Application Security Engineer
Omaha, NE | Contract
TRC has an immediate need for 2 Application Security Engineers with HP Fortify OR Voltage Experience.
These are long-term contract positions.
Top Skills Required: HP Fortify, Vulnerability Management/Remediation Experience.
Location: Omaha, NE (Preferred) Atlanta, GA (Secondary)
Duration: 1 year+
Key: Hands on experience in implementing Application Layer Security using tools like HP Fortify.
The Information Security Engineer will focus on leveraging the Managed security® service platform and security industry concepts for delivery of high quality managed security service to clients. Mastering and practicing continuous process improvement with implementation, escalated event resolution, troubleshooting and incident response are required areas of hands-on expertise.
RESPONSIBILITIES and DUTIES:
Work cooperatively with Service Delivery Managers, SOC, and other internal teams to establish and maintain a strong and supportive relationship with clients. Communicate effectively both internally and externally, and provide superior customer service throughout the lifecycle of the client.
Proactively protect client systems and data through application of advanced security and technology knowledge, using the Managed security platform and related products. Provide continuous managed security and service improvement oversight, and vigilance to possible new threats and the effects of infrastructure changes and vulnerabilities on the client’ s security status.
Utilize escalated events and other tuning opportunities to optimize Managed security and client configurations. Eliminate invalid events and increase the security value of the remaining events, reducing false positives and overall event volumes and assuring that events and alerts provide useful, actionable security event data to the client.
Participate in assigned on-call and incident response activities as part of client security service delivery.
Function in a technical QA and escalation capacity to support SOC staff and external clients on matters pertaining to service offerings and the digital security considerations of client systems.
Engage in continuous tool improvement, process improvement and quality control and documentation activities to strengthen Managed security and all phases of service delivery.Such activities may include participation in new hire training, rules creation and certification support, SCE mapping, helping design specifications for new reports or improved Managed security functionality, etc.
Other duties may be assigned
Proven experience in Information Security and/or technology engineering and support experience
Demonstrated experience and expertise in one or more of the following areas: computer penetration testing, web security assessments, intrusion detection / prevention systems, firewalls, security event management.
Ability to assess Information Security Risks, understand business needs, and apply defined information security policies and architectures in order to develop effective solutions
Excellent interpersonal and organizational skills
Excellent oral and written communication skills
Strong analytical and problem solving skills
Works well in a team environment and independently
Certification in Information Security (GIAC, Security+, GSEC, GCIH, CEH, CISSP, etc.) a plus
Please submit resume to will.Swift@trcstaffing.Com