This site uses cookies. To find out more, see our Cookies Policy

Vulnerability Security Engineer in Marshalltown at Apple & Associates

Date Posted: 1/9/2019

Job Snapshot

Job Description

Vulnerability Security Engineer
Marshalltown, IA
The Vulnerability Security Engineer will be responsible for shielding information system assets by identifying and determining vulnerabilities in applications and communicate to developers on how to fix them. Our client has been named a Top Workplace by the Des Moines Register for 8 consecutive years. They offer one of the best benefits packages in the state of Iowa.
Key Responsibilities:
  • Create strategies to be able to respond from a security breach and implement open-source/third-party tools to assist in detection, prevention and analysis of security threats.
  • Install firewalls, data encryption and other security products and procedures.
  • Conducts periodic network scans to find any vulnerability, as well as penetration testing, simulating an attack on the system to find exploitable weaknesses.
  • Establish information security plans and policies.
  • Monitor networks and systems for security breaches, through the use of software that detects intrusions and anomalous system behavior.
  • Create procedures to minimize the impact by conducting a technical and forensic investigation into how the breach happened and the extent of the damage.
  • Leads incident response, including steps to minimize the impact conducting a technical and forensic investigation into how the breach happened and the extent on the damage.
  • Provide engineering support to integrate security and compliance requirements into all enterprise information systems and projects as part of the SDLC process.
Job Qualifications:
  • Bachelor’s degree in Information Technology or Information Security
  • Application security expertise.
  • Programming background required.
  • Preferred experience with penetration testing software including: Metasploit, Nmap, Wireshark, Aircrack-ng, John the Ripper, Nessus or Burpsuite.
  • Experience with big data, cloud, and major virtualization technologies.
  • Demonstrated knowledge of technologies: MCSE, MCSA, GCUX, GCWN, CCIE, CCNP, F5, etc.
  • Experience with enterprise-ready technologies at a global scale including Windows, Unix, Cisco, Palo Alto; regulatory and industry frameworks and standards.
  • Experience in web and network penetration tools and techniques.
  • CISSP or CISM certifications preferred.
  • Comp TIA Security+ certification desired.
  • Ability to communicate highly technical and complex security concepts to both technical and non-technical audiences in a clear and effective manner.
Additional Incentives:
  • Tuition Reimbursement
  • Health, Vision, Dental and Life Insurance
  • 401(k) retirement plans
  • Short and Long-Term Disability
  • Paid Time Off
  • Paid Holidays
Information security engineer, security engineer, information system, security, information technology, big data, cloud, virtualization technology, enterprise-ready, firewall, data encryption, network, forensic, investigation, compliance, MCSE, MCSA, GCUX, GCWN, CCIE, CCNP, F5, CISSP, CISA, CISM, GPEN, GWAPT, GCIH, GIAC, OSCP, CEH, Check Point, PCNSE, Windows, Unix, Cisco, Palo Alto, CIS, PCI-DSS, ISO 27000, NIST 800, HIPPA, Comp TIA Security+, application security, cyber security, penetration testing software, security, vulnerability, architect, Vulnerability Security Engineer, intrusion, anomalous, forensic, detection