Reference # 18-01510 Title Information Security Engineer Lead
Location Phoenix, ARIZONA
Position Type Direct Placement
Experience Level Direct Placement
Start Date / End Date 29-08-2018 --- 30-11--0001
Description
Purpose of the Job
The Information Security Engineer will participate in evaluating, developing, and implementing security tools, standards, procedures, and guidelines for multiple platforms and diverse systems environments. They will have the ability to learn and implement a variety of security technologies, such as vulnerability management, data leakage prevention, intrusion prevention, log management and security event management. This position will also require an individual who can work well with both technical and non-technical business partners.

Essential Job Functions and Responsibilities
LEVEL 3 - Performs job functions with minimal supervision
  • All previous job functions and possess two or more preferred major security certifications
  • Act as a trusted adviser and security expert in providing risk monitoring and mitigation guidance in alignment with industry best practices and regulatory requirements.
  • Facilitate and/or create new procedures and processes that support advancing technologies or capabilities.
  • Interact and negotiate with vendors, outsourcers, and contractors to secure system-related products and services.
  • Evaluate high-level project information and assess project components to forecast work effort required
  • Provide peer-level review and mentoring to level 1 and 2
  • Participate and/or lead large- or complex-technical projects
  • Build, support, and maintain moderately complex Information Security processes, programs, and technologies
  • Manages and performs product evaluations, recommends and implements products/services for Information Security that support strategic operational needs and security requirements
  • Validates and tests security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies
  • Trains other team members on new security solutions and transitions ownership, where possible, upon successful implementation
LEVEL 4 – Performs job functions in a lead capacity
  • All previous job functions and possess three or more preferred major security certifications
  • Facilitate and/or create new procedures and processes that support advancing technologies or capabilities
  • Evaluate high-level project information and assess project components to forecast work effort required
  • Provide peer-level review and mentoring to levels 1 and 2
  • Participate and/or lead large- or complex-technical security projects
  • Create complex ad-hoc reports for internal and external use
  • Act as primary security contact for internal and external customers when needed / in the absence of manager
  • Ensure Service Level Agreements between department and operational or technical areas are met
  • Lead, develop and mentor staff by providing opportunities for growth through delegation, training, and assignment to various project teams
  • Inform manager of any issues impacting the efficient and effective performance of the department including system, resource, and informational barriers; Provide timely feedback to team member on performance
  • Serve as primary Information Security contact for internal / external customers when needed or in absence of Manager
  • Assist the manager in the day-to-day operations of the department
Job Description
  • Each progressive level includes the ability to perform the essential functions of any lower levels and mentor employees in those levels.
  • The position requires a full-time work schedule. Full-time is defined as working at least 40 hours per week, plus any additional hours as requested or as needed to meet business requirements.
  • Perform all other duties as assigned.
  • Participate in on-call rotation
Required Work Experience
6 years 8 years Experience in information technology or computer systems
3 years 5 years Experience in information security and/or network security
1 years 3 years Experience in project management

Required Education
High-School Diploma or GED in general field of study

Preferred Work Experience
10 years of experience in computer technology and/or information systems
10 years of experience in information security

Preferred Education
Bachelor's Degree in Computer Science, Information Systems, Business, or related field (All Levels)

Preferred Certifications
  • Certified Cisco Network Administrator (CCNA) or Accredited Configuration Engineer (ACE) or Microsoft Certified Systems Engineer (MCSE) or Red Hat Certified Systems Administrator (RHCSA)
  • Certified Information Systems Security Professional (CISSP)
  • Systems Security Certified Practitioner (SSCP)
  • Certified Ethical Hacker (CEH)
  • Certified Information System Auditor (CISA)
  • GIAC Security Expert (GSE)
  • Certified Forensics Examiner (CFE)
Required Job Skills
  • Intermediate skill in use of office equipment, including copiers, fax machines, scanner and telephones
  • Intermediate PC proficiency
  • Intermediate proficiency in spreadsheet, database and word processing software Experience with ISO 27002, 27002/BS7799 and COBIT.
  • Intermediate knowledge of Microsoft Applications and Suites, Windows Server, and Microsoft SQL databases.
  • Knowledge of Microsoft SharePoint and its security levels.

Required Professional Competencies
  • Strong analytical skills to support independent and effective decisions
  • Ability to prioritize tasks and work with multiple priorities, sometimes under limited time constraints.
  • Perseverance in the face of resistance or setbacks.
  • Effective interpersonal skills and ability to maintain positive working relationship with others.
  • Verbal and written communication skills and the ability to interact professionally with a diverse group, executives, managers, and subject matter experts.
  • Systems research and analysis. Ability to write and present information security training documentation
  • Demonstrate the ability to stay current on global threats and vulnerabilities.
  • Experience working with and managing third parties
  • Knowledge of business requirements development and user acceptance testing.
  • Maintain confidentiality and privacy
  • Analytical knowledge necessary to generate reports based on available data and then make decisions based on reported data
Required Leadership Experience and Competencies
  • Facilitate and resolve customer requests and inquiries for all levels of management within the Corporation.
  • Build synergy with a diverse team in an ever-changing environment.
Preferred Job Skills
  • Advanced skill in use of office equipment, including copiers, fax machines, scanner and telephones
  • Advanced PC proficiency
  • Advanced experience with NIST Standards, ISO 27002/BS7799 and COBIT.
  • Advanced knowledge of Microsoft Applications and Suites, Windows Server, SharePoint, and MS SQL databases
  • Intermediate knowledge of Microsoft SharePoint and its security levels.
Preferred Professional Competencies
  • Advanced systems research and analysis expertise
  • Ability to build lesson plans and deliver lessons to junior team members.
  • Solid project management skills
  • Deep technical ability and problem-solving skills
Preferred Leadership Experience and Competencies
Mentor junior information security members on the concepts of information security