N-iX is looking for highly skilled Information Security Engineer who will be responsible for safeguarding information system assets by identifying and solving potential and actual security problems.
Responsibilities
Leading network and application vulnerability assessments and penetration testing;
Security program development, and information security policy development;
Security logs and alerts monitoring;
Conducting internal security audits;
Perform investigations and documentation on security events.
Qualifications
5 years of information security experience, with a minimum of 1 years of offensive security experience;
Strong knowledge of security tools and how to use them;
Strong knowledge of security products and how they fit into modern security models;
Strong knowledge of enterprise firewalls (Fortigate, CheckPoint etc.);
Strong knowledge of Microsoft Active Directory and Directory services;
Strong understanding of common information security concepts such as defense-in-depth, security trust models, complete mediation, security architecture design;
Knowledge of common information security standards and risk methodologies, such as ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT;
Strong knowledge of network, web technologies and frameworks;
Network and/or security certifications are a plus;
Working knowledge of public key infrastructure and encryption systems;
Ability to work independently.
Technical skills
Experience performing penetration testing;
Experience with multiple OS such as Linux, Mac OS X, iOS, Android, Windows;
Familiarity with software security weakness, vulnerability and secure code review;
Familiarity with software attack and exploitation techniques.