About Encari Careers Network Security Consulting Engineer

Network Security Consulting Engineer

Job Description:
Provide expertise in support of critical infrastructure (e.g., electric utility) clients in the design, implementation and testing of system-wide information management and process control systems. Candidates must be able to support the development of new technology recommendations and proposals, including the design and integration of systems, obtaining vendor quotes, and the support of cost estimates for preparation of proposal documents.

Principal Duties and Responsibilities:

  • Assist in the design and development of system implementations
  • Perform all required operational maintenance and troubleshooting of supported systems
  • Develop and implement standards and operating procedures
  • Perform daily backup and recovery operations for the supported systems
  • Participate in disaster recovery planning, development, exercises, and actual events
  • Evaluate and test software changes and updates supplied by vendors, prior to installation
  • Work with vendors, application developers, database administrators, corporate IT, and other technology groups to resolve any problems
  • Conduct routine hardware and software audits of all supported systems to ensure compliance with established standards, policies, procedures, and requirements
  • Maintain proper change management documentation for all hardware and software modifications
  • Participate in the Cyber Incident Response Team (*CIRT*)
  • Develop and implement standards and operating procedures
  • Provide reliable 24/7 support for numerous facilities within client's service territory
  • Assessing organization's network security posture through the use of automated tools and manual techniques to identify and verify common network security vulnerabilities
  • Use commercial and open source vulnerability tools
  • Perform manual verification of vulnerabilities with an emphasis on reducing false positives
  • Develop assessment reports
  • Interface with client personnel to gather information and investigate security controls
  • Report to technical client personnel and client’s project managers, including the preparation of weekly status reports

Required Skills:
Candidate should have a demonstrable understanding of the suitability and applicability of state of the art technologies and be able to define system requirements, recommend solutions, and support implementation and operations. Bachelor's degree in related technical discipline and five (5) years of experience working in an enterprise network systems management environment with extensive hands-on experience working with the various network management tools and processes typically deployed in an large enterprise. 

Desired Skills:

  • Networking and security certifications, such as CCNA, CCNP, CCSP, CISSP, CISA, GIAC, or CCIE
  • Knowledge of security event information management
  • UNIX operating systems and variants
  • Windows operating systems
  • Network Management/monitoring Systems
  • Experience performing similar work in the past year
  • Demonstrated knowledge of common network security vulnerabilities, including the ability to describe prevalent vulnerabilities and standard remediation activities
  • Ability to perform manual verification of vulnerabilities and associated risks
  • Competency with network security and information security concepts and technologies
  • Prior experience working in an information security consulting role
  • The candidate must be able to effectively communicate with the client:
  • Must be able to work well with client personnel
  • Project management experience is a plus
  • Good writing and documentation skills

Mental and Physical Requirements:

  • Travel, including air travel, ability to meet pressured deadlines and time constraints
  • Ability to occasionally work overtime and weekends, available for occasional 24 x 7 on-call access
  • May need the physical dexterity required to install heavy server equipment

Benefits:

  • Health insurance
  • Dental insurance
  • 401k contribution and matching plan
  • 125 Plan (health)
  • Paid time off (i.e., sick + vacation days)
  • Paid holidays off

Why Do Our Clients Choose Encari?

  • Encari consultants are security experts who have deep knowledge and extensive experience in all aspects of information security.
  • Among Encari’s consultants are individuals with more than fifteen years experience in the area of SCADA/process control security within transmission and generation and more than four years experience in providing implementation services to electric utilities and Regional Reliability Organizations based on NERC cyber security standards, starting with the UA1200 standard in 2004 and continuing with CIP in recent years.
  • Encari consultants have worked with the NERC CIP Committee Drafting Team for the current CIP requirements, and are now participating with the drafting team for the revised requirements.
  • Encari consultants have extensive experience in performing assessments and providing recommendations with respect to: 24x7 critical control system operations; limited dependence systems; vulnerability assessments; network architectures; information security policies, standards, guidelines, and procedures; general industry process control security standards (e.g., IEC, NIST SP 800-82 and ISA 99); identity and access management; intrusion detection and prevention; and secure network architecture.

 If you are interested in being considered for employment by Encari, This e-mail address is being protected from spambots. You need JavaScript enabled to view it .

Copyright 2008-2010 Encari, LLC.