Senior Security Engineer Job # 1306574 Duration 8 months temp to hire Location : Palo Alto, CA Position Summary The position will be part of the on-site team responsible for all aspects of client Operational Security. This includes security architecture, security embedment, security process management and ownership, and implementation of security policies, processes and standards. Essential Duties and Responsibilities Maintain a current, updated list of compliance processes for Security Operations Lead security specific projects and initiatives Development of custom security solutions when necessary to meet business requirements Co-development and promotion of application security standards, guidelines, policies, and procedures Interact with client to understand specific threat context and deliver intelligence information based on focused threat research Lead resource in driving operations security reviews Support of specific security toolsets, including Security Provisioning, Patch and Vulnerability, Workstation and Server Protection, etc Perform proactive research to identify and understand new threats, vulnerabilities, and exploits Additional Responsibilities Perform other essential duties as assigned Some basic system administration duties Vendor communications for technical support where required Knowledge, Skills and Abilities Solid knowledge of Windows, Linux and inter-networking environments Demonstrated competence in Platform and Application security principles Project management experience Familiarity with MS Office and MS Project (or the equivalent), and SQL reporting Familiarity with Security toolsets (Virus, VPN, F/W, Patch, etc.) Social Skills: Strong presentation, inter-personal and communication skills both written and oral Ability to work under pressure and prioritize multiple projects effectively Team player, enthusiastic and committed Attention to detail and great organizational skills Education and Experience Four-year degree in a relevant field preferred or an equivalent amount of post-secondary education and experience Compliance/certification readiness (Client defined security requirements, FFIEC, HIPAA, NIST, ISO 27001, PCI DSS, Sarbanes Oxley, SSAE16, Shared Assessments AUP, SysTrust, etc.) Business impact analysis Business continuity design, testing and review Security awareness program design and review Information security project management Security product evaluation and selection Client/Vendor contract security requirements design and review Vendor security due diligence Advise and mentor personnel (in-house and third-party) with information security roles and responsibilities Assist management team and staff with design, integration, and interpretation of information security program controls Provide application developers and QA personnel with technical training and guidance on how to develop and test applications securely Provide system administrators with technical training and guidance on how to build and maintain IT infrastructure securely Review audit, penetration testing, and vulnerability reports, assisting with prioritizing issues and tracking resolution Virtual CISO Vulnerability management program design and review Vendor risk management program design and review Security metrics program design and review Security program design and review Security architecture design and review Security policy and procedure design and review Security operations process design and review Secure software development lifecycle program design and review Manage a Security Operation Center 8:00am to 5:00pm shift Overtime : straight time Skill/Role Level Years Preference Electrical Design Engineer Intermediate 8.0 Preferred Technical problem-solving Intermediate 8.0 Required Problem Resolution Intermediate 8.0 Required Analytical skills Intermediate 8.0 Required System Engineer Intermediate 8.0 Required Computer/Console Operations Intermediate 8.0 Required