Send me more jobs like this

Sorry, This job is expired.

Information Security Engineer - 7409

Keywords / Skills : IT Security, Security Compliance, Network Security, Information Technology, Information Security, Security Consultant, Penetration, Firewall, IDS, URL Intrusion Prevention System, Ips, Windows, Linux, PCI, SOX

5 - 7 years
Posted: 2019-01-30

Job Description
Role Objective and Scope:
  • Work with the technical teams to understand our environment and to ensure compliance with client’s security and technical standards and processes 
  • Perform reviews of hardware, software, and firmware technologies for possible security vulnerabilities that impact the information security of client’s information assets. Recommend risk mitigation techniques and appropriate configuration Standards. (Security reviews, mitigation plans, data classification) 
  • Perform analysis of all firewall rules (new, modified and deleted) to ensure that client's perimeter defenses are configured and secure from unintended access 
  • Working with other Information Systems personnel, perform assessments of proposed architectures or implementations affecting client’s infrastructure components 
  • Perform risk monitoring of critical and confidential infrastructure components to identify potential information security breaches and recommend and/or implement mitigation techniques 
  • Daily review of privileged accounts, infrastructure devices storing electronic customer information, high value servers and software code to ensure the integrity and confidentiality of these critical systems 
  • Using approved tools, perform security tests and audits, analyze results and provide recommendations to ensure applicable systems are operating in accordance with Corporate Information Security Policies, Standards, and Procedures 
  • Perform periodic vulnerability and penetration tests using approved tools to identify potential threats to client's information assets and infrastructure and collaborate to mitigate findings 
  • Assist in the coordination and administration of compliance with disaster recovery and contingency plans to assure security is maintained during the rapid recovery, in the event of an information system emergency or disaster 
  • Participate and support the investigation and reporting of security violations of the Corporate Information Security Policies and Standards. Participate with in-depth inquiries, assessing potential damage, and implementing corrective action 
  • Provide on-call technical support where necessary 
  • Incumbent will be responsible for meeting client’s commitment to compliance 
Qualifications:
  • 5+ years of information technology experience, to include at least 3+ years of demonstrated experience in information security principles such as engineering to configure and manage secure desktops/servers, IT risk assessments, penetration testing.
  • 5+ years of experience with security products and tools (firewalls, IDS/IPS, DLP, URL filtering, email filtering, vulnerability scanning, penetration testing, SIEM, cloud security) 
  • 5+ years of experience in providing Level 2/Level3 operational support for a Windows/Linux based infrastructure 
  • Experience with implementation and support of enterprise network technologies (IPv4/6, routing, OSPF, EIRGP, IPSEC/VPN, WLAN, MPLS, 802.1x) 
  • Experience with encryption related technology (SSL, TLS, PKI, endpoint encryption) 
  • Understanding of PCI and SOX security standard. 
  • Thorough working knowledge industry trends and best practices in the areas of threat, incident, risk and vulnerability management 
  • Experience managing firewalls and remote access a PLUS 
  • Formal training and experience administering and managing firewalls, use of tools for vulnerability identification. Experience using and analyzing the results of specialized security tools to identify vulnerabilities in operating systems, perimeter and network devices, applications and databases 
  • Amenability to work either on a mid-shift or night shift schedule
  • Amenability to work in MOA Complex, Pasay City


About Company

MicroSourcing Philippines Inc, is one of the leading outsourcing solutions providers in the Philippines. We specialize in setting up offshore operations for foreign clients who operate in a wide variety of industries all over the world. Our offices are located in the Eastwood City Cyberpark, Mall of Asia Complex, Bonifacio Global City, Ortigas and Cebu IT Park and form the perfect professional environment from which we can run our various projects. MicroSourcing is a fast moving and flexible company with a great international management team.


Walkin for you