ECSI-1316-Information Security consultant - Full time for DTCC

We are ready to share finders fee. Information Security Consultant 4-6 Years Must have: ·        Knowledge of OS and application security fundamentals ·        Good interpersonal and organizational skills, as well as phone and customer service skills ·        Problem solving skills with regards to technology and complex environments ·        Effective written and verbal communication skills ·        Scripting or programming skills (VBScript, PERL, C, etc.) ·        Ability to analyze metrics and develop trends ·        Minimum 1 year experience security compliance monitoring ·        Minimum 1 year of experience with network vulnerability scanning and management ·        Experience with systems compliance tools such as Symantec ESM ·        Experience mapping security baselines, best-practice and related  documents to technical security checks ·        Experience using open security standards such as Security Content Automation Protocol (SCAP) ·        Experience with vulnerability scanning methods, tools, procedures, and protocols ·        Experience as a Windows systems administration (required) ·        Experience as a UNIX systems administration (preferred) ·        Possesses strong individual work ethic and team participation : •           Operation and maintenance of the compliance monitoring and vulnerability scanning applications and toolsets o          Daily review of compliance reports o          Managing the daily ticketing process for non-compliance messages o          Weekly review of vulnerability scan reports o          Application monitoring, support, troubleshooting •           Plan and implement product updates / upgrades as required by vendors •           Review of IT security baselines, benchmarks and best practices documents •           Create and modify new Symantec ESM compliance policies to align with approved security baselines •           Assist in the deployment of ESM agents across all platforms (UNIX, Windows, VMS, AS/400, etc.) •           Work directly with infrastructure team members to resolve agent communication problems, remediate non-compliance messages and vulnerability scan findings Check Technical/Functional Skills Section Degree in a technical discipline or related experience preferred Desired Certifications: CISSP, GCIH, or similar industry certifications Tampa,, 6 Mnths (Minimum) – 1 Year (or longer) resumes@empowercsi.com 510-512-8069

Internal Notes:

ECSI-1317- Information Security Event Analyst

Full time position with DTCC. We will share finders fee if you find us the right candiate Information Security Event Analyst
4-6 Years
Must have: ·        Good interpersonal, and organizational skills, as well as phone and customer service skills ·        Understand the technical aspects of threats- including IT system vulnerabilities, hacking techniques, and malicious code ·        Excellent written and verbal communication skills ·        Ability to analyze metrics and develop trends ·        Problem solving skills with regards to technology and complex environments ·        Knowledge of IDS, network, and PKI technologies ·        Working knowledge active directory ·        Event and investigations procedures ·        Scripting Skills
·        Incident response protocols ·        enVision or other SEIM ·        Systems Compliance Tools such as Symantec ESM ·        Open security standards such as Security Content Automation Protocol ·        Must understand how to identify compromised computers using logs, live response, and related computer-centric evidence sources ·        Penetration testing methods, tools, procedures, and protocols
:	·        Conduct information security incident detection and response ·        Review and understand various information security reports ·        Escalate events to incident analysts as necessary ·        Work directly with infrastructure team members to resolve detected events and anomalies ·        Provide first level troubleshooting and report findings to the tool maintenance personnel. ·        Create and/or update tickets for all work and requests ·        Keep abreast of emerging external information security incidents to maintain situational awareness and apply lessons learned to current procedures.
Check Technical/Functional Skills Section
·        Minimum 3 years of IT experience ·        Minimum 1 year experience analyzing security events in IT infrastructure ·        Minimum 1 year of experience in one of the following technology areas: o       Antivirus o       Firewall o       IDS o       Network vulnerability management and scanning ·        Desired Certifications: CISSP, GCIH, GCIA, GCFW, GSEC or similar certifications
Tampa,, 6 Mnths (Minimum) – 1 Year (or longer) resumes@empowercsi.com 510-512-8069

ECSI-1318-RSA Envision Engineer

Relevant Experience (Yrs) : 4-6 Years Technical/Functional Skills : Must have: ·        Good understanding of Information Security and basic concepts of Firewall, IDS, ACL etc. preventive vs. detective controls. ·        Excellent analytical and troubleshooting skills as it applies to Security Information Event Management. ·        Excellent verbal and written communication skills. Ability to keep all stakeholders informed of progress and status. Strong interpersonal relationship skills; ability to establish confidence with other team members. ·        Extensive knowledge in the field of event logging and reporting. Understanding of various logging format (e.g. Syslog, ELFF, Windows event logging, diff. database logging, flat file log format of diff. technologies etc.) ·        Knowledge of MS-SQL and XML technology is a must. ·        Prior knowledge of RSA enVision product required. ·        Knowledge of SYSLOG-NG a plus ·        Scripting knowledge of PERL or VB preferred Experience Required Three years  of full-time experience in Information Technology field. Roles & Responsibilities : 1. Ensure effectiveness of logging and reporting e.g. logical network devices, firewall, IDS, WinTel / UNIX platforms, web and internal application logs etc. 2. Assist project teams for UDS work based on the platforms that are not supported out of the box by RSA enVision. 3. Assist project teams for customized reporting work, correlation rule and alert creation based on the various information security requirements by RSA enVision. 4. Support incident response process for various threat indicator sources. 5. Perform day-to-day operational management of multiple RSA enVision SIEM systems.  6. Respond to customer request for user-id creation with the proper permissions for the user’s profile. 7. Maintains issue logs, tracks/follows up on problems with RSA. Performs quality assurance testing of patches and updates before installing to production environment. Generic Managerial Skills : Check Technical/Functional Skills Section Education : Degree (or higher) in a technical discipline or related experience preferred Work Location : New York,, 6 Mnths (Minimum) – 1 Year (or longer) Pl provides us some Prescreening Questionnaires to input into

Internal Notes:

ECSI-1319- Sr Security Analyst

Senior Security Analyst 4-6 Years Must have: 1. Good understanding of Information Security and basic concepts of Firewall, IDS, ACL etc. preventive vs. detective controls. 2. Excellent analytical and troubleshooting skills. 3. Excellent verbal and written communication skills. Ability to keep all stakeholders informed of progress and status. Strong interpersonal relationship skills; ability to establish confidence with other team members. Ability to learn and understand underlying business need quickly 4. Extensive knowledge in the field of event logging and reporting. Understanding of various logging format (e.g. Syslog, Windows event logging, diff. database logging, flatfile log format of diff. technologies etc.) 5. Knowledge of Project Management techniques. 6. Knowledge of MS-SQL and XML technology is a must. 7. Prior knowledge of RSA enVision product a must. 8. Scripting knowledge e.g. Visual Basic, or Perl is a must. Five years experience in Information Technology field 1. Drafts conceptual and logical architecture specifications at both the enterprise and project level with a focus toward established process. Documents and refines system modifications. 2. Assists project teams during system design with the drafting logical architectural models with a focus on establishing appropriate process. Assists in designing interface and conversion needs for data and process to enhance existing systems or develop new ones. 3. Ensure effectiveness of logging and reporting e.g. logical network devices, firewall, IDS, WinTel / Unix platforms, web and internal application logs etc. 4. Assist project teams for UDS work based on the platforms that are not supported out of the box by RSA enVision. 5. Assist project teams for customized reporting work, correlation rule and alert creation based on the various information security requirements by RSA enVision. 6. Support incident response process for various threat indicator research. 7. Perform day-to-day operational management of multiple RSA envision SIEM systems. 8. Contributes to defining and meeting time tables and project plans. 9. Assists in the definition of milestones and progress tracking via measuring appropriate Key Performance Indicators. 10. Maintains issue logs, tracks/follows up on problems. Performs other duties as assigned Check Technical/Functional Skills Section Degree (or higher) in a technical discipline or related experience preferred New York,, 6 Mnths (Minimum) – 1 Year (or longer) resumes@empowercsi.com 510-512-8069

Internal Notes:

ECSI-1319- Sr Security Analyst-Full time

Senior Security Analyst 4-6 Years Must have: 1. Good understanding of Information Security and basic concepts of Firewall, IDS, ACL etc. preventive vs. detective controls. 2. Excellent analytical and troubleshooting skills. 3. Excellent verbal and written communication skills. Ability to keep all stakeholders informed of progress and status. Strong interpersonal relationship skills; ability to establish confidence with other team members. Ability to learn and understand underlying business need quickly 4. Extensive knowledge in the field of event logging and reporting. Understanding of various logging format (e.g. Syslog, Windows event logging, diff. database logging, flatfile log format of diff. technologies etc.) 5. Knowledge of Project Management techniques. 6. Knowledge of MS-SQL and XML technology is a must. 7. Prior knowledge of RSA enVision product a must. 8. Scripting knowledge e.g. Visual Basic, or Perl is a must. Five years experience in Information Technology field 1. Drafts conceptual and logical architecture specifications at both the enterprise and project level with a focus toward established process. Documents and refines system modifications. 2. Assists project teams during system design with the drafting logical architectural models with a focus on establishing appropriate process. Assists in designing interface and conversion needs for data and process to enhance existing systems or develop new ones. 3. Ensure effectiveness of logging and reporting e.g. logical network devices, firewall, IDS, WinTel / Unix platforms, web and internal application logs etc. 4. Assist project teams for UDS work based on the platforms that are not supported out of the box by RSA enVision. 5. Assist project teams for customized reporting work, correlation rule and alert creation based on the various information security requirements by RSA enVision. 6. Support incident response process for various threat indicator research. 7. Perform day-to-day operational management of multiple RSA envision SIEM systems. 8. Contributes to defining and meeting time tables and project plans. 9. Assists in the definition of milestones and progress tracking via measuring appropriate Key Performance Indicators. 10. Maintains issue logs, tracks/follows up on problems. Performs other duties as assigned Check Technical/Functional Skills Section Degree (or higher) in a technical discipline or related experience preferred New York,, 6 Mnths (Minimum) – 1 Year (or longer) Regards Mani  resumes@empowercsi.com 510-512-8069

Internal Notes: