12 days old
2017-11-072017-12-05

Information Security Engineer

New York, NY 10017
  • Job Code
    586359

Overview:


Daily Racing Form is looking for an experienced Information Security Engineer. The Information Security Engineer is responsible for establishing and maintaining a corporate-wide security framework to ensure that information assets are adequately protected and completing projects as assigned. In addition, this position will be responsible for developing and supporting information security initiatives and operations.


Responsibilities:



  • Responsible for researching, developing, communicating, maintaining and working on the enforcement of IT security architecture, policies, procedures, solutions and standards.
  • Work with IT and executive management on determining acceptable risk levels for the enterprise and ensuring the IT environments are adequately protected from potential risks and threats.
  • Will lead and/or coordinate the identification and documentation of security risks and exposures, development and implementation of appropriate and cost effective controls to mitigate identified threats and risks.
  • Responsible for developing and maintaining business continuity / disaster recovery plans including working with the operational units on the implementation of the plans.
  • Responsible for initiating, facilitating, and promoting activities to foster information security awareness within the organization.
  • Responsible for staying abreast of the latest industry security and business continuity / disaster recovery practices and technologies and making recommendations for their adoption into our environment as appropriate.
  • Develop, implement, and monitor a strategic, comprehensive enterprise information security program to ensure the integrity, confidentiality, and availability of information owned, controlled, or processed by Client.
  • Develop, maintain, and publish up-to-date security policies, standards, and guidelines, and oversee training and dissemination of security policies and practices
  • Manage the process of gathering, analyzing, and assessing the current and future threat landscape, and provide Senior Management with a realistic overview of risks and threats
  • Monitor and report on compliance of security policies. Report on enforcement of security policies within Management
  • Consult with IT Executive Management to ensure that security is factored into the evaluation, selection, installation, and configuration of hardware, applications, and software
  • Research, evaluate, design, test, recommend, or plan the implementation of new or updated information security hardware or software, and analyze its impact on the existing environment; provide technical and engineerial expertise for the administration of security tools


Organizational Relationships:



  • Reports to CTO


Required Background:



  • A successful candidate in this position must have a broad technical background in all aspects of network, server and desktop (Windows and MAC) computing with over 8 years of IT experience and a minimum of 5 years of Information Security experience.
  • Certified Information Systems Security Professional (CISSP), Certified Information Security Engineer (CISM), Certified Information Security Auditor (CISA) or other security certification is required.
  • UNIX (Linux, CentOs, Solaris) and Windows experience a must. Associated security architecture and administration functionality is desired.
  • Extensive knowledge of security related applications and architectures such as firewalls (Checkpoint), VPN, network switches (Cisco), anti-virus (Sophos), encryption (Oracle Advanced Security), intrusion detection, and incident handling (Zabbix, Graylog, Logwatch, Solarwinds).
  • Understanding of common network services (DNS, DHCP, HTTP, FTP, SNMP, SMTP)


NICE TO HAVE:



  • Knowledge of VMware ESX and Storage (IBM and EMC)
  • Familiarity with Database systems (Oracle, Sybase, MS SQL Server and MySQL)
  • Familiarity with deploying and configuring Java applications
  • Script writing experience, Shell scripting, Perl
  • Experience in developing, implementing and communicating IT security policies, systems, processes and procedures and vulnerability assessments.
  • General understanding of standard control frameworks: GLBA, CoBIT, COSO, ITIL, SAS 70/SSAE16 process - specific knowledge in at least one. Familiarity with PCI, PII, and Privacy regulations.
  • Experience with consumer facing websites, digital commerce, gaming, horse racing, etc.
  • Experience hardening Chef / Puppet and hardening stacks OS (Linux / OS) / Application Stacks (java etc.);
  • Penetration testing experience a big plus;


Additional Requirements:



  • Strong customer service, interpersonal, written and verbal communication skills are required.
  • Must possess strong administrative, analytical, time and project management and decision making skills.
  • Demonstrated experience in implementing compliance programs in a complex IT environment
  • Establishes and maintains strong working relationships with organizational business units involved with security matters (ex. Legal, Internal Audit, Financial Controls, Human Resources, etc.).
  • Provide recommendations for improving configuration standards, based on personal expertise and outside sources.
  • Strong analytical, trouble shooting and problem solving skills
  • Ability to interact professionally with executive management, vendors and other internal/external parties
  • Ability to work independently in a fast-paced environment with multiple priorities and projects
  • Demonstrate flexibility (e.g., redeployment, off-hour setup requests, etc.).

Categories

  • Information Technology

Randstad utilizes a technology-driven focus with a human touch to provide better staffing and business solutions to organizations around the world. Our team of experts match professionals with available career opportunities in a variety of fields.

Featured Jobs

Career News

Share this job:

Information Security Engineer

Randstad Technologies
New York, NY 10017

Share this job

Information Security Engineer

Randstad Technologies
New York, NY
US

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast