requirements depend on the job. Typically an ISSO needs to have experience with a security framework. experience with a scanner and working with IT.
job
3 Remote Oracle Jobs – telework
**checkout how I find these jobs: https://securitycompliance.thinkific.com/courses/find-it-remote-work **
ROLE 1
Oracle CloudChange Mgmt Consultant
Start:Immediate
Falls Church,VA
Duration: 7-8months + extension (go-live scheduled for end of Oct)
Experiencedhealthcare ERP OCM expert
Broad functionalarea experience
Will workdirectly with Inova resources and uplift their skills
Currentlyworking remote due to virus, but will need to be on-site eventually
ROLE 2
SeniorTechnical ERP Leader (ORCL Cloud)
Start:Immediate
Falls Church,VA
Duration: 7-8months + extension (go-live scheduled for end of Oct)
Senior ISLeader that has experience with big ERP initiatives – need ORCL Cloudexperience
They need totake application inventory and institute portfolio mgmt. and governance from atech perspective
Must be forwardthinking tech advisor that can present them with logical, coherent analyticsstrategy across all work streams
Senior managerlevel or higher – strong exec level presence
Thanks & Regards
Manish Kumar
Account Delivery Head
Office 732-456-5598 Direct – 408-882-6923
manish@eateam.com
EATeam, Inc.
HQ: 2 Kilmer RD, Edison NJ 08817
IT-COE:429 Sylvan Ave Second Floor Suite A Englewood Cliffs NJ 07632
Job position for DIACAP Compliance Engineer at Tarrytown, NY
Role: DIACAP Compliance Engineer
Location: Tarrytown, NY
Duration: 6+ months
Keywords: – STIG, TFS, DevOps, Windows Imaging WIX, MSI, PowerShell, Anti-Virus, Whitelisting
Job Description:
Background
Source code management (SCM) & DEVOPS team (Infrastructure Team) manages the entire continuous integration, continues development chain process of a global Engineering conglomerate.
Application is developed using Microsoft technology C#, C++, WPF, MVVM and custom control on Windows-7 platform. The backbone of the entire SCM is Microsoft TFS while the packaging strategy is utilizing MSI and WIX. The current build management is driven by customized XMAL with PowerShell usage. Now the plans are to move to VNEXT that provides flexibility as an orchestrator and allows better reporting, triggering and logging facility.
The Goal of this team is to make the entire infrastructure to be in compliant with DIACAP (DoD Information Assurance Certification and Accreditation) process
Expectations – The team is looking out for Engineers who can augment the current team and support on following tasks
This means the identified engineer needs experience in DIACAP process (not knowledge) on how the system could be transformed to be DIACAP compliant system.
• Experienced in the Security Technical Implementation Guide (STIG) that provides security guidance for .NET deployments in workstations or servers and focuses on the secure configuration of the .NET Common Language Runtime (CLR).
• Identify loopholes and open items as part of IIS 7.0 Web Server to ensure that the IIS 7.0 becomes STIG compliant and thus related request handling and filtering are done in control manner and encryption is applied for protocols or data exchange for HTTP, FTP or telnet and more of such tasks etc.
• Ensuring the basic need of McAfee VirusScan 8.8 Managed Client STIG that highly suggests to have antivirus to be monitoring 24*7 along with no possibility of stoppage of such services and availability of antivirus signed files almost every day
• Ensure security enablement in Microsoft Internet Explorer 11 client used on Windows-7 workstations like script execution, popup restrictions as needed and stoppage of unsigned ACTIVEX controls
• Experience in interpreting STIG scans that reflect results on periodic basis.
• Experience in working on adding check and controls in build management system that automates scans ensure STIG compliance.
Soft Skills
• Good Team Player
• Good Written and verbal communication skills
• Customer facing experience would be added advantage
http://www.enterprisesolutioninc.com Pradyut Bhattacharya
Enterprise Solution Inc.
500 E. Diehl Road, Suite 130, Naperville, IL 60563
Office: # 630-214-9485
Information Security in CHATTANOOGA TN
|
DATA/INFORMATION ARCHITECT in COLUMBIA, SC
Position Title
|
DATA/INFORMATION Architect
|
Position Id
|
6414-1
|
Agency
|
Department of Administration
|
Duration
|
5 Months +
|
Work Location
|
4430 BROAD RIVER ROAD, COLUMBIA, SC 29210
|
SCOPE OF THE PROJECT:
Will work as an Information Security Architect/Engineer in the Division of Information Security and assist with the implementation, integration and operationalizing advanced security technologies. Develop operational plans for integrating and implementing security technologies within existing division and agency infrastructure and operational processes. Develop full life cycle processes and procedures along with repeatable guides for standard implementation and assist agencies as needed to incorporate systems.
DAILY DUTIES / RESPONSIBILITIES:
Information Security architecting, engineering and operations. This is a full information security to include, systems, network and procedural.
Work with existing staff to architect and deploy advanced information security systems in a highly complex distributed enterprise environment.
Develop installation, configuration, and operational process/procedure documentation to enable Division of Technology and Agencies to install and operate approved security solution.
Work with Security Operations Center to identify enhanced data collection and correlation capabilities in existing data and gaps in data collection/analysis architecture, systems and procedures.
Identify and develop solutions for preventing, detecting and mitigating risks to information and information systems.
Conduct training as necessary to division and agency personnel on security processes, procedures and methodologies to ensure security event information is properly identified, correlated, documented and mitigated in accordance with department standards.
REQUIRED EDUCATION:
Bachelor’s degree or 8 to 10 years’ experience.
PREFERRED CERTIFICATIONS:
CISSP, CEH, MCSE, CCSP
Category
|
Name
|
Last Used
|
Last Used by Candidate (Year)
|
Experience
|
Candidate Exp. (in years)
|
Network Security
|
information security principles and practices
|
Currently Using
|
6 + Years
|
||
Network Security
|
IT Security
|
Currently Using
|
6 + Years
|
||
Network Security
|
Security Information Architecture
|
Currently Using
|
6 + Years
|
||
Network Security
|
Application Security
|
Within 1 Year
|
6 + Years
|
||
Network Security
|
risk/vulnerability assessments
|
Within 10 Years
|
6 + Years
|
||
Network Security
|
Role Based Access Control (RBAC)
|
Within 1 Year
|
6 + Years
|
||
Network Security
|
Security Information Event Management (SIEM) systems development / configuration
|
Within 1 Year
|
6 + Years
|
||
Networking & Directories
|
Access control logging and reporting systems
|
Currently Using
|
6 + Years
|
||
Networking & Directories
|
Experience with UNIX, Windows, Linux, MacOS, Cisco, Juniper, web apps, databases, strong authentication, operating systems and network security protocols and procedures.
|
Currently Using
|
6 + Years
|
||
Networking & Directories
|
Information Security
|
Currently Using
|
6 + Years
|
||
Networking & Directories
|
Network security
|
Currently Using
|
6 + Years
|
||
Networking & Directories
|
data discovery and data loss prevention (DLP)
|
Within 1 Year
|
6 + Years
|
||
Networking & Directories
|
Identity Access Management (IAM)
|
Within 1 Year
|
6 + Years
|
||
Networking & Directories
|
privileged user management (PUM)
|
Within 1 Year
|
6 + Years
|
||
Specialties
|
Event Handling
|
Within 1 Year
|
6 + Years
|
||
Specialties
|
IBM
|
Within 1 Year
|
6 + Years
|
Cyber Awareness and understanding
Expert understanding of information, computer and network security. Its operation, engineering, and architecture.
Experience with UNIX, Windows, Linux, MacOS, Cisco, Juniper, web apps, databases, strong authentication, operating systems and network security protocols and procedures.
Expert understanding of access control logging and reporting systems.PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
- Identity Access Management (IAM)
- Role Based Access Controls (RBAC)
- Privileged User Management (PUM)
- Data Loss Prevention (DLP)
- Security Information Event Management (SIEM) systems
- Vulnerability Assessment (VA)
- Applications Security (AppSec)
- User metadata and Information Security event collection, logging and correlation
- McAfee e-Policy Orchestrator (ePO) / DoD HBSS
- Tenable Security Center / Nessus
- IBM AppScan.
LogRhythm | Technical Alliances Engineer – Boulder, CO
This position will expose you to the ever growing field of technology companies within network security. There is a clear growth opportunity to gain experience working with an established, in demand security software company that is partnering with other top tier security vendors. As LogRhythm continues to grow, this position will play a critical role in enhancing our customer base through developing successful alliances within the security ecosystem.
This team is positioning our Security Intelligence Platform with the top technology partners to showcase specific use cases that will help support common customers. The business development team works with our alliance partners in a number of ways including addressing a complex and evolving security landscape, meeting compliance requirements and achieving greater operational efficiency. I’ve included the web page for our partner page which provides more detailed information: https://logrhythm.com/
If you’re interested in learning more please let me know and we can set aside some time to talk. Otherwise please feel free to forward within your network to anyone that might have interest.