Security Engineer

POSITION SUMMARYThe Security Engineer is responsible for the administration of several security processes, including managing vulnerability scans and remediation efforts, evaluation of network connectivity and VPN access requests, and supporting Information Security Operations on-call schedule. The Security Engineer will also participate in the Security Incident Response team as needed. This position will also review system and firewall logs for potential security events. Finally, this position will help to manage system security policy configuration.JOB RESPONSIBILITIES Security Process AdministrationReview, remediate, and follow-up on remediation of vulnerabilities identified in proactive vulnerability scans. Evaluate and approve firewall change requests and requests for Virtual Private Network (VPN) access. Coordinate/provide oversight on production password changes. Incident ResponseWhen needed, participate in the incident response team in a technical, hands-on role. Identify the root cause of security incidents. Independently recommend and implement solutions for limiting the scope of the incident. Eradicate any signs of intrusion. Work with management to recommend and implement additional controls to prevent future incidents.Security Scanning and MonitoringMonitor announcements of new security vulnerabilities. Identify vulnerabilities that are applicable to WDIG systems and applications, determine their severity and urgency, work with system owners to determine if and when corrective action will be taken, and perform necessary actions to ensure recommendations are implemented in a timely manner. Review system and firewall logs, and IDS alerts. Miscellaneous Security ConsultingProvide other teams with security consulting services, including responding to requests for more information and assisting with specific projects. QUALIFICATIONS FOR POSITION Bachelors degree in Computer Science, Information Systems, Engineering, or related major is desired. Requires 2-4 years of full-time experience in information security, including specific experience with firewall administration or auditing, vulnerability scanners, and security event monitoring. 3-5 years of total experience in information security, network administration, or systems administration is desired. Experience working in a high-bandwidth Internet environment is desired.SPECIFIC SKILLS REQUIRED Must be able to independently evaluate change requests to production firewalls and VPN access, and provide an approval recommendation based on information security best practices. Familiarity with security tools such as QualysGuard, nmap, Nessus, Sourcfire Intrusion Sensor and Realtime Network Awareness (RNA), CIS Scoring tools, Retina, etc. is desired. Must be familiar with PGP. SSCP, CISSP, or at least one GIAC certification (GSEC, GCWN, GCFW, GCIH, etc.) is strongly desired. The candidate must be able to successfully complete a criminal background investigation and a credit history check. Apply Now Location: SEATTLEStatus: Full Time, Temporary/Contract/ProjectJob Category: IT/Software DevelopmentCareer Level: Experienced (Non-Manager) About COMSYS COMSYS IT Partners, Inc. (NASDAQ: CITP) is a leading information technology services company with 44 offices across the U.S. and offices in Canada and the U.K. Leveraging more than 30 years of experience, COMSYS service offerings include contingent staff aug-mentation, permanent recruiting and placement, vendor management and project solutions, including network design and management, customized software development and maintenance, software globalization/localization translation services and implementation and upgrade services for SAS, business intelligence and various ERP packages. For more information, visit www.comsys.com.COMSYS is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, national origin or any other characteristic protected under federal, state, or applicable local law. View all COMSYS opportunities Learn more about COMSYS at www.comsys.com