Lead Security Engineer - IT Security - Security Engineering & Operations - Full-time / Part-time

POSITION PURPOSE -
The Lead Security Engineer utilizes solid business knowledge and expert technical experience of security to provide a secure information environment for the business. Assists in the investigations of high level, complex violations of Information Security Policies by analyzing forensic data from Sr. Analyst. Develop recommendations and take appropriate action. Develop and drive the Disaster Recovery and Business Continuity strategy. The purpose of the position is to provide effective Information Security services that: Continuously protect our critical information assets and brand name. Assure compliance with corporate and regulatory policies/standards & industry best practices. Simplify, enhance and enable business initiatives. Operates as a team lead providing technical direction to team members. May perform the function to automate access provisioning across supported systems and applications with documentation. May direct, define and provide audit reporting.

• Responsible for designing , implementing, and maintaining an enterprise WAF solution within a Fortune 50 E-Commerce environment
• Responsible for documenting, implementing, and maintaining an enterprise network firewall environment
• Develop and maintain security standards,  procedures, and policy surrounding WAF technology (Akamai Kona), and Network firewalls (Cisco ASA, Juniper, Imperva, Fortiweb)  in coordination with application, information security, and networking teams
• Develop and maintain design and operational documentation for WAF technology and Network Firewalls consistent with an ITIL aligned operational model
• Collaborate and work with application teams to improve the security posture of web applications
• Collaborate and work with the network engineering teams to improve the security posture and network topology of the firewalls.
• Participate in a regular security and operational on-call rotation
• Act as a SME for any questions, concerns, or issues with WAF technology and network firewalls within the company

MAJOR TASKS, RESPONSIBILITIES AND KEY ACCOUNTABILITIES -
Lead investigation of high level complex violations of Information Security Policies and direct activity to analyze forensic data from Sr. Analysts. Develop recommendations and take appropriate action.

Present to Information Technology management development/implementation plan for secure solutions.

Present findings to manager on compliance reporting for Information Securities Policies.

Drive the Disaster Recovery and Business Continuity strategy.

Provide technical direction to analysts, associates and contractors.

Develop Information Security Policies, Standards and Guidelines.

Automate access provisioning across supported systems and applications with documentation. Direct, define and provide audit reporting.

NATURE AND SCOPE -
Typically reports to Manager, Information Technology

No associates report to this role on a permanent basis, but requires the leadership of a work group: assign and review work, train and contribute to performance appraisal (but not hiring, firing or disciplinary action).

ENVIRONMENTAL JOB REQUIREMENTS -
Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.

Typically requires overnight travel less than 10% of the time.MINIMUM QUALIFICATIONS -
Must be eighteen years of age or older.
Must pass the Drug Test.
Must successfully complete any required training or orientation courses.

EDUCATION REQUIRED -
The knowledge, skills and abilities typically acquired through the completion of a high school diplomas and/or GED.

YEARS OF RELEVANT WORK EXPERIENCE - 5

PHYSICAL JOB REQUIREMENTS -
Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles.

ADDITIONAL QUALIFICATIONS -
Direct hands-on experience with one or more of the following InfoSec solutions: Anti-Virus, intrusion detection, firewalls, content filtering, rick assessment.

PREFERRED QUALIFICATIONS -
• At least seven or more years working in Information Security with at least two years as a web application developer a plus.
• Designed and implemented enterprise network firewalls in the Retail or E-Commerce industries.
• Strong understanding of firewall topology and zone based methodology.
• Strong understanding of JUNOS and ScreenOS firewall code along with tools like NSM and Space with Juniper Firewall Certifications a plus
• Good understanding of dynamic routing protocols such as OSPF, iBGP, and IS-IS
• Designed and Implemented a WAF solution within the Retail or E-Commerce industry
• Strong understanding of the OSI model with emphasis on Internet application and transport protocols
• Strong knowledge of the SDLC process and Information Security Architecture Frameworks
• Understanding of Web Programming languages such as HTML, JavaScript, and PHP
• Strong knowledge of scripting and regular expressions such as Bash and Perl
• Understanding of Apache and Database Administration
• Bachelors of Science or equivalent experience with a CISSP certification a plus
• Strong written, verbal, and communication skills with emphasis on coordinating third party contracted resources
• Able to read and understand network and data-flow diagrams