('binary' encoding is not supported, stored as-is) Mindbank Consulting Group of Denver, L.L.C. is seeking qualified candidates for a full-time, 1 year contract position with option for renewal with our Lakewood, CO client. Local candidates will receive first consideration, no relocation assistance will be offered. Job Title: Computer Security Incident Response Engineer Skill Classification: Tier 2 Position Summary As a member of the Branch of Communications Technology Network Security Team you will be responsible for providing front-line operational security support for distributed information systems and end-users in a Wide Area Network environment. Key Skills Desired CheckPoint Firewall-1, Intrusion Detection Software (snort, border guard), Port Scanners (nmap, sl), Vulnerability Assessment Tools (Latis VAM, Nessus), RedHat Linux (6.0-8.0) and Windows 2000 administration and security configuration. Essential Duties Firewall Administration ·Audit and review firewall rulebases on CheckPoint Firewall-1 deployments installed on Linux platforms, update firewall rules based on business needs documenting all changes, monitor firewall logs for network anomalies, perform attack trend analysis using historical and current log data. Intrusion Detection System Administration ·Continually monitor for network attack signatures using Latis Still Secure Border Guard IDS, temporarily block attacking source IPs from disrupting operations, document and escalate acceptable use violations as detected, provide support and administration for Linux systems hosting IDS software. Incident Response ·Perform on-going trusted and un-trusted security assurance vulnerability scans against hosts within a class B network, analyze results for false- positives, notify system owners for correction. ·Work with FedCIRC in resolving security incidents that may impact large user bases. ·Provide security expertise to effectively combat email SPAM. ·Develop a virus protection methodology for implemented in a production data center environment. ·Perform forensics analysis of compromised machines (Windows 2000, XP, Linux), adhering to industry standard best practices such as evidence preservation and containment of machine(s). ·Provide analysis of existing platform infrastructure to implement effective Security Patch Management processes in a heterogeneous information systems environment. Qualifications ·Ability to harden default Linux install bases is required, familiarity with security tools such as Tripwire is a plus. ·Must be able to analyze and perform forensics of compromised systems. ·Ability to compile and install multiple software packages on Linux systems. ·Experience installing and configuring new Linux computer systems from scratch. ·Excellent customer service skills and ability to positively represent team to multiple government agencies. ·Strong oral and written communication skills with varied audiences (e.g. network engineers, operations and support personnel and end users). ·Ability to work well under pressure and in a team environment. ·Passion for technology and securing information systems. Preferred Certifications ·CheckPoint Firewall certification (CCSA) ·Certified Information Systems Security Professional (CISSP) ·Microsoft Certified Professional Windows 2000 (MCP)
This archive was generated by hypermail 2b30 : Tue Mar 04 2003 - 13:41:21 PST