Lead Security Engineer

About The Position

Requirements

• Minimum seven (7) years IT information assurance experience with at least two (2) years leading a section
• BS Degree or additional work experience substitution
• Experience with tools like Webinspect, Nessus, burp Suite, Metasploit, PCAP tools etc.
• Experience with interpreting, discussing, or presenting findings to stakeholders as required.
• Experience with building metrics around findings or output from pentesting and/or scanning tools.
• Possess one of the following certfications: Cisco CCNP Security, CompTIA CASP+, ISACA CISA, ISC2 CISSP

Responsibilities

• Lead a team comprised of Penetration Testers, Vulnerability scanners, and assessors.
• Ensure compliance to Service Level Agreements (SLA), process adherence and process improvisation to achieve operational objectives and mitigate threats.
• Revise and develop processes to strengthen the current operational activities; review policies and recommend changes to improve governance based on knowledge of security tools.
• Responsible for team management and overall use of resources and initiation of corrective action where required for Security Operations Center
• Coordinate with stakeholders to build and maintain positive working relationships
• Knowledge of penetration testing tools and in the ability to assess penetration testing findings.
• Knowledge of vulnerability scanning tools to maintain capabilities as a sustained, full-time program independent of incident detection, recovery, or reporting activities.
• Familiarity with performing security assessments for all IT systems, to include hardware, software, websites and other IT technologies
• Experience with business process reengineering, capability maturity model, change management, or process improvement.