Company Profile:

TraceSecurity is a leading provider of security compliance and risk management solutions.  The company helps organizations of all sizes to achieve, maintain and demonstrate security compliance while significantly improving their security posture.  Key to TraceSecurity’s success is the company’s comprehensive patent-pending methodology that helps clients address all of the critical components of a successful security compliance program; people, process and technology.   

TraceSecurity delivers its solutions through an integrated software-as-a-service platform backed by expert professional services and comprehensive security awareness programs.  The company’s flagship offering, TraceCompliance Manager, is the first comprehensive solution to automate regulatory compliance audits, board level reporting, policy management, vulnerability assessment, and employee education and testing.  The company’s expert professional services include onsite risk assessments, security audits, and social engineering.  The security awareness programs include an exhaustive set of standard offerings as well as custom designed courses.  With over 500 clients, TraceSecurity supports the risk management and security compliance efforts of organizations in financial services, healthcare, insurance, government and other regulated sectors.

TRAVEL SECURITY ENGINEER

Summary:

A Security Engineer executes IT security audits, vulnerability scans, and compiles comprehensive reports directly related to customers’ specific risk and business plans. The SE interfaces directly with customers to meet and exceed security auditing, penetration testing and remediation requirements. The SE provides timely documentation detailing systems, network and communication security vulnerabilities. Security evaluations follow outlines provided by Sarbanes-Oxley, Gramm-Leach-Bliley, FDIC, NCUA and HIPAA. SE’s should expect up to 50% of travel time.

Responsibilities:

•  Executes internal, external, onsite and remote IT security audits and penetration tests.

•  Responsible for full-cycle self-supported security auditing and penetration testing of onsite and remote targets.

•  Compiles comprehensive written reports directly related to customers’ specific risk and business plans.

•  Provides oral and written post-evaluation report detailing discussions/conferences with clients to provide remediation suggestions and guidance.

•  Interviews and evaluates customers to meet and exceed security-auditing, penetration testing and remediation requirements.

•  Provides timely documentation detailing systems, network and communication security vulnerabilities.

•  Responsible for detailed project management documentation throughout the engagement lifecycle.

•  Will provide team/project support as needed.

•  Performs security evaluations that follow outlines provided by Sarbanes-Oxley, Gramm-Leach-Bliley, FDIC, NCUA, HIPAA and others.

•  Expect up to 50% of travel time.

Experience and Education Requirements:

•  1-3 years of network/programming/systems experience

•  College degree and/or equivalent IT industry training or work experience

Professional Certifications:

•   Relevant professional certifications (e.g. CISSP, CISA, CEH, SSCP, SCNP, etc.) are a plus.

Skills and Abilities:

•  Effective verbal and written communication skills.

•  Microsoft and/or UNIX operating system knowledge. AIX experience a plus.

•  Computer Networking, Systems or Programming experience

•  Sound knowledge of network protocols, operating systems and management systems with hands-on experience.

•  Ability to handle basic TCP/IP troubleshooting.

•  Knowledge of basic security auditing tools such as NMAP, Nessus, NetCat, HPing, network scanners, password crackers and packet capture tools is a PLUS.

Special Job Conditions :

•  Available for nationwide air travel, up to 50% of the time.

•  Must be bondable.

•  Must be able to obtain rental automobile.

•  Must be able to lift 25 lbs.

•  Must pass background check and drug screen.

•  Must be available to work scheduled hours for position.

•  Must be available to work overtime if necessary to meet deadlines.