Lume Consulting Group a Sacramento based IT consulting company is looking for a qualified individual to fill the role of a Information Security Specialist
The Information Security Specialist will provide highly specialized experience in one or more information, computer, or network security disciplines (e.g. penetration testing, accreditation, or risk assessment and mitigation); develop system security plans, certification and accreditation reviews; analyze and establish processes for comprehensive systems and data protection; assess and mitigate system security threats and risks; perform security audits, evaluation, risk assessments and make strategic recommendations; and manages, supports, installs and maintains security tools and systems, and tracks security patches and incidents.
The Information Security Specialist will possess knowledge and experience in standard methodologies used in certification and accreditation processes;
Extensive experience following NIST guidelines in risk assessment and management; conducting vulnerability analysis; developing mitigation plans; and performing penetration testing, password protection testing and application security testing.
Experience
A minimum of five (5) years of experience applying security policies, standards, testing, modification, and implementation. At least three (3) years of that experience must be in information security analysis.
Education
Possession of a bachelor’s degree in an IT- related or Engineering field.
- Minimum Qualifications and Experience3 years’ experience within the last 5 years providing security vulnerability and risk assessment services directly or through a partner relationship.Security Certification either Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA).Experience with industry standard compliance frameworks (CIS, NIST, OWASP).
Understanding of State Administrative Manual (SAM) Section 5300, Information Security.
Technical knowledge and experience performing computer forensic
3 years’ experience within the last 5 years in configuration, support, and architectural design of the following platforms in an enterprise environment:
- Palo Alto Next Generation Firewalls
- CISCO ASA Firewalls, Routers, Switches, and VPNs
- F5 BIG-IP appliances and modules
3 years’ experience within the last 5 years in configuration, support, and architectural design of the following platforms in an enterprise environment:
- Microsoft Active Directory
- AWS server-less Cloud Environment/AWS Services and Technologies
- Microsoft Azure Platform- as- a-Service technologies
- Apache web servers
- IIS web servers
- Linux servers
- Windows servers
- Preferred Qualifications and Experience
In addition to the minimum qualifications identified above,
Candidate must posses some or all the following qualifications:
- Cisco Certified Internetwork Expert (CCIE) Routing and Switching
- Cisco Certified Network Professional (CCNP) Security
- Microsoft Certified Solutions (Expert (MCSE) Server Infrastructure
- Palo Alto Network Certified Network Security Engineer (PCNSE)
- F5 Certified Technology Specialist (F5-CTS ASM)
- GIAC Certified Penetration Tester
- Internet Security Certified Product Specialist
3 years’ experience within the last 5 years in configuration, support, and
architectural design of the following platforms in an enterprise environment:
o Databases to include: Microsoft SQL Server, Oracle Databases and MySQL Database
o Web API Services o .NET Framework