SecOps Engineering - Advisor #002

SecOps Engineering - Advisor #002

02 Sep 2021
Alabama, Montgomery, 36105 Montgomery USA

SecOps Engineering - Advisor #002

Vacancy expired!

Position: SecOps Engineering - Advisor
Duration: 1 year
Location: Montgomery, AL

Definition
This is lead worker/supervisory work over a small team of security and compliance specialists and support staff or providing specialized technical knowledge at the expert level with responsibility for the most complex assignments involving security and compliance.

Employees serving in a lead worker/supervisory role will assign and review work of lower-level security and compliance specialists and/or other IT support staff. Employees serving as an expert will have responsibility for the most complex security and compliance functions as well as providing expert advice, assistance and guidance on current and emerging security issues and resolutions. Employees in either role will be fully proficient in more than one recognized information security domain. Employees work independently, usually under the supervision of a Security and Compliance Supervisor or Manager.
Examples of Work

  • Supervises the work of security and compliance staff; assigns and reviews work; ensures work is completed on time and in conformance with accepted standards and procedures; provides assistance and guidance.
  • Responds to complex security requests, problem reports, questions, and incident reports; recommends or takes corrective action and follows-up on corrective actions to ensure that threats and vulnerabilities are addressed.
  • Performs forensic examinations to ensure proper containment and preservation of evidence, tracking of forensic events, maintenance of the chain of custody, and other related tasks.
  • Plans and performs audits and assessments of processes, employee practices, network operations and components, servers, telecommunications, applications, and other technology resources to evaluate policy and regulatory compliance, threats, and vulnerabilities, and weak or missing controls.
  • Reviews logging information for assigned systems and devices to identify abnormal or irregular use. Evaluates identified irregularities/abnormalities to identify violations and recommend appropriate corrective actions.
  • Proposes, conceptualizes, designs, develops, and implements solutions for difficult and complex security and compliance issues; prepares and presents audit and assessment findings, as well as recommendations of options to mitigate risks, achieve policy and regulatory compliance, and strengthen controls.
  • Works on projects that span a broad range of security domains and/or require expertise in multiple security and compliance environments.
  • Guides risk assessment exercises to identify, evaluate, and address processes and operations posing security threats or significant vulnerabilities.
  • Supports technology tools typically used in audits, assessments, monitoring, analysis, and reporting.
  • Develops customized information security training and awareness presentations; responds to questions and resolves problems related to training; monitors employee compliance with information security training policies.
Compensable Factors
  • Graduation from an accredited four-year college or university with a bachelor's degree in computer science, mathematics, engineering, or a closely related field.
  • Considerable responsible experience in complex security and compliance analysis work in more than one recognized information security domain.
IS & GRC Role
  • Actively look for security vulnerabilities reporting issues and describing possible solutions.
  • Design and maintain security infrastructure.
  • Actively liaise with the development team to ensure a secure architecture.
  • Provide regular reports auditing our current services and latest changes, as well as our internal practices.

Notes from Meeting
NIST
IRS 1076
had several years experience in an Engineer role
These are Senior positions
Involved in implementing change and troubleshooting
Underpinnings of technology and security


Related jobs

Job Details

  • ID
    JC19064231
  • State
  • City
  • Job type
    Contract
  • Salary
    N/A
  • Hiring Company
    TechNix LLC
  • Date
    2021-09-02
  • Deadline
    2021-11-01
  • Category

Jocancy Online Job Portal by jobSearchi.