LTM, GTM, ASM and APM), Cisco (Firewall, FirePower IPS, IPSEC VPN, SSL VPN), Juniper firewall

121

Lead / Senior Security Engineer Resume Examples & Samples

NextGen Firewall with IDS/IPS and Web Application Firewall Expertise for on prem (Check Point, Palo Alto, Cisco Firepower) and cloud (Akamai Kona, AWS WAF, Arbor, Prolexic, etc)
SIEM (IBM Qradar, LogRythm, Splunk, ELK, ArcSight)
OWASP Code Security (Veracode, IBM AppScan)
Policy and Compliance (PCI, SOX, ISO, SANS, COBIT, SSAE)
Security Tools (Retina, Nessus, FireEye, Snort, Nexpose, McAfee, Symantec, Carbon Black, BlueCoat, NMap, Metasploit, Rapid7, ProofPoint, etc)
Enterprise security training programs, phishing assessments, and company outreach
Incident forensics and ediscovery
Bachelors in Computer Science or related Field
Position requires participation in a 24x7 on-call rotation and off hour's maintenance windows
LI-SV1

122

Senior Security Engineer Resume Examples & Samples

Responsible for day-to-day management of customer IP networks, Microsoft environments, and network security systems
Familiar with tools of the trade including IPS/IDS, application firewalls, SIEM, encryption appliances and Windows and UNIX OS
Researches, recommends and implements changes to procedures and systems to enhance information systems security
Performs security quality assurance testing. Implements firewall rules and assists in managing intrusion detection solutions, including distributing security alerts to responsible technology and business owners as well as responding to security alerts
Participates in the development of technical security standards for system platforms and performs platform vulnerability management
Develops technical specifications to satisfy customer requirements and meet security policy which represent efficient and effective solutions in relationship to operational costs, usability, and maintainability
Provide the management of IPS/IDS devices, application firewalls and encryption appliances
In depth knowledge of web application firewall administration and IPS/IDS administration
Security certifications: CISSP
MS certifications: MCSE, MCITP, etc
Experience with open source solutions is a plus
Knowledge of Banking and Credit Union technologies and processes is a plus

123

Senior Security Engineer Resume Examples & Samples

Good Hands on design , implementation and operational L3 experience with Symantec DLP, SIEM (Alert Logic & QRadar) , fireeye, malware bytes
Monitor and maintain Sophos Encryption at latest patch levels and any other infrastructure security related equipment and services and resolve escalated /critical issues with in the SLA
Hands on experience in designing and documenting HLD, LLD for network security transformation projects i.e Bit Locker, Safeguard and safe end
Knowledge and demonstrated experience required for endpoint deploying & troubleshooting , McAfee (HIPS & VSE) and endpoint encryption
Must have good understanding of NIST frame work
Identify and mitigate risk for ongoing operations to improve security and availability of infrastructure systems
Plan, schedule, upgrades of network security devices in a timely manner and maintain patch level to n-1 with minimum impact on the users of the affected networks & systems
Good understanding of Vulnerability Management. i.e Nexpos
Expert understanding of TCP/IP as it pertains to packet inspection and network/application flows and traffic engineering
Expert in designing and implementing security solutions for big data centers with complex Web hosting network security architecture
Must have good written, verbal and communication skill and able to respond to customer query in a positive manner
Knowledge on using different methods to analyze critical incidents
Certification : CISSP, IBM SIEM qradar .CEH, OSCP
Must be knowledgeable to handle imperva WAF., verisign ddos
Must have the capacity to be available, On-Call, to rapidly troubleshoot any problems resulting from changes. Ability to work a weekend and On-Call support
Carry out Advanced Analysis on virus and malware and interact with customer and emergency contacts
Develops documentation, including diagrams, standards, specifications and operating procedures
Able to carry out forensic investagion on virus and malware
Prepare weekly, monthly, quarterly Reports and KEDB
Review and Update Run Books and design documents
Work as escalation point of contact for critical outages / customer queries and escalation and resolve them on priority

124

Senior Security Engineer Resume Examples & Samples

Keen attention to detail
8 years’ experience in Information Security/Risk Management, ideally in a mix of consulting and industry roles at a publicly traded company
Strong technical knowledge of technology platforms, inclusive of systems, network devices, and security solutions. Hands-on experience with Windows OS, Linux, MacOSX, Palo Alto Firewalls (including Panorama), Cisco iOS/NX-OS/ASA-OS, relational databases, and other core enterprise technologies
Information Security expertise in application and infrastructure security architecture, design, and engineering using technologies, solutions, or frameworks inclusive of OWASP, SAML, firewalls, endpoint security, SSO, IDM, data encryption & enterprise key management, PKI, IDS/IPS, malware management, web content management, SIEM, etc
Hands-on experience developing hardening standards for on-premise and cloud-based systems inclusive of networks, servers, and common operating systems using widely known standards such as DISA, CIS, etc
Excellent understanding of software development lifecycle models, as well as the approach and options for implementing a Secure Development Lifecycle (SDL)
Intermediate understanding of industry common information technology control frameworks, particularly ISO 27001/2, SOC1 and 2 (Type I and II), PCI-DSS, and Cloud Security Alliance
Intermediate fluency with one or more Windows scripting languages (e.g. Powershell, VB, WMI, ADSI)
Excellent understanding/working knowledge of private and public cloud IaaS solutions
Network design and management; hands-on knowledge of
OSI Model & TCP/IP stack
Network protocols
Cisco IOS
PC literacy required: MS Office skills (Outlook, Word, Excel, PowerPoint)
Strong quantitative and analytical abilities

125

Senior Security Engineer Resume Examples & Samples

Identify uncontrolled risks and recommend control improvements
Proactively identify security requirement deficiencies
Engage business and technology personnel to elicit security requirements
Architect and design security control systems to address requirements
Define, review, and promote information security policies, standards, guidelines, and procedures
As compliance subject matter expert, enforce and monitor compliance with internal and external regulations, policies, and standards
Lead/Co-lead internal process improvement initiatives. Provide feedback on processes by offering suggestions
Mentor and supervise junior staff in project-level tasks
Ensure all work products meets /exceeds FINRA standards
Bachelor’s degree in Computer Science, Information Systems or related discipline with at least five (5) years of related experience, or equivalent training and/or work experience
Experience must include direct experience in several of the key areas listed: securing networks and systems architecture, design and implementation, secure software assurance, intrusion detection, defense and incident response, security configuration management, access controls design and implementation and security policy and standards development
In-depth knowledge of one or more communications protocols
Experience with more than one Cyber Security tools, including: Configuration Assessment, Log Aggregation, Integrity Verification, Web Application Security Testing, Network Access Control System, Network Intrusion prevention systems, and Endpoint Security Solutions
Should be well organized, thorough, and able to handle competing priorities
In-depth knowledge of more than one Information Security principle and discipline

126

Senior Security Engineer Resume Examples & Samples

Evaluate, select, design and configure security infrastructure systems in a global environment
Perform security audits and assessments
Analyze logs and determine which events are ‘material’ in our environment
Analyze vulnerability scanning outputs, assess findings, and develop remediation tasks in cooperation with the appropriate operational subject matter experts
Develop, document and implement complex changes to security solutions within the company network
Perform project management activities and generating solution design documentation
Flexible schedule and occasional travel outside of the U.S
Solid working experience with security systems, including but not limited to: intrusion detection systems, firewalls, identity management, desktop security, content filtering, network access control and vulnerability scanning
Advanced knowledge of core networking protocols such as TCP/IP, DNS, DHCP
Bitlocker
Kony MDM
Advanced Active Directory configurations
Cyberark Identity Management
Cisco networking equipment: firewalls, routers and switches
FORTINET Fortigate UTMs
Fortinet FortiWeb WAFs
Dell Change Auditor
PaloAlto UTM
SecureAuth multi-factor authentication
Packet analysis
Basic knowledge of data encryption principles, PKI and SSL certificates

127

Senior Security Engineer Resume Examples & Samples

To write and develop high assurance software in C and assembly
To participate in code reviews, testing and architectural planning of the product
To work with the open source community in the development of the library
To write and provide appropriate documentation
To be experienced in C, and familiar with the common security issues in using C
To have an active interest in security, cryptography, and a strong understanding of modern development techniques for providing high assurance software
To be familiar with agile software development and its principles
To have a good understanding of networking protocols and TCP/IP
To have experience of low-level development work, preferably on embedded devices
Previous experience with working on a TLS stack
To have experience in working with an open source community
Understanding of modern security and cryptographic standards, systems and their implementation (eg. NIST Suite B, FIPS-140 etc.)
Understanding of common vulnerabilities and their exploitation
Experience of side channel analysis, attacks and mitigation. (eg. SPA,DPA)

128

Senior.security Engineer Resume Examples & Samples

Amazon Web Services (AWS)
Bachelor's degree in Computer Science, Information Systems, a related field, or equivalent work experience, is required
Minimum of seven years of hands-on experience in an equivalent Information or network Security role
Industry certification is a plus: GIAC Security Essentials, Certified Ethical Hacker, GIAC Certified Incident Handler, Certified Security Administrator (firewall), CISSP, CCNP Security, or SANS
Demonstrated project management skills and ability to track and report progress against established milestones, metrics and deliverables
Excellent verbal and written communication skills as well as strong analytical and problem-solving skills

129

Senior Security Engineer Resume Examples & Samples

5+ years of security engineering experience
5+ years of experience and involvement with development team(s) that delivered commercial software or software-based services (development, QA testing, or security role)
Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, public-key infrastructures, and application security
Development experience in C, C++ and/or Java and scripting skills
Master’s/PhD degree in Computer Science, Mathematics, Engineering or equivalent
10+ years of security engineering experience
Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, TLS, routing protocols)
Detailed knowledge and experience in cryptography

130

Senior Security Engineer Resume Examples & Samples

Policy and Governance – Translate general security policies into specific technical guidance for IT and business teams. Monitor and audit people, process, and technology to ensure compliance with approved policies
Architecture and Standards - Develop a thorough understand of Press Ganey information systems and their weaknesses. Using published policy as guidance, develop detailed standards for technology teams to secure systems and software. Recommend changes to policy where applicable. While the Sr. Security Engineer is not responsible for configuration of network devices such as firewalls, switches, and IDS, he/she should be able to set standards for the configuration of those tools and assess if the standards are being met
Systems Administration - Administer security-focused information systems such as vulnerability management, privileged access management, and SIEM. Provide guidance regarding ways to best extend utilization of existing systems to reduce risk and improve detective controls
Incident Response – provide senior support to security investigations, including forensic analysis
Consult on Software Development - Assess new projects for compliance with security controls and best practices. Build test cases for use in automated tests
Data Protection - work with Legal, Technology, and business partners to establish and maintain controls that protect data and appropriately manage its lifecycle
Security Vendor Management - work with security-focused external partners to ensure goals for information security are met
Risk Management – Identify, assess, and communicate risks relating to Press Ganey data, systems, and personnel. Suggest changes that can reduce risk. Review vendors for compliance with Press Ganey standards
6+ years of experience in Information Security operations or leadership
Hands-on experience configuring and managing security team technologies, with focus on vulnerability management, penetration testing, forensic analysis, Security Incident and Event Management (SIEM), and identity management systems
Strong understanding of security operations concepts: Perimeter defenses, BYOD management, data loss protection, insider threat, kill chain analysis, risk assessment, and security metrics
Strong understanding of adversary motivations: cybercrime, cyber hacktivism, cyberwar, cyber espionage and the difference between cyber propaganda and cyber terrorism
Strong understanding of basic computer science: Algorithms, data structures, databases, operating systems, networks, and tool development (not production software, but tools that can help you do stuff)
Strong understanding of IT operations: Help desk, networks, endpoint management and server management
Strong ability to communicate: write clearly and speak authoritatively to different kinds of audiences (business leaders and techies)
Proven experience managing multiple work streams successfully
Ability to manage multiple issues at one time with exceptional follow through
Excellent customer service, communication, interpersonal and presentation skills
Certification for information security management or networking (preferred) (i.e. CISA, CISSP, CISM, CRISC)
Demonstrated competence in security and risk domains, including standards and practices; organization and management; processes; integrity, confidentiality and availability; and software development, acquisition, and maintenance
Experience in a healthcare environment preferred
Experience identifying and management of risks for HIPAA, PCI-DSS, SOX, etc
Experience managing and controlling PHI data sets

131

Senior Security Engineer Resume Examples & Samples

Serve as an escalation point for Expedia's business units, providing outstanding customer service through timely, high quality issue resolution
Provide operations and engineering support for critical security systems and services; including Privileged Identity Management, Intrusion Detection, Data Leakage Prevention, Web Content Filtering, Firewall Compliance, Vulnerability and Security Event Management
Minimum 10 years of experience providing engineering and operations support services in a mission critical eCommerce environment. Solid Linux background strongly preferred
Hands on experience with AWS Cloud services like EC2, VPC, S3, IAM, CloudFormation and Lambda; relevant experience with AWS cloud security is highly preferred
Minimum 6 years of applied computer programming and/or scripting language experience (Python, Perl, Ruby, C++ etc.)
Advanced knowledge and understanding of systems and/or network design principles/technical architectures and a proven track record of enterprise technology selection, design, implementation and support
Experience leading solutions development and complex technical deployments across cross-functional teams
Expert level understanding of security protocols and standards, including a demonstrated ability to perform complex analysis
BS in Computer Science/ Engineering or equivalent education and experience required

132

Senior Security Engineer Resume Examples & Samples

Evaluate and POC next-generation network security solutions
Support business units with the deployment of Imperva Cloud WAFs
Support Security Architecture with the design and implementation of new network security solutions, including CASB
Operationalize network security solutions to provide optimal value through repeatable metric reporting, standardizing maintenance and continually finding and closing security gaps
Train Operations teams to ensure a high level understanding of network security solutions and how they relate to quantifiable risk
5+ years of experience engineering and administering network security solutions such as firewalls, IPS/IDS, proxies
3+ years of experience supporting a Security Operations Center
Experience with perl and python
Expert-level understanding of network protocols (TCP/UDP, IP, ARP, DNS, HTTP(S), etc)

133

Senior Security Engineer Resume Examples & Samples

Must have an active TS/SCI security clearance required
Bachelor's degree in Computer Science or Information Systems
Network certifications, such as CCNA, CCNE and CCIE
10+ years of advanced cyber security experience inclusive to networking, TCP/IP, DNS, email protocols, conducting red/blue team assessments, scanning tools, and writing comprehensive reports

134

Senior Security Engineer Resume Examples & Samples

Supporting the system development and maintenance lifecycle by providing guidance on implementation and verifying the secure configuration
Support the security categorization process, and security controls identification and tailoring process. (RMF steps 1 & 2)
Develop and maintain in-depth understanding of the automated security configuration and verification scripts and manual checklists used by the State Department. (RMF steps 4 & 6)
Provide engineering based input for security controls implementation to the System Security Plan. Design and implement applicable security features through the configuration and change management process. Identify and catalog security architecture patterns in frequent use at the State Department so they can easily be re-used in the design phases of new projects. (RMF step 3)
Identify security requirements and impacts resulting from modifications to the systems, and work with the program management in planning activities. (RMF step 6)
Based on the knowledge gained from the security engineering activities, support the ISSO and the DoS Assessment and Authorization (A&A)
Support the development of various artifacts required such as security categorization, notification of change, revisions to System Security Plan, and the Plan of Action and Milestones (POA&M)
Identify and explain false positives; develop mitigations and articulate compensating controls for near-term and planned implementation; assist in the development of alternative remediation or mitigation strategies to minimize vulnerabilities and risks while minimizing the impact to the system functionality and performance as well as program cost and schedule
Provide technical subject matter expert (SME) support for coordinating and developing agreements with common control providers, interfacing systems, and their users
Bachelor’s degree in an information security or engineering field, or equivalent experience; advanced degree preferred
9+ years’ experience as an engineer with an information security focus
Fundamental understanding of risk-based information security management, as well as being knowledgeable of Federal regulations, standards, and guidelines pertaining to information assurance (FIPS, NIST, CNSS). This includes
Ability to work with the development, integration, and security assessment teams in implementing security controls
Use security mechanisms and features in products to provide concrete guidance to remediate the findings and develop mitigation plans while being cognizant of system functionality and program management constraints
Identifying security architecture and implementation gaps, vulnerabilities, and risks; and develop, test and implement the solutions to address the gaps, and new or updated requirements
Technical SME for
Virtualization and Cloud (VMWare, FedRAMP, and DoD FedRAMP+),
NIST RMF-related standards and DoD CNSS standards
Vulnerability notices and standards (CERT, IAVM, ACAS, SCAP, CVE, CVSS, XVMS, XCCDF)
Continuous Diagnostics & Mitigation (ForeScout, RSA Archer, McAfee AC/ePO/PA, Splunk)
Directory services (AD, LDAP) o PKI-based identities (CAC / PIV / ECA, MS-Certificate Services, PKCS)
Scripting of custom capabilities (Perl, SED, SoapUI, cURL, etc.) o Security appliances (firewalls, IDS/IPS, load balancers, etc.)
Security certifications such as
GIAC Security Expert (GSE) o GIAC Certified Incident Handler (GCIH)
(ISC)2 Certified Information Systems Security Professional (CISSP)
ISACA Certified Information Security Manager (CISM)
EC-Council Certified Network Defense Architect (CNDA) or Certified Ethical Hacker (CEH)
Cisco Certified Network Associated (CCNA)
ITIL® Foundation v3 certification
Project management experience (PMP is a plus)
Knowledge of secure coding, application security, and ethical hacking
Familiarity with DoS environment (data and voice networks, IT security systems, policies and procedures), Foreign Affairs Handbooks (FAHs), Foreign Affairs Manuals (FAMs), Diplomatic Security (DS) configuration standards
Experience with ACP-127 automated message handling systems (AMHS) and DoS messaging policies / procedures
Experience working on Microsoft- based, complex systems in the security engineering role using the security features of Windows 2003/2008 Server products, Windows XP/7, IIS, Sharepoint, Exchange, SMS/SCCM, and SQL Server products. Understanding of the inner workings of security configuration using Windows Security Templates, GPOs, and various secure configuration for products within the SMART baseline
Ability to analyze and troubleshoot system issues due to security configuration. Able to analyze automation scripts determine their functionality and impact

135

Senior Security Engineer Resume Examples & Samples

Proficient use of various tools and techniques, including risk, business impact, control and vulnerability assessments, used to identify business needs and determine control requirements
Know ledge of network infrastructure, including routers, switches, firewalls and associated network protocols and concepts
Experience in system and application technology security testing, including static and dynamic code review, vulnerability scanning and penetration testing
Ability to interact with personnel at all levels and across all business units / organizations, and to understand business imperatives

136

Senior Security Engineer Resume Examples & Samples

Leverage reporting sources such as LogRhythm SIEM, Cisco FireAmp, and Syslog to review security events
Performs security assessments, reviews enterprise initiatives for security compliance, and creates reports on issues and findings. Leverages 3rd party tools such as Veracode and HP fortify to ensure custom developed applications are coded correctly
Evaluates and recommends security products for the enterprise. Works with Lead Security Engineers on implementation of approved products
Review domain structures, user authentication, and public key infrastructure to ensure it is meeting industry best practices
Analyze common security issues and resolve. For more complex issues may escalate resolution to Lead Security Engineer
Evaluate and develops system security across the enterprise, with a concentration on account management, password auditing, network and web based application vulnerability scanning
Ability to analyze complex security issues with minimal supervision with latitude for independent judgment and decision making. Works under defined guidelines receiving little instruction on day to day work and general instructions on new assignments
Strong communication skills including the ability to communicate effectively with people at all levels in the organization
Ability to problem solve with minimal supervision
Provides resolution to a diverse range of issues. Demonstrates judgment in selection methods and techniques for obtaining resolution
Contributes to team objectives and outcomes as guided while their focus is on their own work product with contribution to larger more complex projects
Intermediate proficiency in
Security assessment tools such as Nessus, BURP, and NMAP
Domain structures, user authentication, and public key infrastructure
Firewall and intrusion prevention technologies
Knowledge of multiple operating systems including, at a minimum, Windows and Linux Operating systems
Understand database languages
Familiarity with PHP, Python, HTML5, and PowerShell
3-5 years in an enterprise environment with a focus on security technologies
Information Security certification in one or more of the following foundational areas; Security+, Network+, or CCNA Security
Information Security certifications in one or more of the following areas: GIAC, CEH, GWEB, GWAPT, or CISA preferred
Experience with Active Directory in an enterprise environment. More specifically understanding of GPO/GPP as it relates to security of user endpoints and servers
Proven track record with creating security assessment and corresponding reports
Previous experience as an ethical hacker or penetration tester

137

Global Senior Security Engineer Resume Examples & Samples

Mentor and collaborate with other Information Security team members across the broad spectrum of information security programs, such as Threat & Vulnerability Management, Security Response, Information Protection, Governance and Compliance, and Identity and Access Management
Serve in an advisory capacity to senior business leaders on effective risk management and earning/maintaining customer trust
Other duties as necessary to support and protect the business

138

Senior Security Engineer Resume Examples & Samples

Research the advanced threat / exploitation landscape
Provide in-depth / FP / FN analysis for Office 365 Advanced Threat Protection service
Hunt for targeted attacks, 0’day exploits and new threats targeting Microsoft and customers
Implement rich security analysis and production quality detection capabilities in the cloud
Build and use automation in the cloud to scale-out impact
Generate quality technical reports/blog content on the research, trending threats and their detections
3+ years of experience in security and/or exploit/malware detection technologies, analysis and reverse engineering
1+ years of experience in programming (C/C++/C# or Python) and understanding of data structures/algorithms
Have strong data knowledge, and ability to analyze and present complex data visually in a meaningful way
Self-starter and able to deliver under stress, particularly in emergency response situations
Strong problem solving skills and technical judgment
Good communication skills and an eye for detail

139

Senior Security Engineer Resume Examples & Samples

Understand information security and the relationship between threats, vulnerability and information value in the context of risk management
Provides advanced advice and acts as an Information Security subject matter expert liaison between Equifax global security and IT
Acts as an independent review and evaluation body to ensure that compliance issues/concerns within the organization are being appropriately evaluated, investigated and resolved
Ensures ethics, compliance and risk management is incorporated into leadership standards and corporate values
Maintaining expert knowledge of security principles, including logging authentication, sandboxing, threat intelligence, and DDOS protection among others
Understanding of intrinsic security weaknesses within core infrastructure components, including TCP/IP, VPN, VDI, file transfer, applications, storage, cloud, databases and remote administration protocols
Understanding of security problems as a mix of technology and process issues with the ability to pursue solutions at all layers within the organization
Thorough understanding of industry-standard best practice around security assessments
Collaborate closely with the various Security and Information Technology teams globally to ensure that they have what is needed to protect the enterprise and that best practices are implemented uniformly across the company
Explore new Security technologies through testing, rating and reporting on various potential solutions, with the objective of recommending the best solution for the current environment
Advanced degree in Computer Science, Engineering or other similar technical degree program

140

Senior Security Engineer Resume Examples & Samples

Provide security expertise and mentorship across all aspects of the infrastructure
Build solutions to complex security problems
Partner with the autonomous car security team and other teams
Support all aspects of the Uber Advanced Technologies Center

141

Senior Security Engineer Resume Examples & Samples

7+ years of industry experience
Expert level threat modeling experience
Secure networking expertise
Mobile application security and development expertise
Secure coding expertise
Experience in OOP, Java, UNIX, C++, Web services, and UNIX tools
Experience with identity management and authentication
Experience with secure development life-cycles
Experience mentoring the engineering community on complex technical issues
Master's degree or higher
Knowledge of security and privacy standards including ISO 27001, PCI-DSS, SOC, and HIPAA
Experience with large scale, distributed systems

142

Senior Security Engineer Resume Examples & Samples

Implement and support enterprise logging, event correlation, SIEM, and analytics solutions
Implement new security initiatives, utilizing technical solutions and policies & procedures
Leverage scripting skills to develop tools for the automation of security processes using Python, Perl, Bash, and PowerShell
Work with a wide variety of security tools, both network and system based, as needed
Participate in internal projects and initiatives, researching and recommending appropriate security solutions
Document processes, policies, and procedures as required
A proficiency with scripting or programming is a must
In depth knowledge of Windows and Linux/Unix, including applicable security principals
A strong understanding of networking and relevant protocols including TCP/IP, HTTP, SMTP, and DNS
Experience with Splunk, ArcSight, Securonix, or other SIEM like solutions
Experience with firewalls, VPNs, IDS, or other commercial network security solutions
Experience with network sniffers (tcpdump, wireshark)
Experience with threat vulnerability assessment tools
Experience working with SQL (MS SQL, MySQL, Oracle) and NoSQL (MongoDB, Hadoop) databases
Experience working with data interexchange formats such as XML, JSON, STIX, and TAXI
Working knowledge of the OSI model, dynamic routing protocols, and subnetting including CIDR notation
Security certifications such CISSP or GIAC a plus
4+ years’ combined experience in information security, network/system administration, and/or scripting/programming
Bachelor’s Degree in Computer Science, Information Systems or related degree or equivalent
Ability to learn new skills and technologies as required
Strong troubleshooting skills of complex network, system, and/or security problems
Must be willing to periodically work non-standard hours and be on call
Must be able to attain and maintain a Secret Security Clearance

143

Senior Security Engineer Resume Examples & Samples

Strong knowledge of web, security, and networking protocols
In-depth knowledge of security technologies such as cgroups,, ACLs,RBAC,, and OAuth2
Understanding of applied cryptography, including experience using cryptographic toolkits, such as OpenSSL, RSA BSAFE, Bouncy Castle, or similar
Experience with scalable web services and databases
Understand Kerberos, LDAP and Active Directory
5 years software development experience
2 years in security engineering, crypto, policy, auth or related technologies
Bachelor's degree in Computer Science or equivalent experience

144

Senior Security Engineer Resume Examples & Samples

Must have CheckPoint or Palo Alto Certification
Requires strong critical thinking and problem solving skills
Requires practical experience with TCP/IP networking
Requires significant experience with Linux, Windows and Network Operating Systems
Requires working knowledge of Routing and Access Control Devices
Professional experience with Juniper Gateways, Juniper firewalls, Juniper routers, and Juniper Intrusion Detection Products
Should have recent, documented professional expertise with several of the following security products: Cisco, Sourcefire, IPTables, Snort, ModSecurity, Nessus, Checkpoint, ISS, 3COM/Tipping Point, ClamAV or other technologies

145

Senior Security Engineer Resume Examples & Samples

Design and deployment of new technology on customer premise
Integration into customer staff, culture, and processes
Assistance with project scoping and network design
Knowledge transfer and training to WWT customer IT staff
Cisco ASA and SourceFire / Firepower expertise in design, configuration, tuning and customization of IPS features and signatures
Cisco ISE expertise in wired, wireless, VPN configurations using device profiling, posturing, PxGrid, ThreatGrid and SGT’s
Routing and Switching expertise
RSA and other multi-factor authentication mechanisms
Customized scripting in standard languages (Python, PowerShell, Java, etc) a plus

146

Senior Security Engineer Resume Examples & Samples

RSA NetWitness experience
Cisco ISE expertise
RSA Archer expertise and/or experience
Iron Port Expertise
RSA Data Loss Prevention Suite
RSA multi-factor authentication
Working technical knowledge of network and Security control protocols (CoS, PoE, NTP, DHCP), network management protocols (CDP, TFTP, SNMP) and security protocols (802.1x, Radius, SSH, HTTPS, AAA, IPSec)
Cisco ISE experience required
Strong knowledge IP communication and routing is required (OSPF, EIGRP, BGP). Experience with inter-company routing is preferred

147

Senior Security Engineer Resume Examples & Samples

Support all tooling (hardware and software) for the Security Operations Center
Performing gap analyses to identify where we can add tooling and automation to support our security perimeter
Gather requirements and develop solutions from the SOC and wider Security team Evaluate new tools and techniques to create innovative and practical security solutions
Build innovative automation solutions around open-source and proprietary tools
Manage a budget for tools, training and services
Mentor junior engineers
Develop training plans for yourself and junior engineers
5+ years of experience in an equivalent technical security role
Experience with cloud security concepts, solutions, and automation
Working experience with IDS/IPS/HIDS systems, DLP systems, firewalls, SIM/SEM systems, and vulnerability scanning tools
Proficiency in Python and Ruby is essential, as is a strong understanding of Linux/OSX and to a lesser extent, Windows
Deep understanding of network and application security threats, attack techniques, and mitigation options
Strong knowledge of network related protocols (e.g. TCP/IP, IPSEC, routing protocols, etc.)
Familiarity with mobile security challenges and solutions
Solid knowledge of securing all major operating systems
Organized, responsive, and highly thorough problem solver
Able to gain support and consensus with multiple stakeholders
Relevant Security, Systems, and Networking certifications a plus
BS Degree in Computer Science or equivalent

148

Senior Security Engineer Resume Examples & Samples

Gather requirements and develop solutions from the SOC and wider Security team
Evaluate new tools and techniques to create innovative and practical security solutions
5+ years’ of experience in an equivalent technical security role
Experience with cloud security concepts, solutions and automation
Deep understanding of network and application security threats, attack techniques and mitigation options

149

Senior Security Engineer Security Technology Resume Examples & Samples

Develop standards, development best practices, reference implementations, and testing modules used by the rest of HBT for the area of responsibility
Select, deploy, and support tools using Agile processes which are used by SWCOE users including Public Key Infrastructure, Code Signing, and Security Test Automation
Deploy and support security lab technology to facilitate security assessments and demonstrations
Facilitate and improve Security-related IT Services including Firewall, Identity Management, Intrusion Prevention, and Security Operations that are leveraged by our products
Directly support the Architecture, Assurance, and Excellence organizations as needed

150

Senior Security Engineer Resume Examples & Samples

Responsible for evaluating, designing, and deploying security infrastructure including next generation firewall, monitoring solutions, correlation tools, and identity and access control systems
Responsible for the integration of security focused solutions into a global network
Drives cross-functional integrated development teams to evaluate and implement security solutions
Coordinates with various teams to ensure network appliances and enterprise services are configured with the correct security posture to support business requirements
Provides technical recommendations to optimize performance
Troubleshoots and resolves critical network and system issues
Drives projects to completion with minimal supervision
5+ years of hands on experience with ACLs, Firewalls, and/or Intrusion Prevention Systems (IPS)
5+ years of hands on experience with monitoring solutions, correlation tools, and identity and access control systems
Strong knowledge and experience with Layer 2-7 protocols and technologies
Strong knowledge and experience with routing and security protocols
Strong knowledge and experience with ACLs, Firewalls, and Intrusion Prevention Systems
Strong knowledge of PKI
Strong knowledge with application, server, and network monitoring solutions
Windows/Linux administration experience
Experience with Python/PowerShell scripting
Ability to function effectively in a fast-paced team environment to reach stringent deadlines
Facilitate and lead meetings of peers within the organization
Willing to travel occasionally (~10%)
Palo Alto Networks PNSE certifications
CISCO CCNP
Arista ACE
MCITP

151

Senior Security Engineer Resume Examples & Samples

1) 5 years of experience with Firewalls (configuring, deploying, and supporting)
2) 5 years of Cisco networking experience (knowledge around routers and switches)
3) 5 years of experience with McAfee. They are using McAfee ePolicy Orchestrator
Handles more complex duties within the security function
Provides analytical support and consultation on projects to ensure appropriate design, implementation, testing, and documentation
Ensures safety of information systems assets and protects systems from intentional or inadvertent access or destruction
Assists in developing risk analysis and assessment tools
Works with users to understand security needs and evaluates level of security required
Designs, develops, implements, and promotes IT security standards and procedures
Works with Company and cross-functional project teams to combine business and technical expertise
Performs other projects or miscellaneous duties as requested or assigned
5 to 8 years in specific IT function
Palo Alto Next-Generation Firewalls preferred
Cisco experience preferred
McAfee ePolicy Orchestrator preferred

152

Senior Security Engineer Resume Examples & Samples

Engineers the IT security infrastructure including configuration, maintenance and installation of IT security server applications and hardware, and implementation, configuration, support and use of security software and monitoring/reporting tools
Designs and helps develop information security systems and applications
Oversees the evaluation and testing of hardware, firmware and software and recommends enhancements or improvements
Provides guidance and direction on best practices for protection of information
Identifies security risks and exposures and recommends solutions
Work with the Security & IT Engineering departments on design reviews, built to specifications before being turned over to support organizations
Leads team projects to help ensure company data, assets and resources are as secure as required to keep the security requirements
10 years Information Technology experience
Minimum 7 years Information Security specific experience

153

Senior Security Engineer Resume Examples & Samples

Data on boarding across multiple data sources (windows, linux, API, database, etc)
Understanding of the Splunk Common Information Model
Understanding of Splunk Data Models
Understanding of Splunk configurations and dependencies
Architect, design, implement, support, and evaluate all security-focused tools and services
Define processes for data ingestion, standardization, management and transformation
Strong communication skills to work with both collaborative cross-functional team of peers and departments within the company (product development, operations, networking, etc.)
Proficient in automation of tasks and data manipulation through scripting or programming with Bash, Python, Ruby, Go, Regex
Solid experience in enterprise information security in large technology firms
Excellent understanding and experience in multiple security domains such as platform hardening, vulnerability management, penetration testing, applied cryptography, network/application traffic control
Must be well organized and able to leverage best practices, able to thrive in fast-paced environment, and, most importantly, have the ability to approach problems with an innovative, can-do attitude
Experience in advanced Linux and Windows system administration
Advanced knowledge of security trends and best practices
Proven ability to lead and work on large/complex system deployment projects in a team environment
Knowledge of enterprise logging, with a focus on security event logging
Knowledge of Splunk CIM4.0+
5+ years hands on experience in engineering and supporting large scale Splunk logging solutions for large corporations is preferred
Demonstrated knowledge of best practices related to general administration, architecture, security, capacity planning, performance tuning, and disaster recovery
Preference for at least one current recognized security professional certification such as CISSP, CISM, CISA or ISO 27001 Lead Auditor
1+ years of experience in an Incident Response role performing hunt activities
Experience with enterprise-scale Splunk HA, operations and maintenance environments
Experience with some form of configuration management tools (saltstack, puppet, etc.)
BA or BS degree in CS, IT, or a related field
Splunk Power User or Architect certification - preferred
Industry recognized security certifications - preferred
Knowledge of project management tasks, experience creating documentation/presentations, and demonstrated ability to train other team members
Good organizational, multi-tasking, and time-management skills
Proven ability to work independently and as a team member in a fast paced environment

154

Senior Security Engineer Resume Examples & Samples

Develop, implement and maintain the information security safeguards and measures to enforce CDW information security policies, standards, and procedures
Consult with internal business partners to identify security requirements and implement necessary security controls
This role will be approximately 75% dedicated to project work and 25% security operational support
Lead information security incident response activity
6 years cumulative information security experience which should encompass three or more of the following domains
Excellent verbal and written communication skills with the ability to effectively interact with team members and stakeholders
Any relevant security certifications, such as: GIAC or CISSP

155

Senior Security Engineer Resume Examples & Samples

Responsible for the delivery of key services within Security Operations. This consists of
Technical support and development of the SIEM (Security Information and Event Management) toolsets
Service Level Management, and
Process Design
Plan and maintain own routine tasks to fit anticipated support requirements (and others where appropriate) with overall priorities assigned by the Senior Manager
Shape and facilitate the cyber threat management strategy by recommending specific courses of action for longer term risk reduction
Provide advice and guidance around IT Cyber Security industry related best practice to Governance teams
Actively participate in service and process management meetings
Engage with and provide consultation at Senior Management level
Develop and implement threat monitoring use cases, derived from appropriate threat intelligence sources
Produce and document appropriate detection, containment and response strategies in accordance to business requirements
Produce clear and consistent technical documentation using standard templates
Assess efficiency and effectiveness of threat monitoring rules by adapting to the changing threat landscape and technologies
Assess and resolve issues in relation to the SIEM and other monitoring toolsets
Provide technical guidance to peers and junior staff members
Coach inexperienced team members and provide first-level advice on processes and procedures
Support Senior Manager in colleague development across the team
Support the culture of continuous improvement through generating and developing new or improved ways of working
Significant experience within Security Operations or a similar role
Strong understanding of Cyber Security industry related best practice
Strong knowledge and understanding of Windows and Linux operating systems
Knowledge and deep understanding of other technologies (e.g. firewalls, proxies, IDS/IPS)
Extensive knowledge and expertise in any SIEM toolset (e.g. QRadar, Splunk)
Good knowledge of any scripting languages (Python, Perl, Shell, VBA etc)
Ability to interpret use cases and configure threat monitoring rules in the relevant SIEM tool
Diagnostic skills and an ability to analyse technical information from multiple sources
Strong quality and service focus
Demonstrable systematic and analytical approach to problem solving with the ability to resolve specific security issues or events
Excellent communication skills and ability to effectively communicate complex messages to stakeholders at all levels
Proven experience of delivering complex projects
Holds CISSP, CISM, GIAC, CEH or similar security related qualifications
Knowledge of designing and implementing Big Data solutions with expertise in developing ingestion methodologies
Experience of performing analysis during security incidents to support the response procedures
Experience of delivering enhancements to security controls

156

Senior Security Engineer Resume Examples & Samples

Analyzing Data loss prevention tools
Implementing Cyber Ark and Varonis
Operational work and security monitoring
Lead development of new tools and requirements to completion
System Design, Implementation, and management
End point protection, Firewalls, IDS/IPS, Encryption, PKI, Active Directory, Group Policy, Authentication mechanisms
Scripting languages is a plus
Design, implement, administer and monitor the security infrastructure including endpoint protection, SIEM, vulnerability scanners, web content filters and IDS/IPS
Lead and conduct security incident response, investigation and remediation. Senior Security Engineers are expected to be available outside of normal working hours when necessary to respond to security incidents and participate in 24/7 on-call rotations
Lead the development, implementation, and administration of information security standards, procedures and programs. Create and assist with implementation of configuration standards based on industry best practices
Assess and review technology infrastructure to identify key risks and ensure adequate levels of controls are in place to address risks
Provide security consulting and work with project teams to identify and implement security controls to properly secure systems and meet business objectives
Ensure the success of the vulnerability management program. Lead and participate in vulnerability working groups
Research emerging information security threats, vulnerabilities and their countermeasures. Effectively lead and communicate plans of action
Provide leadership and expertise on the security strategy and tactical planning for Security Operations and manage and execute the roadmap
Report on status of security operations and security infrastructure performance to management. Report key risk and performance indicators
Minimum of 7 years of direct information security work experience
Information security certifications preferred such as CISSP, GIAC certifications, CEH
Thorough knowledge of Cybersecurity Framework, CIS Critical Security Controls, ITIL, FFIEC, SOX, and other security related standards and methodologies
Deep technical understanding of TCP/IP networks, operating systems and cloud security. Demonstrated experience supporting and securing Windows, Linux, VMware, relational databases. Experience in AWS a plus
Proven track record in leading and driving design and administration of security technologies such as SIEM, vulnerability management tools, endpoint protection, web content filters, firewalls, IDS/IPS, encryption, PKI, Active Directory, Group Policy, authentication mechanisms. Scripting languages a plus
Established track record of competency in the ability to manage multiple initiatives and projects. Tested time management and organization skills to ensure completion of projects in a timely manner
Developed leadership skills and the proven ability to develop successful partnerships with IT and the business stakeholders
A focus on customer satisfaction with strong interpersonal skills
Communicates and interacts effectively, attention to detail, dependable, self-starter and works independently
Proven ability to problem solve effectively
Ability to work full time

157

Senior Security Engineer Resume Examples & Samples

Responsible for evaluating, testing, recommending, developing, coordinating, monitoring and maintaining information security for operating systems, user authentication, and applications; implementing strategic security architecture
Perform Security Engineering Research and Development; apply systems and network analysis techniques and procedures, including consulting with users to determine hardware, software, and security system functional specifications related to the ongoing security measures and defense in depth security strategy
Review/troubleshoot miscellaneous issues users may encounter to systems applications
Review and implement policies and procedures regarding security access as problems are identified, received, documented, distributed and corrected
Participate in the review and/or evaluation of security access information system products and/or services to determine the most effective solution
Support the Cyber Incident Response Team (CIRT) in the effective detection, analysis, and containment of attacks
Operate the processes necessary to collect threat intelligence, analyze the data for patterns and actionable information. Identify security risks and exposures, determine the causes of security violations and suggest procedures to halt future incidents
Identify appropriate platform and application logging and triggers at design phase to support advanced fraud and cyber detection use cases. Integrate appropriate systems and logs into the global threat management platform or Security Incident and Event Management system to properly protect critical assets. Design, test and develop specific content and alerting to identify threats against critical assets
Maintain an understanding of attacks, vectors and emergent threats. Provide tier II support for escalated security incidents. Obtain and share cyber security intelligence with security partners
Provide problem escalation as necessary
Demonstrated experience in communicating effectively in written and spoken form to broad internal and external entities including non-technical executives, corporate officers, business colleagues, product and service vendors and internal/external peers. Strong ability to influence and persuade others through collaboration
Aptitude to quickly learn in dynamic fast paced business environment. This includes new hardware, software, business processes, acquisitions, etc
Perform regular additional security related tasks as assigned
CISSP or equivalent security certification is preferred
Solid understandings of security on networks, hardening, patch management, pen-testing, vulnerability testing, Windows systems, Linux systems, open systems, applications, and web and public facing systems
Experience with security scanning tools
Solid understanding of networking concepts
Experience with Linux, Windows system administration
Professional and interpersonal skills
Ability to work effectively and contribute within a team environment
Experience with security related technical tools including IDS/IPS, DLP, firewall, SIEM, log management and processes is required
Exposure to cloud and high compute environments
Experience with security related technical tools (Palo Alto, Tripwire, Splunk, ELK) and processes is required

158

Senior.security Engineer Resume Examples & Samples

Develop and interpret security policies and procedures
Participate in incident handling
Bachelor’s degree in Computer Science, Computer Engineering or related field, or 5+ years relevant work experience
5+ years of experience in application-level vulnerability testing and auditing
Experience with security engineering, system and network security, authentication and security protocols, cryptography, and application security
Development experience in C, C++ and/or Java
Results oriented, high energy, self-motivated

159

Senior Security Engineer Resume Examples & Samples

Manual and automated security testing
BS in Computer Science or related field, or equivalent work experience
Minimum of 5 years of experience with any combination of the following: low-level programing in C and assembly, Linux kernel programming, virtualization security, x86 and/or ARM architectures familiarity, good understanding of firmware such as UEFI BIOS. Intermediate knowledge and understanding of security engineering, system and network security, security protocols, or cryptography
Experience with programming in assembly, C, Python and related low-level languages
Working knowledge of Linux, hypervisors and/or firmware such as UEFI BIOS, peripheral device firmware
Knowledge of x86/ARM hardware platform architecture
Reversing and analyzing x86 and/or ARM binaries
Hands-on experience configuring x86/ARM hardware platforms is a plus
An understanding of security protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge (avoid “analysis paralysis”)

160

Senior Security Engineer Resume Examples & Samples

8+ years of overall networking experience with at least 5 years of hands on and familiarity of the following tools: Bluecoat Security Analytics and Forensics, Bluecoat Proxy SG, Fireeye wMPS/NX/VX, Radware Alteon, CID, AppXcel
Skyhigh/CipherCloud/Cloud Saas tools OR similar cloud encrytion technology
Expertise in Security Analytics and Forensics - ability to create custom parsers, queries, analyze and create custom meta data extractions on full packet capture solutions
Cloud Encryption and Tokenization - Understand complexities of cloud encryptions, Salesforce topology and integration of Salesforce / Servicenow clouds with Cloud encryption gateway
Ability to deploy Web 2.0 proxies for advanced content filtering
Load balancing/ SSL offloading
Implement virtualization / ESXi technologies
Excellent understanding of TCP/IP and packet analysis
Knowledgeable on DNS, DHCP, FireWalls, IPS, basic routing/switching
Good communication skills, self- starter, desire for learning on a daily basis
Ability to take ownership of project and be accountable for results
Extremely organized, ability to multitask, ability to work on multiple projects with different deadlines
"Big Picture Thinker", ability to strategize and contribute to the long term goals of the team
Scripting languages for automation-(Shell, Python etc)
Expertise in concepts and implementation of Lucene elastic search, Yara Rules, Snort, Yum, PFring, Entropy DNS, Fastflux, Hadoop, MapR, Spark
Advanced understanding of Machine learning, data modeling and perform advanced analytics using R / Python
Scripting/automation of various security products with Rest API / Soap UI
Hands on integration and testing with SEIM tools such as Arcsight, Splunk, Palantir, Cloudera platforms

161

Senior Security Engineer Resume Examples & Samples

As a Senior Security Engineer within the Security, Identity and Authentication Engineering team you will have the opportunity to engineer (i.e., plan, develop, release) global infrastructure services ranging from Authentication Services (i.e., Federations, 2-Factor Authentication, Single Sign-On) to Account Management Services, both on premise and as part of a cloud offering, to Encryption Services (i.e., SSL, Secure Email)
In this role, you will have the ability to build security solutions that will continue to further strengthen the client’s security fingerprint while also simplifying and improving the end user experience
Additionally, this specific position will be focused around Identity and Access Management as well as Encryption services managed within the Security Engineering department (i.e., Certificate Based Authentication, Cloud IAM Services, etc.)
Leads the design, development, integration, and maintenance of the technical infrastructure and services related to the project (all aspects of the technology lifecycle)
Develops implementation requirements for technical infrastructure and services
Develops project charters and/or project requirements (cost, timing, scope, contingency, and risks)
Develops and supports technical infrastructure and services
Documents support guidelines and procedures (e.g. Tech07, EAA, runbooks, operational guides)
Reviews or presents technology solutions to working teams, suppliers, and customers
Participates in technology security assessments and threat modeling
Demonstrated success in other IT-related job roles
Experience in applying security and controls policies for infrastructure components
Proficient web development skills such as HTML5, CSS3, JavaScript
Experience working with various Database systems (e.g., Oracle, SQL)
Experience working with either Encryption (i.e., Data encryption) or Federation (i.e., SAML 2.0, OpenID Connect, etc.) services
Experience in working with an onsite and offsite development team or delivery model

162

Senior Security Engineer Resume Examples & Samples

Typically to provide a mixture of Consultancy, Design, Development, Integration and Support professional services
To provide leadership for work teams or task forces, particularly on emerging areas within specialised functional or process area
To be experienced and fully competent in own area
To act as a key lead in more complex/critical environments
Has the ability to create, modify or adapt designs but may also be involved in the design of systems architecture, networks, systems, service solutions and the development (including integration) of overall solutions
To be a lead contributor individually or as a team member, and to provide direction to others
To be key to the development of the next generation of specialists
To be the acclaimed specialist in one area, able to demonstrate a depth/breadth of knowledge/skills in own discipline. Also to share this expertise, offering mentoring and guidance to colleagues and others
To anticipate clients’ or Business Unit/LoBs’ needs, investigate the underlying causes and identify short and long-term solutions
To anticipate patterns and links, looking beyond the immediate problem to the wider implications and to generate new and innovative solutions to complex problems
Responsible for setting the design standards
To apply specialist knowledge to ensure business compliance of solutions design within own area of expertise
Perform a key role in supporting design reviews and ensuring compliance to required business standards
Provide a strategic partner with clients or Business Unit/LoB to enable the technical/service development of solutions to meet business requirements
Typically engineering/science degree
Qualified to be and possible chartered engineer and fellow of a professional engineering/science institution
Will have obtained recognised industrial accreditation, where they exist, at typically professional/expert level in appropriate topics
An acclaimed specialist in one area, able to demonstrate a depth/breadth of knowledge/skills in own discipline
Can apply knowledge/skills through handling complex problems and/or co-ordination of work which may extend beyond own area of expertise and can share expertise with colleagues and other departments
Can anticipate clients needs, investigate the underlying causes and identify short and long-term solutions
Can anticipate internal/external business issues and developments in own discipline and use knowledge to focus work and drive improvements
Able to manage costs and profitability for a work area and/or large projects
Can anticipate patterns and links, looking beyond the immediate problem to the wider implications and can generate new and innovative solutions to complex problems
Able to manage own time and that of others and to develop plans for work activities in own area over the medium/long-term, supporting strategic planning activities

163

Senior Security Engineer Resume Examples & Samples

3+ years in a comparable security role
Experience designing, deploying, tuning, auditing and reporting across various systems, infrastructure, applications and tools to ensure highest levels of security are maintained in a datacenter environment
Experience applying a formal methodology to assess risk, the reduction thereof, assessing technical and financial viability of a system or solution to be leveraged within a remote hosting environment

164

Senior Security Engineer Resume Examples & Samples

Assist in the definition and implementation of end to end security architecture for production and corporate systems, including security design analysis, risk management, data privacy compliance, vendor and application security assessments
Continue to refine and identify new sources of data to aid in security monitoring and security investigations
Incident response
Drive security initiatives with cross-functional teams
Perform risk analysis of engineering initiatives and prioritize projects requiring focused testing
Lead security design reviews and threat modeling for new features and functionality
Manage vulnerability remediation processes for codebases across multiple business units, including bug triage, and coordinate with project managers to track and close milestones
Participate in the development of materials to increase awareness of and adherence to security best practices in Development and System Operations teams
B.S. or M.S in Engineering, Computer Science or related field
7+ years of relevant work experience, with previous experience as a security practitioner in a specific discipline in research, consulting, or operations role
Knowledge of a variety of real-world attack and mitigation types
Experience installing, configuring and maintaining security systems, including firewalls, web application firewalls, IDP/IPS systems, VPN appliances and multi-factor authentication
In-depth technical expertise in network defense technologies, forensic tools, and active defense technologies
You have experience in automating manual tasks with Python, Ruby or Perl
Experience in implementing automated and manual penetration testing
Certifications: Current Security GIAC certifications or CISSP strongly preferred

165

Senior Security Engineer Resume Examples & Samples

5+ years in application and network security (experience on AAA titles for PS4/Xbox One/PC a plus)
Knowledge of at least one programming language
Strong communication and collaboration skills
A passion for writing secure applications

166

Senior Security Engineer Resume Examples & Samples

Actively addresses business needs by applying the information security engineering discipline throughout the development lifecycle and by researching tools, technologies and best practices for corporate initiatives
Identifies and articulates security risks, develops alternatives and recommendations to mitigate risks
Provides technical expertise and direction for the selection and implementation of a diverse suite of information security countermeasures
Discover and implement untapped functionality from existing tools
Researches and recommends effective security controls and metrics
Provides technical leadership to assess threats, identifies gaps in capabilities, and supports development of a roadmap to evolve the corporation’s security posture
Provides technical leadership to recommend appropriate information security frameworks, requirements, direction and system recommendations
Configure existing technologies in an effort to solve operational issues; and
Minimum 6 years’ experience in progressive cyber security technical leadership roles
Demonstrated ability to lead threat modeling and risk assessments, analyze the results and recommend cost effective mitigations
Demonstrated ability to provide technical leadership and work effectively across teams to drive security improvements enterprise wide
Demonstrated ability to train, guide and mentor team members
Preferred: Bachelor of Science in a cybersecurity discipline or a Masters in an engineering or technical discipline with cybersecurity coursework; and

167

Senior Security Engineer Resume Examples & Samples

Experience (minimum 1 year) with application security
Knowledge or risk assessment methodologies that account for value of business opportunities and focus on quantitative measures
Technical experience with Splunk, Cisco firewalls and networking equipment, Linux/UNIX, Windows
Experience in incident response and digital forensics
Ability to approach problem solving in a constructive and collaborative way that does not require absolute security

168

Senior Security Engineer Resume Examples & Samples

Administer network and computing devices/systems that enforce security policies and audit controls in Windows environment
Formulate security architecture recommendations and design security services
Must be able to perform hands-on support for a wide range of security technologies including, but not limited to: SEIM, IDS

169

Senior Security Engineer Resume Examples & Samples

To write and develop high assurance software in C and ARM assembler
To write documentation for internal team use and end users
Good university degree, although other graduates would be considered if they have relevant experience
You are a strong programmer, preferably with experience in C and/or C++
Familiar with Agile software development and its principles
Experience with low-level development work, preferably on embedded devices
Deep understanding of computer architectures (virtual memory, caching, DMA, I/O)
A strong understanding of modern development techniques for providing high assurance software
Experience with low-level operating system design (kernel development, RTOS’s)
Understanding of network protocols such as IPv4/IPv6
Understanding of modern security and cryptographic standards, systems and their implementation (e.g. NIST Suite B, FIPS-140, Common Criteria, Global Platform etc.)

170

Senior Security Engineer Resume Examples & Samples

Web-based application security assessments using both automated tools and manual testing techniques
Mobile application security assessments (Apple iOS and Android)
Network-based security assessments
Documentation and report generation
5-8 years of technical security experience is required
SANS GWAPT/GIAC/GSEC/GWEB
CISA
PCNSE
Performing vulnerability scanning with tools such as HP Webinspect, Nmap, Nessus, Nexpose, OpenVAS, Nikt and w3af
Performing network penetration tests across public and private networks with tools such as Metasploit and Kali
Use of HTTP proxies such as Burp Suite, Fiddler, Charles and ZAP
Performing security assessments of wireless networks
Developing and testing scripts for nmap and other security tools
General TCP, Network and sniffer investigative skills
Ability to complete tasks and deliver professionally written reports for clients on a timely basis
Experience with web application vulnerability scanning tools (e.g.HP WebInspect, Burpsuite, HP Fortify)
Experience with web application and/or mobile device development (e.g., ASP.NET, ASP, PHP, J2EE, JSP, Swift, Java)
Experience with high level programming languages (e.g., C, C++, .NET (C#, VB)
Static source code security analysis

171

Senior Security Engineer Resume Examples & Samples

Collaborate with the Information Security Director, Technology & Operations Engineers, Legal, and HR to align security and compliance requirements to meet business objectives
Work directly with Project Managers and various Tech & Ops team members to convey and drive security and compliance initiatives
Provide technology security expertise and recommendations on strategies and tools for key programs and issues
Lead and operate the endpoint protection program and provide guidance to supporting resources
Key contributor to the Vulnerability Management, Cloud Security and Desktop Security programs
Respond to security incidents and SOC calls after hours as part of the Info Sec on-call rotation
Assist with the implementation, configuration and operations of various security tools
Support application implementations through security design reviews and risk assessments in order to build security into solutions and to ensure the compliance with industry and regulatory standards
Assist with technology risk assessments for acquisitions
Bachelor Degree in Information Systems, Computer Science, related field preferred
Applicants should possess 7+ years of professional, industry related experience in network and/or infrastructure engineering and compliance/security
Certifications: CISSP, CISM or equivalent preferred
3+ years’ experience administering and implementing Endpoint Protection solutions on servers and desktops is required. (Experience with Carbon Black, Bit9, Symantec SEP is desired)
Experience with Identify & Access Management policies and tools is desired
One or more year’s operational experience with Palo Alto firewall capabilities is desired
Experience in developing and implementing Security & Compliance Policies and Standards is desired
Experience with PCI, Privacy and HIPAA requirements is desired
Self-starter and ability to work well in a fast-paced and dynamic environment
Excellent interpersonal skills as well as strong verbal and written communication skills; comfortable leading meetings and cross-team efforts
Proactive attitude towards anticipating problems, implementing solutions, and accomplishing goals
Demonstrated success in developing, operating, leading and implementing endpoint protection programs

172

Senior Security Engineer Resume Examples & Samples

Acts in a leading role / mentor to Junior Security Engineers by establishing a culture of excellence in engineering
Identifies key areas for improvement in the technology used. Constantly looking for ways to better utilize the technology present
Primary point of responsibility in tool effectiveness in terms of making sure it’s running according to vendor specification, configuration, and deployment requirements
6+ years of related cybersecurity architecture, engineering, or SOC work experience

173

Senior Security Engineer Resume Examples & Samples

Investigation, troubleshooting and resolve security incidents
Managing, detecting and reviewing of security incidents within the IS infrastructure
Co-coordinating with internal teams, 3rd parties and customers to resolve security incidents
Managing ISO security management requirements including the delivery of security processes and procedures
Involved in regulatory compliance
Management reporting
Pre-empt Accidental or unauthorized modification, destruction, and disclosure
If problems are identified, to modify the security files to incorporate new software, correct errors and change an individual’s access status
Formally evaluate security features of information products and systems
Carry out and evaluate investigative work regarding potential threats
Proactively disclose and remedy actual or potential breaches and risks
Apply expert knowledge to initiate good security practices and planning
Take responsibility for arrangements for physical and logical security policy
Advise other professionals of necessity for security counter-measures
5-8 years’ experience in a networking and troubleshooting environment
5+ years’ experience in system administration
3+ years’ experience in coding (PHP / Pyhton / Perl / Bash)
In-depth Information Security knowledge
Security Auditing Tools
Ethical Hacking / Intrusion Prevention
Unix based operating systems

174

Senior Security Engineer Resume Examples & Samples

Interact with Product Management, Project Management, Engineering, QA and Operations teams to plan and execute manual and automated security testing to ensure products meet security requirements and standards
Ensure that testing addresses security requirements as agreed with other stakeholders
Research, identify, document and report root causes of security issues in partnership with architects, developers, and network and system engineers. Ensure results of root cause analyses are addressed
Report security test results and issues and remediation
Integration of automated security tests into continuous integration process
Represent security stakeholders in project reviews
Research available tools and participate in initiatives to implement those that will cost-effectively enhance testing capabilities and product security
Mentor, train, and assist team members
Participate in continuous improvement initiatives and implementation of best practices
Maintain framework for record retention in order to support internal and external IT audits
Participate in internal and external vulnerability and penetration testing and track remediation of findings within CounselLink systems
Maintain flexibility to react quickly to changes in priorities or circumstances to meet the needs of the business
All other job duties as assigned
Solid testing skills and a strong understanding of test methodologies
5+ Years of Security and/or Automated Test Engineering Experience
2+ Years of OWASP Top 10 Vulnerability testing and remediation
2+ Years of Selenium Test Automation
2+ Years with Java and Java Test Frameworks
2+ Years JavaScript, and Web Application Testing
Strong knowledge of the software development process
Strong research skills (tools/root cause analysis)
Ability to identify and implement continuous improvement practices

175

Senior Security Engineer Resume Examples & Samples

5+ years in a security role
Experience with vulnerability / pen testing tools (Rapid7, Whitehat, etc.)
Experience with Web Application Firewalls
Exceptional communication skills and ability to communicate with customers that have various levels of technical knowledge
Ability to be part of after hours on-call rotation

176

Senior Security Engineer Firewall Resume Examples & Samples

Manage ACLs and firewall rules across the entire organization. This includes multiple firewalls and a various number of router ACLs. This includes securing sensitive information such as PCI and PII data
Deploy and run network configuration and auditing software (Redseal, etc.)
Manage 3rd party IPSEC tunnels and access-lists. IPSEC tunnels are a direct path into our network from unmanaged 3rd parties and is currently done by various people from various teams with various degrees of time spent securing the connection
Take a lead role managing access for wired 802.1x and end-user VPN which ultimately controls access into the network

177

Senior Security Engineer Resume Examples & Samples

Perform risk assessments and provide security guidance for prioritization and resolutions
Analyze security vulnerabilities
Analyze, assess and recommend security controls for compliance with industry standards
Work with auditors, applications, infrastructure and other teams to achieve and maintain compliance
Document security policies and procedures
Perform project management for small projects
Bachelor's degree in Information Technology or related field. Education requirement can be substituted with demonstrated commensurate experience
At least six (6) years of experience in the IT Security field
Strong knowledge of NIST SP 800-53, and the Security Authorization and Assessment (A&A) framework
Working knowledge of application security
Hands-on experience with vulnerability analysis
Working knowledge of tools like Nessus, Checkmarx, Burp and Wireshark
Experience with creating/updating security policies and procedures, System Security Plans, Contingency Plans, Incident Response Plans, and other related security documentation
Working knowledge of web server, application server, operating system (Linux and Windows), and network security
Understanding of firewalls, intrusion detection and protection, load balancers, and other related technologies
Ability to cohesively and effectively work with matrixed teams and multiple organizations
Ability to manage small projects
Proven ability to deliver and execute
Knowledge of industry security standards and organizations (for example HIPAA, PCI, ISO 27001, etc.)
Experience in working with global teams and projects
Some experience in writing code/scripts in Java, Python, Perl, PowerShell, Bash, etc
Knowledge of Privacy regulations
Knowledge of application development
Technical knowledge of security engineering, network/systems security
Understanding of cloud deployment models (IaaS, PaaS, SaaS) and cloud security

178

MSS Senior Security Engineer Resume Examples & Samples

Build IPSEC VPN tunnels to client networks
Configure SNMP monitoring from client devices to Optiv’s centralized monitoring solution
Create backups from client devices and store them in Optiv’s datacenters
Configure access to client networks
Configure client portal and perform account creation/modification/deletion on the AD server
Assist with the creation and maintenance of processes, procedures, standards, and policies
Create/maintain/update internal documentation
Explain technical solutions to the client and walk them through configurations of their devices
Create architecture diagrams outlining the technical solution for connectivity and access to the client
Provide support for integration and onboarding activities to ensure smooth client transition to MSS operations
Perform network troubleshooting to isolate and diagnose common network problems, using strong TCP/IP networking skills
Find creative solutions to complex customer networking issues and have the ability to walk the customer through the solution over the phone
Respond in a timely manner (within documented SLA) to configuration, maintenance, incident management, and other requests
Adhere to established MSS policies, procedures, and security practices
Perform on-call support for operational clients concerning connectivity and access
Resolve problems independently and understand escalation procedures
Ability to handle multiple projects and shifting priorities with ease
Bachelor's Degree in Information Technology, Information Security/Assurance, Engineering or related field of study
2 or more years of experience in Information Security or Networking required
One or more years of experience with scripting and programming languages such as: Bash, C, C#, Perl, PHP, Python, Java, AJAX, HTML, CSS, PowerShell or others
Prefer CCNA, BCCPP, JNCIS-SEC, JNCIS-FWV, JNCIS-SA, CCSE, ACE, CNSE, SFCP, SFCSE, SFCTSE certifications
Practical expertise with TCP/IP networking required
Familiarity with Linux, Windows and Network Operating Systems required
Requires taking responsibility for customer satisfaction and overall success of managed services
Requires interfacing with a variety of customers in a polite, positive, and professional manner
Preferred candidates will have one or more certifications in Security/Networking including Security+, GSEC, GCIA, GCIH, CISSP or other security specific vendor/product certifications
Technical knowledge with industry security products preferred
Solid understanding of networking required
Detail oriented with strong organization skills required
Customer service focus required with strong interpersonal skills including excellent written/verbal communication skills
Will be required to be on-call after hours and weekends on a rotating basis
May be required to work occasional off-shift hours to cover customer maintenance and on-site activities

179

Senior Security Engineer Resume Examples & Samples

Provide engineering based input for security controls implementation to the System Security Plan
Design and implement applicable security features through the configuration and change management process
Identify and catalog security architecture patterns in frequent use at the State Department so they can easily be re-used in the design and implementation phases of new projects. (RMF step 3)
Identify security requirements and impacts resulting from modifications to the systems, and work with program management in planning activities. (RMF step 6)
Based on the knowledge gained from the security engineering activities, support ISSOs, System Owners, and the DoS Assessment and Authorization (A&A) team to
14+ years’ experience as an engineer with an information security focus, designing and implementing solutions involving security infrastructure
Interpersonal skills including the ability to collaborate effectively, self- awareness, and excellent written and oral communications
Virtualization and Cloud (VMWare, FedRAMP, and DoD FedRAMP+)
Scripting of custom capabilities (Perl, SoapUI, etc.)
Security appliances (firewalls, IDS/IPS, etc.)
GIAC Security Expert (GSE)
Experience working on Microsoft- based, complex systems in the security engineering role using the security features of Windows 2008/2012 Server products, Windows 7/10, IIS, Sharepoint, Exchange, SMS/SCCM, and SQL Server products. Understanding of the inner workings of security configuration using Windows Security Templates, GPOs, and various secure configuration for products within the SMART baseline

180

Senior Security Engineer Resume Examples & Samples

Work within a global team of Operation Security professionals, part of the SuccessFactors Information Security Office
Participate in the management in SuccessFactors and SAP’s SIEM monitoring systems
Troubleshooting missing log sources or source types
Participate in other Operation Security infrastructure management and requirements, incident response, coordination and collaboration with other teams across the enterprise
Fluent with Splunk searches; can set up searches with regular expression, alerts and reports
Escalate positive findings to Operations Security and other groups for root cause analysis (RCA) or remediation
Broad knowledge of logs gathered from server systems, OS, anti-virus, software applications, network elements (firewalls, load balancers, routers and switches), cloud and web
General understanding
Security concepts, principles and practices related to server systems, OS, software applications, network, cloud and web
General knowledge of attacks and exploits
Good written and verbal communication skills, including ticket recording and project reporting
Experience with Splunk Enterprise Security (SES)
Knowledge and experience in Linux / Windows System administration, Virtualization and cloud technologies
Knowledge and experience in network administration of switches, routers and load balancers
Knowledge and experience in regulatory guidelines and standards, such as SSAE-16 SOC2, ISO 27001, PCI, FISMA/FedRAMP, etc
Experience or knowledge with machine learning
Professional security certification, such as a Certified Information Systems Security Professional (CISSP)

181

Senior Security Engineer Resume Examples & Samples

Bachelor's degree in Computer Science or other relevant focus of study
At least 5 years of application security experience, plus experience mentoring more junior staff
Ruby programming experience, Rails a plus - please send us your GitHub/Bitbucket account or any other examples of projects, if available
Penetration testing experience/ability to verify common web vulnerabilities
Knowledge of modern web applications including their security threats and vulnerabilities
Great verbal and written communication skills
Ability to work on multiple projects/tasks at once - balancing and prioritizing work appropriately
Experience with agile development processes, working in a fast-paced environment with continuous integration
Security certifications such as OSCP, GWEB, GPEN, GWAPT, CEH, CISSP, GSEC, etc

182

Senior Security Engineer Resume Examples & Samples

Develop and maintain security controls architecture across the global organization that maintains constant cyber vigilance
Establish an extendable and scalable security platform for streamlined consumption of resilient security solutions across individual IT environments as a shared service
Continuously identify enhancements to existing security controls and implement action plans to improve security posture
Partner with IT and business constituents to identify appropriate and practical risk mitigation approaches
Work hands-on in evaluating, deploying, and maintaining technical security solutions
Define and deploy operating system configuration standards and baseline hardening specifications for Windows and *nix systems
Design and deploy endpoint security software and tools for threat prevention, detection, and response
Partner with IT to maintain infrastructure prevention measures via web proxies and next-generation firewall technologies
Development of security analytics, correlations, and visualizations to identify threats in the operational environment using SIEM solutions
Establish operational procedures for performing system lifecycle management
Define and deploy advanced malware detection and intelligence capabilities
Assist in performing vulnerability management and penetration testing efforts
Assist in Windows / Active Directory secure implementations and continuous assessment
Create and support integrations between security technologies using APIs, scripting, applications
Maintain cloud security protections within AWS and Azure environments, apply appropriate security controls to cloud based applications / SaaS solutions
Ensure appropriate access controls and privileged access management procedures and technical solutions
Ability to build and maintain dashboards, KPIs, scorecards, and metrics to measure control efficacy
Understanding of networking and infrastructure design concepts and communications protocols (TCP/IP, DNS, HTTP/S, LDAP, AD, UDP, NTP, BGP/routing protocols, TLS/SSL)
Programming abilities using Python and PowerShell to integrate solutions using APIs and customized development
In-depth expertise designing and managing Carbon Black, Splunk, Crowdstrike, Encase, FTK, Rapid7, behavioral analytics, data classification / DLP, firewalls, web proxy, CASB, and email security technologies
3+ years hands-on designing and deploying security solutions in a complex IT environment
Experience evaluating and validating security vendor technologies
Ability to be successful in a matrixed organization by leading through influence
Ability to adapt to a dynamic environment and changing business requirements
Self-motivated, able to work independently and with a team
Detail and goal oriented
Bachelors in a related field or relevant work experience
At least 3years of security engineering experience
Ability to work with/lead others and independently contribute successes

183

Senior Security Engineer Resume Examples & Samples

UNIX, Windows, NT, Oracle, SQL, IIS
Hands on experience with Data Loss Prevention (DLP) for both Endpoint and Network solutions
Exposure to a variety of Vulnerability and Penetration testing tools (ESM, Sensage, CIS-CAT, ISS, Netlab, Netcat)
Capable of formally presenting to all levels of management with recommendations for action and/or mitigation of risks
Experience with the use of open source tools for vulnerability identification
Hands-on system or network admin experience
7 years relevant experience in Cyber Security; 10 years’ preferred
7 years’ of Experience communicating risks and concerns clearly to leadership for decision making on technical direction of risk mitigation

184

Senior Security Engineer Resume Examples & Samples

Functional management for security controls in the production environment globally
Manages and enhances OCLC’s information security test and evaluation program, including management of ongoing vulnerability identification and coordinating remediation activities with system, application and process owners
Leads OCLCs computer incident response practices including incident management, coordination, analysis and investigation of potential security events
Analyze & Assist in developing and interpreting information security and security operations processes and requirements. Translates requirements and designs to assist operations
Coordinates with security control owners to assist in the implementation, review and improvement of OCLC’s operational security controls
Works as a change agent within OCLC promoting good information security practices. Seeks consensus when possible but drives results and maturity through leadership and collaboration with infrastructure and operational technology teams
Follows and implements all security configuration management processes and suggests improvements as they pertain to their work unit
Formulates and implements monitoring policies, procedures and standards relating to information security
Promotes OCLC’s ISO/IEC 27001 program and the SDLC, as they pertain to their work unit, and continually seeks improvements to operational procedures
Leads development of OCLC security hardening standards in compliance with all relevant ISO and NIST standards
Requires good technical writing skills including ability to write clear, concise project documentation and ability to draw Visio configurations. Requires good verbal communication skills and the ability to interact with other organizations within OCLC
Participates in the analysis and implementation of 3rd party security solutions for OCLC applications with the ability to understand the impact and analyze the risk
Experience consisting of 3-6 years of information security experience across multiple domains
Industry certifications (CompTIA, ISC2, ISACA) and a Bachelor's degree in a Computer Science-related discipline preferred. A combination of certifications, expertise and education are sufficient
Familiar with routers and switches, VPN technology, network load balancers, network monitoring and analysis tools, such as Advanced Malware Detection Systems and IPS/IDS
Experienced in information security incident management
Experienced with cloud information security requirements and secure service delivery
Familiar with vulnerability identification tools, specifically Tenable Nessus
Familiar with Windows and Linux enterprise server and workstation environments
Has successfully implemented at least one significant security engineering project
Works with other areas in implementing significant architectural changes
Successfully manages multiple projects or sub-projects, at a Project Initiation approved level of up to $20,000-$100,000 using proven project management techniques
Ability to self-motivate and solve challenging problems without constant direction
Ability to work and communicate effectively in a team environment
Working knowledge of standard infrastructure tools (Radius, DHCP, DNS, NTP, SYSLOG, SSH etc.)
Knowledge of security frameworks such as ISO 27001, NIST 800-53, etc

185

Senior Security Engineer CTI Resume Examples & Samples

Provide Level 2/3 engineering support for threat detection and response. Manage the intake of escalations from the MSSP not handled by SoC personnel
Perform in-depth response analysis such as log and PCAP analysis, and coordinate response to incidents with constituents
Implement analytics program for advanced detection capability
5 years' experience with a minimum of 2 years in one or more of the following: incident response, application security, network security, security operations, security monitoring, or security focused system's engineering
1 year scripting or programming experience in Ruby, Python, Shell/BASH scripting, Java, C/C++, C*, Perl, or other languages
Demonstrated experience championing a program and driving successful completion of projects
Expert level understanding in one core area of Information Security
Data Science techniques such as clustering, anomaly detection, and machine learning leveraging data analysis tools
Security related certifications such as OSCP, GIAC, GCIH, GCFA, GCIA, GPEN, GNFA, GCUX, CEH, CISSP

186

Senior Security Engineer Resume Examples & Samples

Supports, Monitors and manages the SIEM environment
Integration of Splunk with a wide variety of legacy data sources that use various protocols
Installation and configuration of Splunk apps to onboard data sources into Splunk
Designs, implements, configures, and manages solutions within the supported Linux technologies, products, and services
Analyzes and estimates feasibility, costs, time, and work effort needed to design and implement moderately complex technical solutions
Monitors and proactively manages supported products and services to assure their performance, availability, security, and capacity
Familiar with both Windows and Linux based OS
Experience with syslog-ng is a plus

187

Senior Security Engineer Resume Examples & Samples

3-5 years of experience with exploiting vulnerabilities in websites, networks, applications and computer systems
3-5 years in performing extensive vulnerability assessment
Proficiency in client-side attacks and web application exploitation on both Linux/Unix and Windows operating systems
Experience using scan/attack/assess tools and techniques, including proficiency in using the following frameworks: Metasploit, Nesuss, NMAP, etc…
1-2 years of experience in administering firewalls, SIEMs, IDS/IPS and related security hardware
Knowledge of Cloud and AWS Security Best Practices
Security auditing and frameworks knowledge
IAM and DDoS mitigation knowledge
Knowledge of database, applications, and Web server security/design
Apache, etc…Solid knowledge of TCP/IP protocols and networking architectures
Experience scripting in Python or Java
BA or BS degree in Computer Engineering or IT preferred
Excellent written documentation and oral presentation skills
Pen Testing Certifications, including, Cisco CCNA/CCNP Security, Fortinet FCNSP/FCNSA, LPT, CEPT, CEH, GPEN, ECSA, or OSCP preferred

188

Cyber Senior Security Engineer Resume Examples & Samples

14+ years’ experience working within an enterprise operations environment with a focus on cyber security
Secret with ability to gain TS-SCI
Direct Customer Engagement
Customer requirements identification
Experience working with developers and general experience
At least 7 years of experience supporting mission-critical

189

Senior Security Engineer Resume Examples & Samples

Installation, monitoring, maintenance, support, and optimization of all security related hardware & software
Resolve and/or provide recommendations to mitigate and resolve security issues/risks as required
Analyze business impact and exposure, based on emerging security threats, vulnerabilities and risks and develop risk mitigation plans for these potential risks
Advise security administrators on normal and exception-based processing of security authorization requests
Monitor & communicate security risks, vulnerabilities and other security exposures, including misuse of information assets and noncompliance to the leadership team
Create security standards for firewalls, wireless access, other network devices, servers, systems, applications, and databases while not hindering business efficiency
Assist in the coordination and completion of information security operations documentation
Research, evaluate, recommend, implement and are an advocate for information-security-related hardware, new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors
Execution of risk assessment activities (penetration testing and vulnerability assessments) performed by you, the internal security team and/or an external group; analyze the results of audits to produce recommendations of acceptable risk and risk mitigation strategies
Perform other duties to support business needs
Previously or currently on a Security/Compliance team in a large national company (i.e. multiple sites throughout a geographically dispersed area)
Bachelor’s degree in computer science or electrical engineering and/or 3-7 years equivalent work experience
Strong knowledge of network security
Certifications: CISSP, CISM, and/or CISO
AWS and/or other cloud computing experience
Holistic understanding of Microsoft Active Directory
Understanding of application development

190

Senior Security Engineer Resume Examples & Samples

Lead in responding to and triaging security events and incidents, including guiding more junior staff
Identify and define system security requirements. Analyze, report on and assist in management of security-related risks, including reporting on outcomes and proposing further security improvements
Own the engineering, implementation and monitoring of specific security measures for the protection of computer systems, networks and information, to help mitigate security risks, and to automate repeatable tasks. Work with the IT Services and Applications teams to implement these controls
Perform service management for security devices, including problem, change, asset management
Work with third-party security service providers to ensure service delivery
Evaluate security aspects of computer, application, infrastructure and other IT architecture designs and make recommendations as needed
Uphold the company’s core values of Integrity, Innovation, Accountability, and Teamwork
Demonstrate behavior consistent with the company’s Code of Ethics and Conduct
5-10 years of work experience in information technology with a focus in security
Experience in building and maintaining security systems
Hands-on experience in security systems, including endpoint security, vulnerability management, network security technologies such as firewalls and IPS/IPS, content filtering, authentication systems, log management, and encryption
Thorough understanding of the security principles, techniques, and protocols, including defense-in-depth, identity and access management, AAA, CIA, network segmentation, cloud security, privileged access management, common application security flaws, and commonly known ports
Proven ability to lead a project from start to finish from the technical side
Capability to clearly communicate information security concepts and risks
Detailed technical knowledge of operating system and database security. Detailed knowledge of network and/or application security is preferable
Ability to work as part of a team and independently
Bachelor’s degree in Computer Science, Information Security or related field
Familiarity with standards and frameworks such as NIST 800-53, NIST 800-171, ISO 27001/27002
Professional information security-related certifications such as CISSP, GSEC
Previous experience working in a global environment
Willingness to accommodate other time zones
May involve some international travel
Must be a U.S. citizen as required by our contracts with the U.S. Government

191

Senior Security Engineer Resume Examples & Samples

A Bachelor's degree in Computer Science or other related field or equivalent knowledge with at least 5 years of related professional experience
Subject Matter Expertise in Information Security
Strong technical background in regards to office IT, data center and cloud operations and security
Experience with secure software development and code reviews
Excellent oral and written communication skills in English, with a proven ability to effectively interact with all levels of employees
Ability to manage multiple projects simultaneously, with competing deadlines and complete them on schedule
Significant knowledge of information security technologies, networking and network architecture required
Proven ability to manage competing priorities and work under pressure
A global perspective on privacy, security, and data protection issues and trends
Ability to multi-task and work well under pressure in a fast-paced on-time deliverable dynamic environment
Ability to self-motivate and able to work effectively both independently and as part of a team
High level overview of current information security threats, with some hands-on experience
Experience with EVE Online is valuable

192

Senior Security Engineer Resume Examples & Samples

Subject matter expertise in Blue Coat proxy servers a must. Significant experience with Firewalls (e.g. Checkpoint, Juniper, Fortinet), IDS/IPS, SSL off-loading and malware prevention is highly desired
Strong experience and detailed technical knowledge in security engineering, system and network security, authentication protocols, cryptography and application security
Hands on security troubleshooting, network-based forensics, and proficient with packet analysis tools like Wireshark, Opnet, etc
Programming/scripting and/or automation experience (Perl, Python, Ansible, Chef or Puppet)
Experience managing large, globally dispersed teams of engineers
B.S. degree in Information Technology or Computer Science (Master’s degree preferred)

193

Senior Security Engineer Resume Examples & Samples

Experience with analyzing existing network, cabling, and security infrastructure for an enterprise data center architecture comprised of switches, routers, firewalls, servers, SANs, virtual servers, Active Directory Domains and load balancers
Bachelors Degree in Computer Science or related discipline and 9 plus years experience or MS Degree and 7 years experience
US Citizen or Permanent Legal Resident status
Experience with architecting and implementing network cabling and security infrastructure for a secure and robust data center enterprise data center to meet high availability requirements to support diverse hosting platforms such as Unix, Windows, Linux, z/OS mainframe and SharePoint
Ensures potential solutions are interoperable within the existing network and security infrastructure
Experience analyzing and evaluating network and security vulnerabilities and anomalies and traffic patterns; develops mitigation or corrective action strategies
Experience with Developing IT security and network standards and policies and security plans
Ability to coordinates network and security maintenance with key stakeholders
Experience providing expert network and security consulting services on change management review process; ensure secure configuration and best practices are implemented
Previous Project leadership with interdisciplinary technical teams

194

Senior Security Engineer Resume Examples & Samples

Facilitate ACI product team interactions with external security assessors and customer security inquiries. Primary focus will be related to PA-DSS assessments coaching product team members on best practices for collecting and presenting security evidence
Drive necessary system and process updates
Oversee engineering security training activities for global engineering staff
Requires contact with technical staff and management at ACI
This person will be responsible for reporting progress for and meeting all assigned goals
Specific knowledge of software development technology and methodology
3+ years of secure Application Development process experience
Must have experience with PCI-DSS or PA-DSS audit process
Knowledge of secure application development processes, with experience as a QSA
Understanding of Application vulnerabilities and their countermeasures
Strong analytical skills with the ability to work with detailed information
Ability to effectively communicate in both verbal and written forms
Interest in application security
Must be a self-starter capable of working with peers in various geographical locations
CISSP certified

195

Senior Security Engineer Resume Examples & Samples

Experience with at least one of the following tool suites highly desired, FireEye, BlueCoat, BRO IDS, Cisco Web Proxy, or SourceFire IDS
In depth understanding of server/network builds and rouge systmes
Network Access Control Solutions

196

Senior Security Engineer Resume Examples & Samples

ACAS Subject Matter Expert
In depth understanding of vulnerability scanning tools, intrusion detection/intrusionprevention systems
Act as a SME to guide internal staff with a primary mission to proactively prevent incidents by stilizing SIEM, Vulnerability scanning and complementary technologies

197

Senior Security Engineer Resume Examples & Samples

Bachelor’s degree in related business or technical areas, or an equivalency of education and work experience
Minimum of 10 years of IT Security and/or security engineering experience
Proven project management experience, including developing project plans, schedules and budgets
Extensive knowledge of industry accepted information security best practices, standards, and policies
Experience as a team leader operating in a critical role that greatly impacts team success
Strong scripting skills (e.g., Perl, Python, Ruby, Shell script, JavaScript, PowerShell) required
Experience with enforcing security policies and standards with business owners leading by influence
Very detailed knowledge of system security vulnerabilities and remediation techniques
Critical Analysis: Identify and understand issues, problems and opportunities; compare data from different sources to draw conclusions

198

Senior Security Engineer Resume Examples & Samples

Assists in the development and automation of Cyber Security standards, specifications, procedures & practices
Develops, manages, and consults on the technical architecture for enterprise Cyber Security controls
Reviews projects and provides security standards to the technology, prescribing appropriate protection configurations that will balance business requirements with company
Investigates leading technologies in the marketplace and make assessments regarding relevance to security related technology solutions and maintains effective relationships with key technology vendors and industry professionals
Researches and maintains a deep understanding of current and emerging technologies and Cyber Security solutions to solve business problems
Supports and/or leads periodic internal and external security assessments, third-party assessments and due-diligence initiatives
Ensures security capabilities/automated controls are reviewed and compliant within defined risk levels while considering hardware/software currency, performance/availability, security and information
Defines, implements, and enforces all policies, procedures, and standards related to security monitoring and response
Partners with business and technology operations groups to maintain the Cyber Security monitoring infrastructure and tools (perimeter controls, intrusion detection / protection devices, vulnerability scanning tools, security event correlation tools, content surveillance and filtering devices)
Participates in the Computer Security Incident Response process as needed
1-2 years software development experience
Experience in Cloud Security Environment or strong desire to learn Cloud Security
Minimum of 6+ years of Information Security and Systems Engineering experience
Experience in designing and automating standards, specifications and procedures
Experience with regulatory requirements such as SOX, HIPAA or PCI
Knowledge of industry accepted information security best practices, standards, and policies
Proven ability to manage information security service and operation through effective management of resources
Demonstrated experience and understanding of business security and compliance requirements & ability to translate into well-engineered & integrated business solutions
Demonstrated ability to work independently, take initiative and be accountable for achieving results
Customer driven to understand & appropriately respond to customers' business needs
Ability to balance multiple projects and tasks concurrently in a fast paced environment
Have at least one industry Security Certification OR the willingness to obtain a certification within the first year of employment

199

Senior Security Engineer Resume Examples & Samples

Participates in development and implementation of computing center information security policies and procedures; develops security guidelines and safe practices for company-wide computing and networking systems
Acts in partnership with assigned customers businesses to proactively identify risks and remedial actions that apply to technologies for business processes
Anticipates problems and proactively manage them to resolution
Develops, facilitates, and presents information security awareness and security training throughout the company
Acts as subject matter expert to guide more junior team members through technical situations

200

Senior Security Engineer Resume Examples & Samples

Reviewing security architectures, firewall configurations, IDS/IPS, and security controls for new and proposed systems
Providing software vulnerability remediation advice to software developers and software development teams
Implementing static security testing tools within Continuous Integration systems
Experience creating secure online applications during one or more phases of the SDLC including requirements, design, development, and pre and post deployment testing
Experience developing APIs
Test and evaluate products in a lab environment
Provide input into the development of security policies and procedures
Provide detailed security recommendations for the secure development of systems
Create, test and optimize Web Application Firewall (WAF) profiles
Provide security operations support as needed
Evangelize security within the organization and be an advocate for customer trust
Bachelor’s or equivalent and 8-10 years of professional IT experience
At least 3 years of hands on experience with virtualization, system, network and/or application security experience
Knowledge of Firewalls, IDS/IPS, intrusion detection, VLANS, routing and other network security technologies
Knowledge of virtualization technologies including virtual firewalls, networking and segmentation

201

Senior Security Engineer Resume Examples & Samples

Maintain existing product security requirements
Complete security specific feature enhancements
Remediate security defects
Implement package updates to resolve vulnerabilities
Develop and review compliance test cases
Participate in FIPS, NIST, STIG compliance activities
Design and implement compliance feature requirements
BS degree in Computer Science, Computer Engineering, Electrical Engineering, or 7+ years’ equivalent technology experience
7+ years of demonstrated advanced software development proficiency (C/C++, Python, Perl, Java, etc.)
5+ years of server-side Java experience, including 2+ years of experience with web application vulnerability testing (e.g. source code analysis, penetration testing)
Experience implementing FIPS, STIG, NIST, Common Criteria/EAL compliance requirements
Proficiency in Development experience on Linux/UNIX platforms
Proficiency in Linux packaging (RPM, DEB, BitBake)
Comprehension of algorithms and processes for programmatic automation via scripting or programming languages
Well-rounded background in host, network and application security
Detailed knowledge of standards for authentication and authorization
Understanding of web application architecture and security issues
Experience with security assessment tools and products
Experience with web application servers

202

Senior Security Engineer Resume Examples & Samples

Industry-adopted security certification (e.g. CISSP)
Minimum 3 years’ professional work experience
Experience with vulnerability management software (Nessus preferred)
Experience in managing identities in Azure preferred
Familiarization with use of SSO and/or IAM products in a corporate environment
Utilization and management of corporate security tools including, but not limited to
Ability to work well with limited supervision
Motivated towards accomplishing goals and come up with various solutions to mitigate issues in a competitive and exciting corporate environment

203

Senior Security Engineer Resume Examples & Samples

Thoroughly and accurately understand issues and analyze the problem in a systematic fashion
Act as trusted security advisor to the Client as initial go-between for Client and the West Monroe Partners Security Operations Center (SOC) for escalations
Analyze each client's specific request and determine the underlying problem and recommend proper solution
Design and create information security and processes (e.g., vulnerability mgmt., incident response, event monitoring, etc.)
Keep Client abreast of problem status, set clear expectations, and provide timely follow-up to Client
Independently handle challenging Client situations
Provide reporting to Client personnel on a regular and ad-hoc basis
Compiles and analyzes data for management reporting and metrics
Work with client management and provide written and oral status updates; facilitate and lead meetings in both a project and escalated incident setting
Perform other duties as required or assigned

204

Senior Security Engineer Resume Examples & Samples

Creates and maintains information security alerts from firewalls, IDS, OS, Anti-Virus, web application firewalls, and servers though the use of a SEIM and related tools to respond, triage, and resolve or escalate as needed
Analyze data and prepare reports that document vulnerabilities from network based attacks and recommends actions to prevent, repair or mitigate these vulnerabilities
7-10 Years of enterprise experience with information security
GIAC Security Essentials (GSEC) or Equivalent
6+ years of experience in the related technology fields
Extensive experience with network security devices such as firewalls, Intrusion Detection/Prevention, web application firewalls, and SIEM tools
Strong knowledge of Cisco ASA Sourcefire Firewalls
Strong knowledge of Junior Firewalls
Broad knowledge of Enterprise Infrastructure concepts and best practices as they relate to Cyber Security and incident response. Advanced GIAC certifications preferred
Highly motivated and able to work independently and as part of a high performing team
Understanding of common x86 host virtualization infrastructure
Understanding of common services (e.g. SSL, HTTP, FTP, NTP, NFS, SSH, LDAP, etc.)
Deep understanding of packets, network traffic, and the OSI model

205

Senior Security Engineer Resume Examples & Samples

Install, configure, test and maintain Security systems, application software and system management tools
Manage and monitor all installed systems and infrastructure
Proactively ensure the highest levels of systems and infrastructure availability
Monitor and test Security architectures, identify possible solutions, and work with “developers” to implement those fixes
Maintain security, backup, and redundancy strategies
Write and maintain custom scripts to increase system efficiency and lower the human intervention time on any tasks
Participate in the design of information and operational support systems
Provide 2nd and 3rd level support
Liaise with vendors and other IT personnel for problem resolution
Proven working experience in installing, configuring and troubleshooting UNIX /Linux based environments
Proven working experience in installing, configuring and troubleshooting Windows based environments
Solid experience in the administration and performance tuning of application stacks (e.g. Tomcat, JBoss, Apache)
Solid Cloud experience
Thorough understanding of virtualization and containerization concepts (e.g., VMware)
Solid scripting skills (e.g., Power shell scripts, Perl, Python)
Solid networking knowledge (OSI network layers, TCP/IP)
Professional experience showing ability to research, develop plans and procedures, coordinate, schedule projects and prioritize work; demonstrating ability to respond to multiple projects within acceptable time frames, and ability to prepare and maintain accurate reports and records
Professional experience demonstrating the ability to establish and maintain effective working relationships with all levels of employees and contractors, to prepare reports and to communicate ideas effectively, both orally and in writing
Ability to proactively self-initiate and continually expand professional development of all necessary skillsets, as well as keep abreast of related emerging technologies that would be used from a wide variety of sources (i.e., self-paced online training, training materials, and some training courses as available)

206

Senior Security Engineer Resume Examples & Samples

Promote innovation within the technology control environment driving control optimization, process efficiency, and improved client experience
Develop an integrated technology control framework maintaining the appropriate balance between risk mitigation, product growth, and financial returns
Partner closely with business and technology stakeholders providing clear direction and guidance to manage risks, optimize returns, and enhance the client experience
Proactive engagement with Technology Control Managers
Collaborate with ADMs on Internal Audits, and regulatory assessments
Drive the Technology Control education agenda
Lead Technology Control forums across multiple application areas
Ensure escalation of material issues to senior technology management
Minimum 10 years of technology experience

207

Senior Security Engineer Resume Examples & Samples

Applies leading-edge principles, theories, and concepts to the development, maintenance, and implementation of information security standards, procedures, and guidelines
Responsible for the prevention, detection, investigation and response with respect to security threats and attacks. Facilitates and manages security vulnerability assessments and penetration tests
Plans and oversees configuration changes for major security infrastructure platforms
Evaluates, designs, implements, and provides operational support of remote and mobile communications access infrastructure components and client components
Troubleshoots and resolves technical issues related to remote access services

208

Senior Security Engineer Resume Examples & Samples

Act as a primary point of contact for all issues related to Information Security Operations and technology
Manage multiple security projects simultaneously
Maintain hardware and software tools used to support Information Security Operations functions
Act as a technical security advisor for less experienced Security Analysts
Lead incident response and investigations of suspected information security events, misuse or compliance reviews and provide root cause analysis within documented incident reports
Assist in responses to internal and external compliance audits, e-Discovery data collection, penetration tests and vulnerability assessments
Coordinate maintenance of security-related systems (Anti-Virus, Logging, Content filtering, Intrusion Prevention, Security Incident and Event Management, Syslog, etc.)
Maintain general working knowledge and awareness of concepts such as Identity & Access Management (IAM), Access Controls, Authorization, Encryption of data at rest / in transit, multi-factor authentication, web application firewalls, etc
Maintain runbooks for Information Security tools and create new runbooks for newly implemented security technologies
Review system designs and architectures and make security-related recommendations
Validates and tests existing security infrastructure to establish continual improvements and enhancements
Recommend enterprise-level information security policies and standards
Responsible for training new Security Analysts on Apollo’s cutting edge security tools
Coordinate changes for the Information Security tools and submit all change requests through the documented change control process, while also participating in the established change control process
Document and maintain appropriate OLAs/SLAs within Apollo Technology
Provide input and assist in collection of established metrics for reporting
Conduct analysis on existing and emerging threats and provide appropriate recommendations for remediation
Participate in an on-call rotation in support of the 24/7 Security Operations Center
Subject Matter Expert (SME) level knowledge of security tools, trends, methodologies, and best practices for securing platforms and operating systems at the server, client, and handheld level
Intimate knowledge of industry frameworks related to information security (e.g. ISO 27000, NIST, etc.)
Expert knowledge of information security risks and counter-measures for Windows and Unix/Linux platforms
Demonstrates the ability to create and manage Security solutions with a high degree of integration
Strong understanding of regulatory requirements (PCI, SOX, GLBA) and how they impact information security functions
Demonstrate strong communication skills required to discuss and present complex engineering principles
Demonstrated ability to work effectively in a collaborative team environment as an individual contributor
Ability to provide support after normal business hours, as needed
Resourceful, creative, innovative, results driven, and adaptable
Open to potential travel when/if the position deems necessary

209

Senior Security Engineer Resume Examples & Samples

Familiarity with information security and key management concepts and protocols like KMIP, PKCS; knowledge of the security market and products is a plus
Proficient in C and one or more of the following: Java, SQL, Python, Ruby, Java Script, shell scripting
Familiarity/experience with SDK/API design
Good understanding of OS concepts, especially LINUX
Willingness to assist others
Willingness to ask for help
Have a personal connection to the work that you do

210

Senior Security Engineer Resume Examples & Samples

Define configuration standards, processes, and metrics for security controls
Provide security consulting to internal project teams and departments regarding security standards and requirements
Evaluate various software, hardware, or other technologies for possible application to enhance security of Prime’s systems and data
Bachelor’s degree in computer science or related area of study or equivalent combination of education and/or work experience
Current industry recognized security certification (CISSP, GIAC, CRISC, etc.)
6 years in the Information Security field
6 years in Information Technology
Ability to manage multiple priorities
Ability to facilitate meetings with technical and non-technical staff
Proven experience with definition, implementation, and support of technical security controls in an enterprise environment
Experience working in environment with regulatory compliance requirements (HIPAA, PCI, etc.)
Current experience with common types of preventative and detective security controls (IDS/IPS, malware detection, encryption, security event management, etc.)
Experience with security configuration and administration on a variety of types of networks, operating systems, and applications

211

Senior Security Engineer Resume Examples & Samples

Coordinate, manage, and facilitate compliance processes with internal and external stakeholders to provide timely deliverables and rapid remediation
Identify, assess, and advise on IT and business-related risks and control weaknesses continuously
Deliver project reporting utilizing tools to track planning, scheduling, issues, risks and overall status of compliance efforts
Drive the coordination and execution of ongoing data governance, access management, data protection, secure SDLC and security monitoring processes proactively across Walmart eCommerce business and corporate environment
Assist with technical issues and advise on control requirements as needs arise

212

Senior Security Engineer Resume Examples & Samples

3+ years hands-on experience with security tools such as McAfee ePO, VSE, HIPS, Application control, DLP, etc
Direct experience with and advanced knowledge of Windows system administration and maintenance, including deep knowledge of the registry, file system, processes, services, and security
Ability to document deployment scheduled, test plans, knowledgebase articles

213

Senior Security Engineer Resume Examples & Samples

Coordinate vulnerability assessments of operating systems, applications, databases and network infrastructure components to detect, enumerate and classify major vulnerabilities for performing trend analysis and reporting to Enterprise customers through the use of vulnerability assessment tools and methodologies
Investigate intrusion detection events by monitoring, analyzing and reporting on all network and application communication specific protocols for unwanted manipulation to systems, malicious network traffic, network attacks against vulnerable services, data driven attacks on applications, host based attacks or unauthorized access to sensitive data
Assist with design, architecture and implementation of the risk management program utilized to assess and measure the physical, administrative and technical controls of the ambulatory surgery center environment
Demonstrate advanced security knowledge and experience on technologies and methodologies as it relates to operating systems, firewalls, proxies, access controls, encryption, networking, programming/scripting, auditing, vulnerability assessments, intrusion management and operations management to assist the IT team with effective research, data gathering, analysis, metrics reporting and communications
Provide guidance using specialized knowledge and tool sets to operational teams during enterprise wide crisis scenarios, e.g. large-scale production service outages, outside of the routine change management process
Participate in Envision Healthcare Enterprise Security planning, assessment and technology selections
Experience in anomaly detection (signature / behavioral)
Experience of TCPIP/UDP/ICMP
Knowledge of the OSI Reference Model
Advanced experience of Networking components (routers, switches, load balancers, wireless access points, etc)
Advanced knowledge of client/server relationships
Common knowledge of relational databases and structured query language
Experience with vulnerability assessments
Common knowledge of Virtual Private Networking
Common knowledge of multi-tier environments
Experience with packet inspection / sniffers

214

Senior Security Engineer Resume Examples & Samples

Act as a trusted technical security advisor to all levels of the organization for a variety of information security projects that arise from current business and technological developments
Ability to automate basic integration, data collection, scripting and reporting tasks via secure coding standards
Innovate and solve problems independently, find the best solution and present that to your partners
Know your limits and use resources and the team to improve solutions presented
5+ years information security experience preferred
Proven ability to assess, influence, recommend, deploy and integrate Information Security solutions
Foundational understanding of several enterprise environment technologies, security domains, or telecommunications infrastructure and architecture
Familiarity with current legal and regulatory requirements around information security and privacy, including PCI, SOX, CPNI, etc
Available for work in Bellevue, WA
CISSP Certification (active or former) or related experience

215

Senior Security Engineer Resume Examples & Samples

Expert in at least 3 of these areas in security – System, Web, Network, Mobile, Cloud, Windows, Cryptography
Capable of writing exploits for identified vulnerabilities in the area of expertise
Proficiency in System Internals (Windows or Unix)
Demonstrated understanding of Computer Science fundamentals (OS, Networks)

216

Senior Security Engineer Resume Examples & Samples

Identify problems and errors prior to or when they occur, and log all such incidents in a timely manner with the required level of detail with all the necessary
Investigate assigned third line support calls and identify the root cause of incidents and problems, and ensure the efficient and comprehensive resolution of incidents, events, problems and requests
Ensure the preparation of assets and tools for new users (employees) by installing software and hardware to computers and assist with the configuration of devices for users who choose to bring their own devices to work
Work shifts and must follow the required handover procedures for shift changes to ensure service continuity

217

Senior Security Engineer Resume Examples & Samples

Contract to Hire2. Seaport location, casual office culture, start-up vibe
AgileNICE TO HAVES
Any AWS cert (CH/CISP/OSCP etc)

218

Senior Security Engineer Resume Examples & Samples

Support the delivery of the program activities to ensure they are delivered safely, on time, to budget, meeting business & technical requirements
Monitor the progress of the program - track progress against milestones, deadlines, and provide key stakeholders with reports on these matters
Anticipate, manage and resolve issues within the program. Identify risks and facilitate the resolution of all issues raised, develop, and update the programme and escalate any issues to the Engineering Manager
Interface with other programs to ensure a high-level view of how the total project is progressing and to identify and adopt the use of best practice
Degree qualified or equivalent experience in Electrical or Electronics Engineering
Knowledge and / or practitioner of Project and Programme Management
Knowledge and / or experience of the Saudi Aramco Projects security equipment approvals process
Minimum 10 plus years of experience in similar discipline in Oil & Gas Project especially in Aramco Projects or GCC region Projects

219

Senior Security Engineer Resume Examples & Samples

BS or BA in Computer Science, Information Systems, Information Technology or a related field or 4 years of equivalent Security or Compliance-related experience
5+ years’ professional experience in a cloud-based or online services security engineering or service engineering role
5+ years’ experience in a compliance related activity in a cloud-based or online services environment
5+ years’ experience in program management, ideally creating a security framework, SIRRP process and/or forensic handling methods
5+ years’ experience in working on large-scale online cloud based services
Experience creating a reusable security framework working with Corporate security and broader corporate programs highly preferred
Have either worked on or been part of an online service compliance team and have completed 2 or more annual audit cycles is highly regarded

220

Senior Security Engineer Resume Examples & Samples

Hands-on experience supporting network, operating system, database, application & data layers across multiple platforms and technologies
Ability to assess risks and provide innovative countermeasures and solutions that appropriately balance security and business requirements
Ability to step into an uncontrolled space and bring security structure
Provide guidance to security analysts, PMs, business partners and IT leadership when new projects are introduced to the business or new risks are identified

221

Senior Security Engineer Resume Examples & Samples

Bachelor’s Degree in Computer Science or 4+ years of hands-on industry experience in embedded system/SCADA domains
Strong knowledge of one or more programming languages like C and C++ and one scripting language
Familiar with system security vulnerabilities and remediation techniques, including penetration testing, development of exploits and incident response
Strong written and verbal communication skills to convey complicated concepts in a simple manner
Master’s degree in Computer Science or any engineering discipline & 5+ years of hands-on industry experience
Prior experience with security in multiple domains (Network security, System/OS security) and experience with compliance regimes (SOX, HIPPA, FedRamp etc.)
Exposure to machine learning/statistics as applied to the security space

222

Senior Security Engineer Resume Examples & Samples

Breaking and subsequently fixing a vulnerable web app
Lateral network movement (Active Directory environment)
Dumping and cracking hashes, pass-the-hash attacks
Strong communication skills are a must. Must have an approachable personality and the ability to clearly communicate and educate others regarding the information security risks and best practices

223

Senior Security Engineer Resume Examples & Samples

Architect, design, implement, support, and evaluate security-focused tools: Firewalls including Next Gen Firewalls, IDS/ IPS, HoneyPots, Encryption, Vulnerability Assessment and Analysis, SIEM, NAC, End point security
Identify security issues, risks, and develop mitigation plans
Develop, interpret, and enforce security policies, standards, and procedures
Participate in large-scale security compliance efforts
Participate in Tier 1-3 security operations support
Participate in incident response, mitigation, and recovery
Enhance current reporting and alerting systems
Consistent implementation of security solutions including but not limited to: IDS/IPS, Anti-Virus, PKI, Two-Factor Authentication, and Threat Intelligence
A minimum of 4-6 years’ experience in an enterprise security role
Vulnerability testing including: Retina, Nessus, Gold Disk, Qualys, etc
Network security experience: Firewalls, NAC, 802.1x
Strong understanding of virtual security appliances
Basic understanding in CDN Security services: WAF, DDOS protection
Penetration testing experience is a plus
Application Security experience is a plus
Knowledge of tools such as Kali Linux, Burp, Wireshark, etc
Reporting and managing security alerts, response, and root cause
Must be able to clearly communicate technical concepts to non-technical teams
Hands on experience of network/web related protocols (e.g., TCP/IP, UDP, IPSEC, TACACS, HTTP, HTTPS, Switching and Routing Protocols)
Certifications such as: Security+, CISSP, CISA, CISM, GIAC / GSEC, CEH
Experience with SAML 2.0 and OAuth 2.0 desired. Basic understanding of identity management providers
Have the hacker mindset

224

Senior Security Engineer Resume Examples & Samples

Help shape security standards, procedures and guidelines for IT security controls and policies; evangelize, communicate and build consensus for adoption of policies company wide
Provide internal security assessments of all new technology being delivered by Internal IT or acquired with partnerships with SaaS companies by participating in the life cycle of technology projects
Provide security assurance against cyber-attacks, which may include (but not be limited to) DOS, DDOS, data loss and other malicious cyber activities, which could negatively impact the company and/or our Customers
Track, document and manage all open security related problem reports and remediation within the team to the IT management and CISO
Research, evaluate and recommend information security related hardware and software to maintain a strong security posture, including developing business cases for security investments
Conduct periodic risk assessments, penetration testing, and vulnerability assessments
Develop and validate baseline security configurations for operating systems, applications, networking and telecommunications equipment
Monitor periodic reports and analyze security logs for unusual events and trends
Provide expert level support and analysis during and after a security incident
Participate in security investigations and compliance reviews as requested by internal or external auditors
Help conduct Security Awareness Training for employees at all levels
Research and assess new threats and security alerts, and recommends remedial actions
Document and report on annual security reviews, residual risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance

225

Senior Security Engineer Resume Examples & Samples

Act as the subject matter expert and trusted advisor to internal teams for the following services
Threat Management
Monitoring, Analysis, and Hunting
Incident Response and Forensics
Secure Configurations and Architectures
Provide technical leadership for Compliance initiatives (SOX, PCI, primarily)

226

Senior Security Engineer Resume Examples & Samples

Works with the Information Security Officer and lead architect to design, implement, support and maintain existing security infrastructure including cloud-based deployments
Maintains and improves key elements of the Security Program through the implementation of security tools, processes, and procedures as well as operation of existing tools and controls
Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments; proactively address internal control concerns and best practices
6+ years of hands on experience in implementing and operating security technologies in a corporate environment
Understanding of technical standards (preferably CIS) and their implications
Understanding of server and network configurations with regards to industry best practices related to

227

Senior Security Engineer Resume Examples & Samples

SIEM and Log Management
DLP and Data Classification
Exception Handling
Public and Private Key Encryption
Configuring and designing per License versioning

228

Senior Security Engineer Resume Examples & Samples

Identifying logging gaps in ingress security visibility and rule coverage
Building and maintaining log flow for ingress security alerts
Building and maintaining drilldown dashboards for ingress security visibility
Building and maintaining automated alerts and notifications for security events
Working with Security Operations Center to create meaningful alerts
Working with Security Operations Center to assist with analysis

229

Senior Security Engineer Resume Examples & Samples

The program is looking for two Senior Level Security Engineers
One to work as an Archer Engineer with workflow creation
Another as a General Security engineer to support Splunk, ArcSight, Archer, Network Security tools, other various SIEM tools
Clearance Level: All candidates must be eligible to obtain and maintain a minimum of a DOD Secret clearance with ability to obtain TS/SCI Clearance, and be processed for a DHS EOD
Minimum of five (5) years of experience in system administration, database administration, network engineering, software engineering, or software development, with a concentration in Cyber Security
If the candidate has a bachelor’s degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field, three (3) years of experience in incident detection and response, system administration, database administration, network engineering, software engineering, or software development is required
Experience in DHS, cyber government, and/or federal law enforcement
Change management (CRs, CCBs, etc)
Security architecture development
Operations and maintenance
Performance metrics related to security operations
Experience identify new tools and/or required upgrades based on ROI'

230

Senior Security Engineer Resume Examples & Samples

Application security review
Penetration testing
Minimum of 5+ years of experience with any combination of the following: threat modeling, manual code review, automated code review, penetration testing, cryptography, identity management and authentication, access control, or system and network security
An understanding of cryptography algorithms, and authentication and security protocols (such as, AES, RSA, IPSEC, TLS)
Strong understanding of common security vulnerabilities such as OWASP Top-10, SANS Top-25
MS in computer science or equivalent desired
Consistent implementation of security solutions at the departmental level
5+ years experience in infrastructure (system, network) and/or application security experience

231

Senior Security Engineer Resume Examples & Samples

Serve as an internal subject matter expert for information security issues, trends and leading practices, maintaining an in-depth holistic understanding of attack vectors, current threats, and remediation strategies
Conduct reviews on new and existing infrastructure to identify gaps and recommendations in current solutions and processes to remediate risks
Contribute to the development and execution of Zynga’s overall Information Security strategy
Participate in carrying out varying security risk assessments, providing advisory support to corporate/studio contacts on the evaluation of risks, development of risk responses, and work with stakeholders to define and implement process enhancements
Implement and own security solutions that provide visibility into security issues inside the company (vulnerability scanners, endpoint security, intrusion detection/prevention, network analysis, security event management)
Perform discovery and vulnerability scans on networks and validate findings through penetration testing
Perform application security reviews leveraging commercial and open-source solutions
Contribute to the development and maintenance of documented security solution run-book procedures and techniques
Build complete security solutions by integrating off-the-shelf and custom security tools
6+ years experience in information technology with a minimum of 4 years information security and risk
Strong ability to manage and report on multiple projects concurrently, prioritizing efforts, managing time effectively, and requiring minimal supervision in the execution
Demonstrated problem solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a fast-paced, agile environment
Strong understanding or ability to rapidly learn the technology and social gaming industry and desire for expanding core competencies
Deep understanding of information security specifically around continuous monitoring and automation techniques
Proficient experience and thorough understanding of adversarial tactics, techniques, and response mitigation procedures
Solid team player, collaborating well with others to solve problems in a team-focused dynamic
Excellent written and communications skills, as well as strong interpersonal and relationship building skills
Self-starter, capable of working independently and in a team environment
Excellent meeting facilitation, presentation, report-writing and demonstrated attention to detail
Sound knowledge of industry approaches related to network device and system-level hardening best practices
Sound knowledge and experience with administering and securing Windows and Linux systems
Prior experience with implementing and administering network security, incident response, full packet capture and malware detection solutions including network architecture and security infrastructure placement
Professional information security related certifications
Experience in social media, technology, and/or gaming industry
Previous experience in a solutions engineering professional services role desirable

232

Senior Security Engineer Resume Examples & Samples

Perform proof of concepts to evaluate technologies and be able to function as the top escalation point for Information Security controls and risk decisions
Identify emerging trends in the industry and establish strategic guidance related to best practice approaches for address those trends as they relate to Zynga
Contribute to the development and execution of Zynga’s overall Information Security strategy focusing on identifying protection goals, objectives and metrics consistent with addressing trends, threats and opportunities
Participate in security design discussions, providing technical engineering and operational guidance to partner teams, studio contacts and senior management
Proactively identify security flaws and vulnerabilities, and can think both like an attacker and defender
Work with security intelligence feeds from industry / peers to continuously identify new and improved indicators of compromise detection signatures for monitoring and detections technologies
Provide training and mentoring to information security team members and partner teams
Build out the continuous security assessment program and the capabilities required to alert, address and respond across the organization
Respond to cyber security incidents by collecting, analyzing and preserving digital evidence, providing a point of escalation for incidents within various business units and studios
Coordinate assessments and exercises with external professional services firms relating to penetration testing, breach response and other related risk assessments
6+ years experience in information technology with a minimum of 4 years information security and/or IT risk experience in a range of security disciplines
Strong ability to manage and report on multiple projects / system deployments concurrently, prioritizing efforts, managing time effectively, and requiring minimal supervision in the execution
Security Engineering and/or Sys Admin experience managing, analyzing and securing systems
Knowledge of cloud based security issues and related activities relating to security architecture and design
Passion for continued professional development and ongoing learning
Desire to participate within the security community through events and conferences, supporting the sharing of information security knowledge and expertise
Sound knowledge and experience with administering and securing Windows, Mac OSX and Linux environments
Ability to thrive in a startup-like environment

233

Senior Security Engineer Resume Examples & Samples

Investigate intrusion incidents, conduct forensic investigations, conduct incident responses
Analyze and advise on new security technologies and program conformance
Conduct internal and external security audits
Manage network, intrusion detection and prevention systems
Recommend and install appropriate tools and countermeasures
Manage and Maintain File Integrity Monitoring(FIM) and Security Information and Event Management systems(SIEM) consoles
Review and ensure patch management best practices are applied
Experience with SIEM and tools (Qradar, ArcSight, AlertLogic and/or others e.g.)
Exposure to other tools also a bonus … Rapid7, various forensic tools
Minimum of 2-3 years of FIM administration and configuration
Understanding of file integrity monitoring and configuration management best practices
A minimum of seven years of experience securing Windows and UNIX systems
Strong understanding of Windows and Linux file systems
Working knowledge of PCI/SOX/other compliance standards as they pertain to file integrity monitoring
Participation in the Security Services on call rotation

234

Senior Security Engineer Resume Examples & Samples

BS in Computer Science
At least 8 years of relevant industry experience
Understanding of common constraints and limitations of multiplayer/online games
Understanding of common vulnerabilities and exploitation methods of multiplayer/online games. High level as well as low-level operating systems internals (iOS, Android, compilers, decompilers, linkers, interpreters, and virtual machines)
Understanding or knowledge of common industry wide solutions to prevent fraud or security vulnerabilities
Knowledge on internal architecture of game engines, common multiplayer/online game components and systems, peer-to-peer and client-server models for games
Reverse engineering of game code for the purpose of stealing secrets and modifying game behavior
Network based security testing of games Anti-Tamper Technologies

235

Senior Security Engineer Resume Examples & Samples

Protect systems by defining access privileges, control structures, and resources
Perform regular vulnerability scans of environment and recommend prioritized remediation of vulnerabilities found
Uncover security violations and inefficiencies by conducting audits
Provide a quarterly report on the status of PubMatic physical, data, and application security; include recent improvements and future recommendations
Attend educational workshops and read industry publications to grow technical knowledge and stay current on trends
Respond immediately to security-related incidents and provide a thorough post-event analysis
B.S. in Computer Science OR equivalent technical experience
GIAC Certifications (GSEC, GIAC, GMON, GCIH, GPEN, or GWAPT)

236

Senior Security Engineer Resume Examples & Samples

Leads efforts in cyber security design and risk management while taking into account business goals, compliance, infrastructure planning, and daily operations
Participates in the technical aspects of strategic decisions regarding cyber security for the enterprise
Implements and maintains various technical security platforms for the enterprise
Works with other IT teams to troubleshoot potential operational issues related to security solutions
Researches and maintains knowledge in emerging security technologies and the emerging cyber threats to the business
Responds to potential security incidents, providing expert analysis, recommendations, catalogues of IOC (indicators of compromise), and root cause analysis
Audits IT systems for vulnerabilities and unsupported configurations
Provides guidance and assistance to other IT teams to harden systems

237

Senior Security Engineer Resume Examples & Samples

Push the boundaries of security technology to create defenses for large scale production infrastructure and networks
Provide subject matter expertise on network architecture and security
Perform security assessments of production, corporate, and cloud infrastructure
Define and implement network access control policies across routers, switches, firewalls, and hosts
Harden our networks against attacks
Instrument systems to enable detection of intrusions
Create services and tools to manage the security of our network
Support all aspects of the Uber Advanced Technologies Group

238

Senior Security Engineer Resume Examples & Samples

Vulnerability management and Mitigation approaches
Threat modeling tied to security services
Secure architecture design
Security tool assessment and development
Security metrics development, delivery and improvements
Minimum of 5 years of experience with any combination of the following: mobile security, threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security
Vulnerability Mitigation, Scanning, Patching and/or threat mitigation approaches in large diverse enterprises

239

Senior Security Engineer Resume Examples & Samples

Provide the technical leadership needed to continually improve security posture of TiVo Infrastructure and services and push to ensure disaster recovery efforts are in place
Perform threat modeling and risk assessment, document and present the findings to the business leaders
Establish collaborative working relationships with the businesses, functions, and regions to ensure that IT solutions align with security architecture and business strategy
Develop security requirements for applications, End-points including mobile devices, local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, application firewalls, wireless network and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software
Research and assess new threats and security alerts and recommend remedial actions
Articulate security assessment reports to management and provide guidance on remediation

240

Senior Security Engineer Resume Examples & Samples

Experience building and automating reports, dashboards, and alerts
Strong understanding of eCommerce sites and how they operate
Know at least 1 scripting language
Able to quickly learn existing security processes and initiate improvements based on current web security needs
Experience coding in Lua or Go
Experience with retrieving/analyzing data from HDFS
Experience with publishing to or streaming from Kafka

241

Senior Security Engineer Resume Examples & Samples

Conduct periodic vulnerability testing of Enterprise products, platforms, systems, and applications to identify any weaknesses which may pose risk to the customer or company, as well as drive remediation efforts across Development, QA, and Engineering teams
Develop and implement an application threat modeling processes for use in managing overall risk for Enterprise products and services
Configure and maintain a suite of security testing tools for the Enterprise business unit, to include: vulnerability updates, scope, scan policy creation, report generation, etc., as well as managing the integration of vulnerability data into security reporting dashboards
Advise and train Enterprise teams with respect to following best practices for security testing, compliance with various standards and making effective use of automated functions within Continuous Integration processes
Collaborate with SQA team to draft, update and expand Security Test Plans to ensure product/service security features are fully/effectively validated, and that reasonable customer/partner expectations for secure enterprise products and services are met
Work with QA teams to develop and implement a self-service vulnerability testing model, supporting dynamic development and rapid delivery models
Maintain vulnerability testing evidence in support of various regulatory requirements across Enterprise products, services, and platforms
6 years of relevant experience and a Bachelor's degree in Computer Information Systems or other related technology-related field or its equivalent
Minimum of one Information Security certification(s): for example: CISSP, CISA, CISM, GSEC, CPT, CIH
Minimum 3 years experience with the design and testing of secure networks, systems and application architectures
Minimum 3 years experience with security assessment tools, technologies and methodologies. To include: Vulnerability Scanning, Webapp Testing, AppSec Penetration Testing, Risk Assessment Frameworks
Minimum 3 years experience in identifying application security gaps and weaknesses across multiple platforms and coding languages (e.g. C, Java, C#, Javascript, web services, REST)
Minimum 2 years experience managing ongoing security testing requirements across multiple compliance frameworks (e.g. PCI, SOC 2, HIPAA, FedRamp)
Minimum 2 years experience managing security operations activities, including: security event monitoring, incident response, firewall and user access reviews
Minimum 2 years experience in a system administration role supporting windows/linux operating platforms and applications
Previous administration of AWS infrastructure and services, including security control implementations
Application development (C, Java, Python, Javascript, Web Services)
SOC or NOC experience
Red/Blue team experience
Familiarity with DevOps/SecOps concepts
Vendor certifications (optional): MCSE, CCNA, JNCIS-SEC, AWS-SA, etc

242

Senior Security Engineer Resume Examples & Samples

Strong understanding of the Ethical Hacker processes and procedures in a high security environment
Minimum of 4 years performing Ethical Hacker/Blue Team/penetration testing and vulnerability assessments
Expert level experience working with tools such as; Tenable Nessus, Saint, Cobalt Strike, Acunetix, MetaSploit, Burp Suite, Splunk, QRadar, etc
Organize and write supporting documents/artifacts describing penetration testing and vulnerability assessment activities (including detailed rules-of-engagement documents and step-by-step procedures)
Create documentation on specific remediation steps to close vulnerabilities or mitigate risk to acceptable levels
Revise documents and artifacts as tactics and technics evolve to address new and emergent threats and trends
Work with network Security engineers to provide training on remediation and avoiding future vulnerabilities
EC-COUNCIL CERTIFIED ETHICAL HACKER (CEH)
GIAC CERTIFIED FORENSIC ANALYST CERTIFICATION (GCFA)
GIAC CERTIFIED INCIDENT HANDLER (GCIH)
CISCO SECURING CISCO NETWORKS WITH THREAT DETECTION AND ANALYSIS (SCYBER)

243

Senior Security Engineer Resume Examples & Samples

Deliver technical security projects, using architectural designs and requirements as inputs, to the operations function
Write, maintain, and follow security documentation including processes, procedures, and operations manuals
Keep abreast of security advisories and alerts, information on security trends and practices, and IT implications of regional data laws and regulations
Manage security projects and provide expert guidance on security matters for other projects
Communicate with technical and non-technical audiences at various levels
Develop and maintain strong working relationships with key IT and business contacts
Expert knowledge of security tools, techniques and implementation into enterprise environments
Knowledge of IT Security Governance frameworks & practices
Knowledge of the ITIL framework
Hold a professional security management certification, such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) or other similar credentials are highly desirable
Relevant vendor certifications are highly desirable
Formal training and Certification in ITIL or Project Management is desirable

244

Senior Security Engineer Resume Examples & Samples

Performs analysis and diagnosis of highly complex Security problems
Performs analysis of Security designs
Builds simulated networks in test labs to resolve highly complex problems and compatibility issues
The NCE may perform any of the following components of the role breakdown depending on specific engagements
Generates standard project documentation including detailed test plan for highly complex networks
Generates network configurations
Supports pre-sales activity for highly visible security initiatives
Plans and executes highly complex Security Upgrade and Security Migration activity
Proactive Service & Support
Assists customer with deployment and strategy of Security tools and systems

245

Senior Security Engineer Resume Examples & Samples

(Application Security, Red team, 3rd party penetration testing, risk analysis)
SME level consultation and team representation, and other security governance activities
Leading new projects to close gaps and improve security posture
Must have 5+ years of experience within application security or equivalent web/mobile development experience
5+ Years working within a security discipline for a mid to large corporate enterprise
Work history includes performing application security assessments using enterprise-grade & open source tools as well as manual testing methods
Excels at time management
Working Knowledge of Cloud, IAAS, and CI/CD automation preferred
Solid problem solving skills, ability to perform in a fast, dynamic environment built on multi-vendor security controls
Advanced understanding of common IT security controls and protocols
Innovative, creative and forward thinker

246

Senior Security Engineer Resume Examples & Samples

Take direction from customer project manager and perform PKI related project tasks
Install, manage, maintain and configure existing Entrust PKI systems. Provide in-depth subject matter expertise for engineering support related to PKI systems
Provide PKI support for customer staff working on PKI related projects
Work with engineering team leads to support PKI deployment initiatives
Analyze current architecture components and provide recommendations for improvement, especially as it relates to industry best practices
Troubleshoot and resolve technical problems
Act as a liaison between customer staff and Entrust Datacard for all PKI related matters, including ongoing support and administration, problem resolution and escalation, and product feedback
Participate in PKI program management meetings
BS or equivalent in computer programming, engineering, or related fields OR equivalent technical experience (military or civilian)
Applicant MUST be a US citizen and have full time availability
Applicant must have Entrust PKI experience
Knowledge of PKI related technologies such as LDAP directories, HSMs, OCSPs) and security practices
Knowledge and experience working within large enterprise infrastructures
Applicants must be motivated and willing to lean new technologies
Ability to work full time, onsite, in the Dallas, TX area
Hands on experience deploying, supporting, and managing the Entrust Authority Security Manager product and complimentary Entrust products

247

Senior Security Engineer Resume Examples & Samples

Bachelor’s Degree in Computer Science or related work experience
ITIL experience or certification is a plus
CISSP or CEH certification is a plus
Experience in SOC1/SOC2, Sarbanes Oxley, or related auditing requirements
Demonstrated technical familiarity with basic networking (Routing, DNS, DHCP), Microsoft server, Unix (Linux and Solaris), firewall administration, encryption technologies (SSH, SSL, IPSec), intrusion detection technologies, anti-malware technologies, and security information event management (SIEM)
Ability to perform penetration testing and vulnerability testing
Ability to work and communicate with coworkers and users under pressure
Ability to communicate with all levels of management
Strong customer-service orientation
Evening and weekend work may be required

248

Senior Security Engineer Resume Examples & Samples

Experience in building and maintain security systems
Advanced Administration, documentation, and support for leveraged and dedicated client services
Conduct advanced technical reviews and problem resolutions
Drive Escalation calls for Technical Security issues collaborating with other support teams
Ability to develop, communicate, and coordinate project plans and projects. Strong ability to multi-task and prioritize multiple projects and be a team leader and facilitate brainstorming sessions
Provide technical guidance to internal support team on processes and compliance
Assist in daily Steady State operations as required including On-Call and Ticket resolutions
Must be available for non-business hours support and after-hours work, including on-call rotation when necessary
Work on problems of moderate to wide scope and moderate to high complexity where analysis of situations or data requires a review of identifiable factors
Assist in conducting gap analyses as needed, and provide recommendations for review

249

Senior Security Engineer Resume Examples & Samples

Design and build security tools and processes for integration and deployment across the enterprise
Develop and support integration and automation within security, monitoring, reporting, and ticketing platforms
Design, implement and support cloud based security solutions for both public and private cloud infrastructures
Research and development of modern/next-gen security toolsets to augment existing controls
Design and build hardened configuration requirements for all technology and work with multiple teams to help implement suggested solutions
Review and analyze existing processes and suggest improvements for increased security including assisting risk management team with assessments
Conduct security research to keep abreast of latest security issues and help communicate and respond internally to mitigate any identified vulnerabilities
Investigate and monitor for security incidents using SIEM and other Information Security tools including IDS, packet captures, reports, data visualization, and pattern analysis
Support Information Security team in all areas of information security
Bachelors of Science in CIS/MIS/CS/CE, Engineering/Technology or related field or equivalent experience/training
6-8 years working within Information Technology and 4-6 years specifically in Information Security engineering
Must be well organized, thrive in a sense-of-urgency environment, leverage best practices, and most importantly, innovate through any problem with a can-do attitude
Must have understanding of various systems technologies, architecture fundamentals, next-generation technology and very strong security understanding
Experience in deploying and maintaining security controls within various public cloud environments (AWS, Azure, Google)
Knowledge of at least 1 scripting language (Python, PowerShell, Perl, etc.)
Experience with Splunk, Next Gen Firewalls and IPS, Database Access Monitoring, and other advanced security tools
Experience with application security testing including SAST, DAST & RASP tools
Experience working with Rapid 7, Qualys, Nessus, or other vulnerability scanning tools
Experience performing internal security architecture and engineering related assessments/reviews
Understanding of various architectural frameworks and controls (CIS 20, NIST, etc.)
Understand information security concepts, protocols, "industry best practices"
Experience with administering various system types including Windows, Mac, and Linux
Experience performing systems security analysis, baselining, hardening, and automation across a large diverse set of systems
Experience with network (router, switch, firewall configuration) and database (Oracle, SQL) security
Hands on experience with Incident Response or previous participation with Incident Response teams such as the role of a first responder, someone who helps with analysis, forensics, etc
Experience utilizing penetration testing tools and frameworks and a working knowledge of penetration testing methodologies
CISSP, GSEC, GPEN, GCIA, GCIH or similar security professional certification
Practical experience in deployment and management of applied IT security technologies and tools such as endpoint protection, detection, and response, PIM/PAM, e-mail encryption, data loss prevention (DLP) technologies, network access control, intrusion detection/prevention systems, etc
Familiarity with OWASP top 10 vulnerabilities, mitigations and their impact on application architecture
Familiarity with various penetration and analysis tools such as nmap, NetStumbler, Burp, Backtrack, Kali Linux, Nikto, OwaspZap, Fiddler, the Metasploit framework, Wireshark, tcpdump etc

250

Senior Security Engineer Resume Examples & Samples

6+ years of proven Secure Software Development Lifecycle work experience
Bachelor’s degree in software engineering, computer science, or a related engineering field
Professional security certification i.e. CISSP, CISM, CSA, CEH or similar
Experience in healthcare, aerospace, or other high security applications (i.e. DoD, DoE, NSA)
Practical experience in security engineering, applied cryptography and authentication standards
Experience in acquiring, developing and rolling out secure application development classes
Experience working in a fast paced, cross functional team setting
Experience with embedded (IoT), mobile (Android and iOS), database, and web application security
Experience with programming languages (Java, Node.JS, Javascript, Python, C/C++)
Experience with mobile security design, HTTP(s) protocol, PKI, Encryption, Digital Signatures & Key Management, RESTful API's, Identity and Access Management, data integrity measures
Knowledge of Federated security architecture, flows, and standards (SAML, OpenID_Connect, JSON_Web-Token )
Knowledge of API Security Architecture and technologies (OAuth2, Spring Security, HMAC, WS-Security, WS-Trust, or XACML)
Knowledge of Cloud Provider security architecture design patterns (AWS, CloudFoundry, Azure)

Download Senior Security Engineer Resume Sample as Image file

Related Job Titles

Senior Information Security Engineer Resume Sample

Senior Info Security Analyst Resume Sample

Senior Application Security Engineer Resume Sample

Security Infrastructure Engineer Resume Sample

Associate Security Engineer Resume Sample

Security Engineer Principal Resume Sample

Security Software Engineer Resume Sample

Infrastructure Security Engineer Resume Sample

Senior Security Software Engineer Resume Sample

Senior Security Program Manager Resume Sample

Senior Security Resume Sample

Senior Information Security Resume Sample

Browse More

Senior Security Engineer Resume Samples

The Guide To Resume Tailoring

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Resume Builder

15 Senior Security Engineer resume templates

Read our complete resume writing guides

How to Tailor Your Resume

How to Make a Resume

How to Mention Achievements

Work Experience in Resume

50+ Skills to Put on a Resume

How and Why Put Hobbies

Top 22 Fonts for Your Resume

50 Best Resume Tips

200+ Action Words to Use

Internship Resume

Killer Resume Summary

Write a Resume Objective

What to Put on a Resume

How Long Should a Resume Be

The Best Resume Format

How to List Education

CV vs. Resume: The Difference

Include Contact Information

Resume Format PDF vs Word

How to Write a Student Resume

Pki-senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer, Identity Management Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

HBO Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

IT Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer VG Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

Senior Security Engineer Resume Examples & Samples

How to Make
a Resume

50 Best
Resume Tips

200+ Action
Words to Use

Internship
Resume