Friday, April 07, 2006

Security Administrator in Purchase, NY

Friday, April 07, 2006
Position Summary: Primary responsibility is to monitor security related events and incidents and conduct security audits and assessments. Major Job Accountabilities: ? This position will be responsible for security monitoring, vulnerability assessment, penetration tests, integrity checking, ethical hacking and maintaining necessary standards & controls, and procedures. ? Audit existing systems, Windows, Linux, AS/400, security monitoring, firewall, intrusion detection and remote access logs, scrutinizing network traffic, monitoring the company's virus protection procedures, ensuring adherence to IT security policy, coordinating responses to detected intrusions. ? The position will encompass maintaining integrated programs to protect the integrity, confidentiality, and availability of the organization's technology infrastructures and information resources. Review existing applications periodically and new applications prior to installation to ensure that the applications adhere to IT security policies and procedures. Perform detailed risk analysis assessment of applications, networks and systems. ? Monitor security alerts from Cisco Security Agent (CSA) intrusion prevention system (IPS) across a 2000+ user WAN. As part of a heavily tasked security team, the security administrator will monitor all CSA activity and provide policy exceptions when new applications and services are rolled out. Additionally, the security administrator will also administer monitoring aspects of the enterprise CSA deployment. Monitor network equipment for configuration changes, security vulnerabilities, and coordinating risk mitigation activities. ? Responding to security incidents related to servers and network devices. Perform regular security audits of critical information security systems and generate appropriate supporting documentation. Perform comprehensive security reviews of applications addressing all layers. Monitor performance and activity of information security systems and services. ? Participate directly in the resolution of security incidents and understand common Windows vulnerabilities and exploits. Perform network and host-based vulnerability scanning. Experience: The qualified candidate must has at least 5 years experience working with the Network Infrastructure and at least 3 years experience in IT security controls and monitoring. ? Experience on Active Directory security and administration preferred. ? Experience with digital certificate technology including CA management, SSL encryption and key protection. ? Experience with Cisco CSA host based intrusion prevention system on Microsoft Windows Servers; NetIQ Security Manager; Tripwire for network devices; Websense; network security management and logging applications; and tools to defend against and/or respond to attacks when they occur. ? Experience assessing and implementing security mechanisms and monitoring systems. ? Strong implementation & monitoring experience with Cisco PIX firewalls, routers, VPN and other devices including switches, wireless access points, DMZ, IP addressing, and VPN solutions. ? Experience investigating security events and determining which events are, and which are not, incidents. ? Strong understanding of Layer 3 network technology and protocols (TCP/IP,EGRP, BGP, OSPF, etc.). Layer 2 Networking technology and protocols. ? B.S. Degree in Computer Science or related field and/or 5 to 7 years related experience. ? Excellent oral and written communication skills. Please send your resume to The qualified candidate must has at least 5+ years experience working with the Network Infrastructure and at least 3 years experience in IT security controls and monitoring. ? Experience on Active Directory security and administration preferred. ? Experience with digital certificate technology including CA management, SSL encryption and key protection. ? Experience with Cisco CSA host based intrusion prevention system on Microsoft Windows Servers; NetIQ Security Manager; Tripwire for network devices; Websense; network security management and logging applications; and tools to defend against and/or respond to attacks when they occur. ? Experience assessing and implementing security mechanisms and monitoring systems. ? Strong implementation & monitoring experience with Cisco PIX firewalls, routers, VPN and other devices including switches, wireless access points, DMZ, IP addressing, and VPN solutions. ? Experience investigating security events and determining which events are, and which are not, incidents. ? Strong understanding of Layer 3 network technology and protocols (TCP/IP,EGRP, BGP, OSPF, etc.). Layer 2 Networking technology and protocols. ? B.S. Degree in Computer Science or related field and/or 5 to 7 years related experience. ? Excellent oral and written communication skills. For Immediate consideration, please send your resume to To Apply to this job go to http://www.GadBall.com or click here