Tip: Click / touch once to select each option. Click / touch again to deselect.
LRS Consulting Services is seeking a Sr. Network Security Engineer for a 6-month contract engagement with the strong possibility of extension and/or conversion for the right person with our client in Washington D.C. If you’re that person, if you have the experience that we need, submit your resume now!LRS Consulting Services has been delivering IT excellence for over three decades. Our reputation for quality, flexibility, and strong relationships with our clients keeps them turning to us to meet their IT consulting needs. Our contacts combined with your technical expertise equals career possibilities for you. So let’s get to work!The Sr. Network Security Engineer will: - Perform the day to day monitoring of security tools such as vulnerability scanners and act as an escalation point for notifications sent by hosting providers or internal teams regarding malware, vulnerabilities, indicators of compromise and other security related incident indicators.- Work with software architects and developers to understand the applications deeply, to then define logging and auditing standards.- Define the network zoning policies and standards to be applied to the different types of systems, and the rules governing the communications with all of them.- Coordinate and ensure of the proper implementation of network controls with hosting provider(s), such as firewalls, IDS/IPS, DNS monitoring, WAF and DDoS protection.- Implement processes and tools to ensure that all exchanges of information with third parties and clients use secured paths.- Work with internal security to ensure specific threats and compromise scenarios are covered by internal controls, or to design or modify existing controls currently in place.- Coordinate penetration testing engagement with external vendors as well as the corporate information security team.- Coordinate the remediation of issues discovered through penetration testing, integrating these results to the vulnerability management process.- Perform manual and automated testing of new software and infrastructure used before they are deployed to production.- Define patterns and circumstances that should be deemed suspicious or malicious, and deploy systems to monitor these patterns across the application and underlying infrastructure.- Perform account reviews to ensure account creation, modification and deletion respect policy.- Work with systems administrators and hosting providers to ensure authentication security tools such as Two Factor Authentication are deployed securely, and that service accounts and other highly privileged and administrator/support accounts are restricted as much as possible.To apply, please submit your resume to hropp@LRS.com. Visit us online at www.LRS.com.LRS is an equal opportunity employer. Applicants for employment will receive consideration without unlawful discrimination based on race, color, religion, creed, national origin, sex, age, disability, marital status, gender identity, domestic partner status, sexual orientation, genetic information, citizenship status or protected veteran status.
- Bachelor’s degree in Computer Science, Engineering, Sciences, Mathematics (or related disciplines) - 8+ years of technical information security experience - 5+ years with hands-on experience in application and system/network security testing in an enterprise environment. - 5+ years of experience performing web application security/penetration testing in accordance with well- known methodologies from OWASP, SANS, and NIST - 5+ years of experience in testing multiple Operating Systems (Windows, Linux, and OSX) as well as network devices - 5+ years of experience with manual web application assessment and penetration testing methods related to web application mapping, reviewing client-side controls, testing user-input fields, and attacking session management, authentication, access controls, encryption, and backend databases/data stores - Working knowledge and understanding of information system security vulnerability assessment/testing on a wide variety of technologies and implementations utilizing both automated tools and manual techniques- Candidate must be able to effectively communicate in English (written & verbal)- Candidate must have permanent authorization to work in the USA for any employer- Corp to corp candidates will not be considered
This position is: Direct Placement
EEO is the Law
In compliance with the ADA Amendment Act (ADAAA), if you have a disability you may request an accomodation in order to apply for a position with LRS.
View our ADAAA Information
Get Adobe Reader