We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Genesis10 jobs

Sr. Security Engineer

Genesis10
life insurance, 401(k)
United States, Georgia, Atlanta
Jan 08, 2025
Genesis10 is currently seeking a Sr. Security Engineer Consultant with our client in the transportation industry in their Atlanta, GA location. This is a 12 + month contract position.

Description:

Seeking a Sr. Security Engineer

Our client is on a journey to becoming the best IT organization in the airline industry, a journey of transformation. They are changing the way we do business from top to bottom as we strive to create meaningful and innovative solutions and are looking for team members to help us realize our vision.

Responsibilities:

  • Proactively identify, analyze, and remediate information security and technology risks throughout the third-party lifecycle (planning, due diligence, contract adherence, transition, continuous monitoring, and offboarding)
  • Partner with IT Portfolios (Infrastructure and Reliability, Architecture, Channels Technology), key functional partners (Legal, Privacy, Corporate Audit), and external assessors
  • Participate in vendor risk management activities including but not limited to third party risk assessments, gap analysis, contract review, vendor breach and termination activities, and partner with internal stakeholders to monitor vendors
  • Perform data analytics and create meaningful reports to effectively communicate outcomes from vendor management activities and relate security, compliance, and/or governance-related concepts and controls across a variety of audiences including non-technical audiences
  • Identify and communicate findings of non-compliance with client Information Security Standards and track to remediation or to an acceptable level of risk
  • Continuously work to improve the overall Vendor Risk Management Program through identifying opportunities and leading implementation activities
  • Provide guidance to the business, Strategic Sourcing and other stakeholders to ensure requirements of VRM are fully understood
  • Serve as the subject matter expert in interpreting requirements and improve awareness of Operational Risks faced by Business from vendor's failure/poor performance
  • Stay informed about the latest developments in the vendor risk management field
  • Perform any other job-related instructions, as requested, with reasonable accommodation
  • Responsible for the design, testing, evaluation, implementation, support, management, and deployment of security systems/devices used to safeguard the organization's information assets
  • Analyze the information security environment and assist with the development of security measures to safeguard information against accidental or unauthorized modification, destruction, or disclosure
  • Work with the technical team to recover data after a security breach
  • Configure and install firewalls and intrusion detection systems
  • Develop automation scripts to handle and track incidents
  • Investigate intrusion incidents, conduct forensic investigations and mount incident responses
  • Deliver technical reports and formal papers on test findings
  • Install firewalls, data encryption, and other security measures
  • Maintain access by providing information, resources, and technical support
  • Ensure authorized access by investigating improper access; revoke access; report violations; monitor information requests by new programming; recommend improvements
  • Update job knowledge by participating in educational opportunities; read professional publications; maintain personal networks; participate in professional organizations
  • Accomplish information systems and organization mission by completing related results as needed
  • Build, deploy, and track security measurements for computer systems and networks
  • Mitigate security vulnerabilities by implementing applicable solutions and tools
  • Perform vulnerability testing, risk analyses, and security assessments
  • Collaborate with colleagues on authentication, authorization, and encryption solutions
  • Test security solutions using industry standard analysis criteria
  • Respond to information security issues during each stage of a project's lifecycle
  • Perform risk assessments and testing of data processing systems
  • Establish system controls by developing framework for controls and levels of access; recommend improvements
  • Establish computer and terminal physical security by developing standards, policies, and procedures; coordinate with facilities security; recommend improvements
  • Safeguard computer files by performing regular backups; develop procedures for source code management and disaster preparedness; recommend improvements
  • Determine the sensitivity of the data in order to recommend the appropriate security needs
  • Develop proposals for, and consider cost effective equipment options to satisfy security needs
  • Communicate with the technical team, management team and users companywide if data security is breached
  • Design infrastructure to alert the technical team of detected vulnerabilities
  • Evaluate new technologies and processes that enhance security capabilities
  • Supervise changes in software, hardware, facilities, telecommunications and user needs
  • Define, implement, and maintain corporate security policies
  • Analyze and advise on new security technologies and program conformance
  • Create, test, and implement network disaster recovery plans
  • Recommend security enhancements and purchases
  • Train staff on network and information security procedures
  • Develop security awareness by providing orientation, educational programs, and on-going communication
  • Recommend modifications in legal, technical and regulatory areas that affect IT security



Requirements:

  • 5 or more years of experience with information technology security programs, audits, controls and/or third-party risk management
  • High school diploma, GED or high school equivalency
  • Ability to identify and assess IT security controls against client policies and standards and Federal/State Regulatory requirements and identify and communicate gaps
  • Exceptional written and verbal communication skills
  • Advanced computer skills including Microsoft Office suite and other business-related software programs
  • Ability to effectively manage time and productivity with competing priorities in a rapidly changing, fast-paced, interactive, results-based team environment
  • Proven analytical/problem solving skills and ability to work with cross-functional teams
  • Embraces diverse people, thinking and styles
  • Consistently makes safety and security, of self and others, the priority



Desired skills:

  • Bachelor's degree or 5 plus years of relevant experience in Computer Science, Mathematics, Engineering, Information Systems, Management Information Systems or Information Security
  • Key industry certifications such as CISA, CISM, CISSP, CRISC, etc.
  • Knowledge of industry standard frameworks such as NIST Cybersecurity Framework, ISO 27001, NIST 800-30, etc.
  • Familiarity with third party information security attestations/certifications such as SOC I/II reports, ISO, PCI-DSS, SOX
  • Comprehensive knowledge of third-party risk concepts, methodologies, governance structures and experience in managing risk and performing vendor risk assessments
  • Experience across Information Security domains such as governance and compliance, incident response, identity and access management, penetration testing, or e-discovery and forensics
  • Experience across IT domains such as application development, infrastructure, technical support and operations, cloud technologies and/or continuity of business
  • Experience with RSA Archer



If you have the described qualifications and are interested in this exciting opportunity, please apply!

About Genesis10:

Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.

For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:
* Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.

* The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.

* Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)

* Behavioral Health Platform

* Medical, Dental, Vision

* Health Savings Account

* Voluntary Hospital Indemnity (Critical Illness & Accident)

* Voluntary Term Life Insurance

* 401K

* Sick Pay (for applicable states/municipalities)

* Commuter Benefits (Dallas, NYC, SF)


For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.

Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Applied = 0
MORE JOBS LIKE THIS

(web-6f784b88cc-s8lnv)