Lead or participate in computer security incident response activities for moderately complex events. Conduct technical investigations of security-related incidents and perform post-incident digital forensics to identify causes and recommend mitigation strategies. Provide security consulting on medium-sized projects to ensure compliance with corporate information security policies and standards.
Design, document, test, maintain, and offer issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud services, authentication, directory services, email, internet applications, and endpoint security. Review and correlate security logs to identify vulnerabilities and issues. Utilize expertise in leading security solutions and best practices to implement components of information security, including availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity.
Identify security vulnerabilities, perform risk assessments, and evaluate remediation alternatives. Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve objectives.
Required Qualifications:
- 4+ years of experience in Information Security Engineering or equivalent demonstrated through a combination of work experience, training, military experience, and education.
Additional Responsibilities
- Develop mainframe security solutions using tools such as RACF, REXX, zSecure, and CARLa.
- Review and correlate security logs for monitoring and threat identification.
- Apply industry-leading security solutions and best practices to ensure comprehensive information security.
Preferred Qualifications:
- 5+ years of experience in Information Security Engineering or related fields.
- 5+ years of experience in mainframe security risk assessment and remediation.
- 5+ years of hands-on experience with Resource Access Control Facility (RACF) on current supported versions (z/OS 2.1 and above).
- Proficient in issuing RACF commands and performing diagnostics.
Additional Skills:
- 5+ years of experience with Job Control Language (JCL).
- 5+ years of experience with Time Sharing Options (TSO).
- Proficiency in REXX and CARLa.
- Experience with the zSecure tool.
- Advanced technical skills in Information Security and a strong understanding of security practices and policies.
- Ability to manage complex issues and develop effective solutions.
- Excellent verbal and written communication skills.
