IT Security Engineer - 1 Opening(s)Category: IT - Security Experience:
4 - 6 Years
Location:
Bengaluru/Bangalore
Education:
UG - Any Graduate - Any Specialization,Graduation Not Required PG - Any PG Course - Any Specialization,Post Graduation Not Required
Industry Type:
IT-Software/ Software Services
Role:
System Security
Functional Area:
Network Administration, Security
Desired Candidate Profile:
This position will help define and validate the implementation of security controls on Herbalife systems and applications. Provide oversight and management of Herbalife’s Information Security Infrastructure, and provides security guidance to other groups. Regularly validate security controls and compliance with governmental and industry regulations, internal corporate policies, and security best practices. This position will also assist in documenting and tracking disaster recovery controls, processes, and applications to ensure proper recovery methods.
DETAILED RESPONSIBILITIES/DUTIES:
1. Web and intranet application security reviews
2. Active Directory security reviews, including GPOs and delegation of rights
3. Provide security oversight, requirements, and guidance to other IS groups
4. Manage the security infrastructure including:
a. Anti-virus infrastructure
b. Event log management and reporting
c. Vulnerability scanners
d. Intrusion Detection Systems
5. Certify system build(s)/image(s)
6. Perform scans of Internet facing sites and coordinate remediation efforts
7. Coordinate regular PCI and SOX related scans and audits for IT environment
8. Interface with internal and external audit groups as well as risk management; coordinate remediation efforts of identified issues
9. Be available for on-call rotations to ensure 24/7 security escalation coverage
10. Work with other IT groups to ensure proper recovery processes have been implemented, and track risks.
11. Provide regular reports to IS management regarding the health of IS Security.
SUPERVISORY RESPONSIBILITIES:
None
Qualifications:
1. Skills: (List 3+ required and preferred skills or abilities)
Required:
• Extensive knowledge of Active Directory, and Windows Operating Systems
• Experienced with Redhat Linux and Solaris operating systems
• Active Directory delegation of rights and role management
• Extensive knowledge of Microsoft products including IIS, SMS, and IE.
• GPO design and implementation, and RSOP reporting
• Patch management experience
• Anti-virus management experience
• Wireless and wired network assessment scans and penetrations
• Experience with Oracle E-Business environments, both application and database layers
• Excellent verbal and written communication skills
• Ability to solve practical problems and carry out responsibilities under general supervision
• Take ownership of initiatives and projects, and manage time
• Provide concise and regular updates to management
• Professional attitude towards teammates and colleagues
• Ability to interact effectively at all levels with sensitivity to cultural diversity
• Ability to function as an effective team member
• Ability to adapt as the external environment and organization evolves
Preferred:
• Familiar with VB / VBS and SQL programming and scripting
• Experience with PCI and SOX controls
2. Experience: (List 3+ required and preferred experience criteria)
Required:
• Three to five years related experience in development, or system support functions.
• Four to six years related experience in the IT Security field.
• Project management skills
Preferred:
3. Education: (List required and preferred education/certification criteria)
Required:
• Six to eight years related experience and/or training; or equivalent combination of higher education and experience
Preferred:
• SANS / GSOC / MCSE / CISSP / Oracle / or other industry certification(s) a plus
Job Description:
This position will help define and validate the implementation of security controls on Herbalife systems and applications. Provide oversight and management of Herbalife’s Information Security Infrastructure, and provides security guidance to other groups. Regularly validate security controls and compliance with governmental and industry regulations, internal corporate policies, and security best practices. This position will also assist in documenting and tracking disaster recovery controls, processes, and applications to ensure proper recovery methods.
DETAILED RESPONSIBILITIES/DUTIES:
1. Web and intranet application security reviews
2. Active Directory security reviews, including GPOs and delegation of rights
3. Provide security oversight, requirements, and guidance to other IS groups
4. Manage the security infrastructure including:
a. Anti-virus infrastructure
b. Event log management and reporting
c. Vulnerability scanners
d. Intrusion Detection Systems
5. Certify system build(s)/image(s)
6. Perform scans of Internet facing sites and coordinate remediati Reference Code: 0 |
