Security Engineer

Company Description

Procom is a leading provider of professional IT services and staffing to businesses and governments in Canada.

With revenues over $500 million, the Branham Group has recognized Procom as the 3rd largest professional services firm in Canada and is now the largest “Canadian-Owned” IT staffing/consulting company.

Procom’s areas of staffing expertise include:
• Application Development
• Project Management
• Quality Assurance
• Business/Systems Analysis
• Datawarehouse & Business Intelligence
• Infrastructure & Network Services
• Risk Management & Compliance
• Business Continuity & Disaster Recovery
• Security & Privacy

Specialties• Contract Staffing (Staff Augmentation)
• Permanent Placement (Staff Augmentation)
• ICAP (Contractor Payroll)
• Flextrack (Vendor Management System)

Job Description

Security Engineer

On behalf of our client, Procom Services is searching for a Security Engineer for a contract opportunity in Durham, NC.

Security Engineer Job Details

We are looking for a talented Senior Security Engineer for our MIS Group in our Durham, NC location. Focus and experience in risk mitigation with possess at least 8 years of directly related practical experience within the last two years, and demonstrated ability to carry out the functions of the job. We are looking for candidates who can provide a well-rounded knowledge and experience base in incident response and security event analytics. An overall flexibility and willingness to work under unpredictable time and project variables is essential. 

The Security Engineer will be responsible for the following: 

• Experience analyzing malware such as viruses, worms, trojans, etc.

• Experience in information security threat and vulnerability analysis 

• Understanding of networking and core Internet protocols (TCP/IP, HTTP, etc.) 

• Experience using network security assessment tools

• Experience developing tools for automation and/or other tasks

• Be a team player

• Excellent verbal and written communication skills

• BS or BSE in computer science/engineering, or equivalent experience

Additional responsibilities will include but are not limited to: 

• Provide detection and response to security events and incidents within the customer network as well as various supported customer networks 

• PCI and Web application vulnerability scanning 

• Security log management and monitoring 

• Intrusion detections and prevention systems operations 

• Vulnerability detection, assessment, and mitigation 

• Develop and maintaining information security metrics.

• Provide assistance to core security and incident response teams 

• Enterprise encryption standards development and support 

• Development and distribution of various security advisories and awareness messages 

• Maintain growing knowledge of industry trends relating to security management and services.

Security Engineer Mandatory Skills

• Thirst for knowledge and inquisitive nature

• Experience and strong knowledge of vulnerability management and configuration compliance processes and tools

• Experience and knowledge in Security Information Event Management tools

• Experience in Intrusion Detection and Prevention Systems 

• Knowledge of: TCP/IP, computer networking, routing and switching 

• Experience in Linux/UNIX and Windows based devices at the System Administrator level 

• Strong troubleshooting, reasoning and problem solving skills 

• Team player, excellent communication skills, good time management 

• Organizational skills and the ability to work autonomously with attention to processes 

• Ability to speak and communicate effectively with peers, management and clients 

• Ability and willingness to think outside of the box to find creative and innovative solutions to reduce costs with a minimal impact on reliability. 

• Ability and experience in writing clear and concise technical documentation 

• Ability to speak and write fluently 

Education or Experience: 

• Graduation with a degree from a recognized university with specialization in Computer Sciences or a related discipline, 

• 8+ years of directly related practical experience.

Required Skills: 

• Candidate should possess a knowledge in the following technical skills: Incident Response, Log Analysis, TCP/IP, Network Traffic Analysis, Antivirus/Malware, Intrusion Detection/Prevention, Security Incident and Event Management Systems (SIEM), Packet Analysis Techniques, Event Correlation, and Incident Triage. 

• Experience in security penetration testing 

• Experience using ticketing systems such as Remedy 

• Security certifications: SANS/GIAC (GCIH, GCIA or GCUX), CCNA, CISSP, or CISM certifications would be assets

• Knowledge of application security including web applications, web services, XML, SOA, AJAX, JSON, and web scanning tools 

• Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) solutions 

• Knowledge of NIST, PCI, HIPAA

Security Engineer Start Date

ASAP

Security Engineer Assignment Length

6+ months to perm

Additional Information

All your information will be kept confidential according to EEO guidelines. Please send your resume in Word format only.