Information Security Manager Location Atlanta, GA FulltimeDirect Hire Role Job Description We are seeking an experienced senior information security operations engineer with a broad-based background in vulnerability assessment, security log management and incident response. This is a mid-level technical role in a fast-paced growing security organization. Essential Duties and Responsibilities Working with security tools and API integration work including writing scripts and development of automation around detection and remediation activities. Given the growing nature of the organization, you will work closely with other internal and external groups and may also assist in other security activities as necessary in response to assessments andor audits. Implementing and operating vulnerability management and security log collection and monitoring tools, analyzing data from those tools and providing recommendations for security improvements to existing processes and technology, and participating in and leading incident response efforts. Qualifications To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed are representative of the knowledge, skill, andor ability required Required Education, Skills or Experience Bachelorrsquos in computer science (or equivalent) degree Minimum of 7 years of documented information security work experience. Atalla HSM experience (knowledge of transaction encryption) and Imperva SecureSphere WAF and DB experience. IT security certifications (SANS GIAC, CISSP, CCNA Security, CCNP Security, RHCSA or RHCE, MCP or MCSE ) are a plus Experience with planning, deployment, and operation of large enterprise security management tools such as IDSIPS (network and host), advanced anti-malware (network and endpoint), DLP, encryption, anti-virus, firewalls, identity management, NAC, MDM etc. Experience with advanced malware technologies is a plus. Demonstrated experience with malware remediation. Experience in one or more technical forensic tools Experience with Splunk from systems deployment and endpoint configuration to log analysis and interpretation. Ability to identify signs of intrusion or infection on a variety of systems. Identification and remediation of OS and network security weaknesses and vulnerabilities Expertise in administration of enterprise OSrsquos Response to internal andor external reports, events, and incidents (e.g. scanning, hacking, phishing) Effective writing skills ability to produce clear, concise and high-quality technical and business documents A desire to work collaboratively in a small, cross-functional team A strong sense of accountability and self-motivation An ability to think critically and an aptitude for problem solving At least 7 years of systemnetwork security experience, including threat modeling, threat assessments, risk identification techniques, penetration testing Detailed knowledge of network and Web related protocols (e.g., TCPIP, IPSec, HTTP, SSL, routing protocols) Ability to move seamlessly between a hacker attacker mindset and a security engineer defender mindset Hands on experience with Nmap, vulnerability scanners, ZAP, Kali, MetaSploit, Wireshark, Kismet, Aircrack-ng Penetration testing experience Application and database security experience, including code reviews Network and security engineering experience, including log and network traffic capture analysis Associated topics: chief program officer, cpo, manage, manager, management, monitor, product manager, project manager, relationship manager, task
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.