Security Engineer and Penetration Tester
- Recruiter
- Anonymous
- Location
- Portsmouth
- Salary
- Competitive
- Posted
- 09 Nov 2016
- Closes
- 06 Dec 2016
- Sectors
- Facilities Management
- Contract Type
- Contract
- Hours
- Full Time
Security Engineer and Penetration Tester
Portsmouth
6 months
Market rates
Candidate must have security clearance.
Experience/Skills:
Security Engineer/Architect Role:
Mandatory:
Technology: Linux Bash, Nessus, Wireshark, NMAP.
At least 3 years in a dedicated security role.
At least 3 years on a large government, or similar scale project.
At least one of the following Security Credentials: CEH, CISSP, CSSLP, CCP (IA Architect), GICSP, CCNA Security, GSE, CISSP, GCIA, GREM, GCIH, GNET or equivalent.
Desirable:
Experience in working within a SOC (security Operations Centre).
Kali Linux
Experience in large engineering teams working on the implementation of new large systems
An understanding of Network attack Methodologies or understanding and experience of both the Windows and UNIX based Operating System and application environments
Compliance/Audit experience.
Deployment of SIEM Tools an SOC development.
Experience of large system engineering, including requirements management and baseline management using CASE tools (e.g. IBM DOORS).
Hold Qualification in either CLAS or CCP at the SIRA (Security and Information Risk Advisor) at Practitioner level or Commercial equivalent.
Knowledge of OS lockdown (Windows/Linux) and Network security.
Our client is seeking to fill specific security roles for a Data Centre project in support of a Satellite System. The roles on offer are both exciting and challenging and are for an initial period of six months. In either case, the candidate(s) should be able to demonstrate the ability to work in a dynamic environment, on a large project with complex stakeholder sets with initiative, diplomacy, persistence and minimal oversight.
The Security Engineer and Pen Tester role requires the responsible person to have a solid base of practical experience in security, including use of the common Penetration Tool (e.g NMAP, Nessus, Wireshark) and also experience in system engineering on large projects. The Security Engineer and Pen Tester role encompasses a number of differing tasks - to include:
Management of the issues arising from External penetration testing, auditing and ITHC activities.
Interfacing with engineering and deployment teams to identify Penetration Test mitigations and overseeing their deployment to the operational environment.
Security testing of the production and validation environments to assure deployment of mitigations.
Liaison with external Testing companies to procure validation tests.
Definition of lockdowns, specification of validation for lockdown.
Security guidance to the other engineering groups and subcontractors
Technical Assessment of vulnerabilities and their impacts (application, system, operational) then consultation on resolution.
Support to verification, including definition and execution of test procedures
Activities as directed by the Security Manager.
Personal attributes:
Trustworthy and use a trustworthy manner in all interactions with customers, colleagues and suppliers.
Committed to personally following good security practice to provide example to others in the team.
Driven to improve security but not dogmatic.
Persistent and resilient.
Some international travel may be required for these roles business trips.
For more information please contact John Paul or Lily at Protec Technical Ltd
Portsmouth
6 months
Market rates
Candidate must have security clearance.
Experience/Skills:
Security Engineer/Architect Role:
Mandatory:
Technology: Linux Bash, Nessus, Wireshark, NMAP.
At least 3 years in a dedicated security role.
At least 3 years on a large government, or similar scale project.
At least one of the following Security Credentials: CEH, CISSP, CSSLP, CCP (IA Architect), GICSP, CCNA Security, GSE, CISSP, GCIA, GREM, GCIH, GNET or equivalent.
Desirable:
Experience in working within a SOC (security Operations Centre).
Kali Linux
Experience in large engineering teams working on the implementation of new large systems
An understanding of Network attack Methodologies or understanding and experience of both the Windows and UNIX based Operating System and application environments
Compliance/Audit experience.
Deployment of SIEM Tools an SOC development.
Experience of large system engineering, including requirements management and baseline management using CASE tools (e.g. IBM DOORS).
Hold Qualification in either CLAS or CCP at the SIRA (Security and Information Risk Advisor) at Practitioner level or Commercial equivalent.
Knowledge of OS lockdown (Windows/Linux) and Network security.
Our client is seeking to fill specific security roles for a Data Centre project in support of a Satellite System. The roles on offer are both exciting and challenging and are for an initial period of six months. In either case, the candidate(s) should be able to demonstrate the ability to work in a dynamic environment, on a large project with complex stakeholder sets with initiative, diplomacy, persistence and minimal oversight.
The Security Engineer and Pen Tester role requires the responsible person to have a solid base of practical experience in security, including use of the common Penetration Tool (e.g NMAP, Nessus, Wireshark) and also experience in system engineering on large projects. The Security Engineer and Pen Tester role encompasses a number of differing tasks - to include:
Management of the issues arising from External penetration testing, auditing and ITHC activities.
Interfacing with engineering and deployment teams to identify Penetration Test mitigations and overseeing their deployment to the operational environment.
Security testing of the production and validation environments to assure deployment of mitigations.
Liaison with external Testing companies to procure validation tests.
Definition of lockdowns, specification of validation for lockdown.
Security guidance to the other engineering groups and subcontractors
Technical Assessment of vulnerabilities and their impacts (application, system, operational) then consultation on resolution.
Support to verification, including definition and execution of test procedures
Activities as directed by the Security Manager.
Personal attributes:
Trustworthy and use a trustworthy manner in all interactions with customers, colleagues and suppliers.
Committed to personally following good security practice to provide example to others in the team.
Driven to improve security but not dogmatic.
Persistent and resilient.
Some international travel may be required for these roles business trips.
For more information please contact John Paul or Lily at Protec Technical Ltd