2386 Information Security Engineer

Location: Beaverton, OR

Our client is one of the industry leaders in the Electronic Freight Matching Business. Your experience as an Information Security Engineer will be directly helping goods and products get transported all over the nation and beyond. You would be working with a bunch of very sharp people who are empowered by management. They have a beautiful office specifically designed to be collaboration friendly. If this is the kind of position and company you’d be interested in - please send your resume to We value and encourage diversity in the workplace and women, minorities, and veterans are highly encouraged to apply. Thank you.

Job Type: FTE

Additional Information:
Job Description
The Information Security Engineer will work as part of a team of experienced Engineers and Administrators reporting directly to the head of Information Security. This person will deploy, manage and maintain, access control, intrusion detection, virus protection, incident response, development and implementation of security policies and procedures. This includes (but not limited to) monitoring of server and firewall logs, scrutinizing network traffic, establishing and updating virus scans, and troubleshooting. They will also analyze and resolve security breaches and vulnerability issues in a timely and accurate fashion, and conduct user activity audits where required.

Information Security Engineer Essential Duties and Responsibilities
-Deploy, manage and maintain security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software
-Design, perform, and/or oversee vulnerability management system and penetration testing of all systems in order to identify system vulnerabilities. Contribute to the creation, delivery, and enforcement of information security plans, policies, principles, baselines, and standards
-Awareness training of the workforce on information security standards, policies and best practices
-Investigate, analyze and lead incident response team with resolution of security incidents
-Monitor server logs, firewall logs, intrusion detection logs, and network traffic (wired & wireless) for unusual or suspicious activity, interpret and make recommendations for resolution
-Assess need for any security reconfigurations (minor or significant) and execute as required
-Download and test new security software and/or technologies
-Partner with application and functional teams to facilitate and assist with security testing throughout product development processes
-Measure, track and report the security risk, vulnerability, and remediation status
-Collaborate with IT and IS teams on projects in specialist areas
-Contribute to security operations including approval, change, and authorizations
-Act as a liaison between IT Operations and IS application development teams
-Design, implement, and report on security system and end user activity audits
-Perform end user device threat containment and access control enforcing security policies and restrictions
-Perform scheduled maintenance activities and on-call support during non-business hours
-Identify and recommend opportunities for process improvement

Information Security Engineer Qualifications
-A B.S. or M.S. in Computer Science or related field, or equivalent experience
-5 years information security work experience with experience supporting within hybrid cloud environment
-Experience with Checkpoint or other Enterprise Security suites that include , intrusion detection, firewalls and content filtering, threat prevention
-Knowledge of risk assessment tools, technologies and methods
-General hands-on knowledge of firewalls, intrusion detection systems, endpoint protection, anti-virus software, data encryption, DLP, NAC, SEIM and other industry-standard techniques and practices
-In-depth technical knowledge of network, server, and endpoint platform operating systems
-In-depth technical knowledge of identity management and security technologies including Active Directory, Group Policy, ADFS, and Authentication protocols including Kerberos
-Strong knowledge of the TCP/IP suite of protocols including but not limited to ICMP, DHCP, DNS, HTTP(S), and FTP.
-Prior experience managing and maintaining information related to PCI or SOX audits
-Knowledge of applicable practices and laws relating to data privacy and protection
-Highly self-motivated and directed
-Strong organizational skills and excellent attention to detail
-Ability to effectively prioritize and execute tasks in a fast-paced environment
-On-call security support as needed
-Change oriented; actively generates process improvements, champions and drives change initiatives, confronts difficult circumstances in creative ways, balances multiple and competing priorities and executes accordingly
-Demonstrated customer focus; evaluates decisions through the eyes of the customer, builds strong relationships, creates processes with customer viewpoint and partner with customers to help shape future initiatives

Information Security Engineer Preferred any one of the following certifications:
-CEH – Certified Ethical Hacker (CEH)
-CISM – Certified Information Security Manager (CISM)
-ISSAP – Information Systems Security Architecture Professional (ISSAP)
-ISSEP – Information Systems Security Engineering Professional (ISSEP)