The Senior Information Security Engineer will be responsible for developing, implementing, and monitoring information and network security. This individual will focus on network security, intrusion detection/prevention, vulnerability assessment, proactive network monitoring and protection, risk assessments, and will participate in systems and application development and deployment decisions from the perspective of security best practices. From a strategic perspective, this individual will help ensure the ongoing integration of information security with business strategies and requirements across a broad spectrum of business initiatives.
QUALIFICATIONS:
1. Bachelor's degree in Computer Science or related field.
2. Four or more years of experience in network, host, data and/or application security in multiple operating system environments.
3. Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, email and access-lists.
4. Familiarity with secure application development practices, detecting and remediating application vulnerabilities.
5. Familiarity with application penetration methodologies.
6. Experience working with internet, web, application and network security techniques.
7. Experience working with relevant operating system security (Windows, Solaris, Linux, etc.).
8. Experience working with leading firewall, network scanning and intrusion detection products.
9. Experience working within compliance-controlled environments (PCI, SAS70/SSAE16, HIPAA, FISMA), FISMA preferred.
10. Familiarity with NIST Special Publications and SA accreditation process methodology.
11. Security certifications, such as GAC, CEH, or CISSP, CISSP preferred.
TECHNICAL SKILLS:
- Strong knowledge of security environments.
- Strong understanding of compliance and governance initiatives.
- Ability to analyze security events for anomalous activity.
- Ability to identify emerging security threats.
- Ability to develop and implement security programs.
- Solid project management skills.
- Strong knowledge of application security
- Ability to conduct vulnerability assessments, threat analysis, and reporting.
- Solid understanding and promotion of security policies.
- Strong written and verbal communication skills.
- Good problem-solving skills.
- Understanding of industry standards.
ACCOUNTABILITIES:1. Examine business requirements and make sound recommendations for implementation of controls based on knowledge of available enterprise controls.
2. Provide project leadership on security projects including development of requirements, security product evaluation, selection and implementation.
3. Participate in all phases of the SDLC to advise software development staff on security issues, and to develop security control objectives, security requirements and controls for successful project outcome and assess and mitigate system security threats/risk throughout the SDLC.
4. Work with Network Engineering staff to provide security engineering designs and implementation in all aspects of Information Assurance and Information Security engineering.
5. Lead, perform or review security incident response and investigations.
6. Design, implement, and test security controls and manage the associated remediation process as needed. Produce detailed written reports of the test results.
7. Perform compliance, vulnerability and penetration testing of applications and network elements for adherence to company security policies.
8. Assist in formulating security architecture recommendations and design security services.
9. Monitor technology developments and identify opportunities and issues for improvement.
10. Perform other duties as assigned.
Conditions of Employment
- You must be a U.S. citizen to apply for this position.
- You must successfully pass a background investigation and achieve Public Trust security clearance.
LexisNexis, a division of RELX Group, is an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. If a qualified individual with a disability or disabled veteran needs a reasonable accommodation to use or access our online system, that individual should please contact accommodations@relx.com or if you are based in the US you may also contact us on 1.855.833.5120.
Please read our Candidate Privacy Policy
This job has expired.