Senior Security Engineer

Organization

Since 2001, CentraComm has been securing, managing and hosting high-performance IT networks for a wide array of businesses and organizations throughout North America. Beginning as an Internet Service Provider (ISP), we've grown with our customers, becoming a full-scale Managed Service Provider (MSP) along the way, complete with a Network Operations Center (NOC) and Security Operations Center (SOC) and two carrier-class datacenters including a nuclear hardened, former defense department facility.

Today, we continue to build on our momentum by offering state-of-the-art services including our Cloud-Based Security Services-to create comprehensive, robust solutions. This dedication to advanced technology and forward-thinking solutions has helped us garner national recognition, including being named to the CRN Fast Growth 100 list each year 2007 to 2010 and Inc magazine's top 5,000 lists  2007 to 2011.  CentraComm's network and security solutions are built around best-of-breed products and solutions. The company has a strong presence in healthcare, financial, energy, education, manufacturing and service provider industries.  Examples of customers include a Fortune 50 energy company, a twenty global law firm, $50 Billion dollar mutual  fund provider and the 3rd largest long term health care provider in the nation.

We offer a dynamic and professional environment where initiative and hands on mentality are a must.  Flexibility and independence in decision making are encouraged.  As a rapidly growing company, there are ongoing possibilities for career growth with daily exposure to new and innovative ideas and motivated people.  This is an opportunity to help build the critical and ever-growing security infrastructure for the new internet economy.

CentraComm is a privately held rapidly growing company with an excellent financial position. This role is a key position in the continued expansion of the company.  As a flat organization; your skills, opinions and results have an immediate impact.  But ultimately, we understand that it's the trust our clients continually place in us that is the true cornerstone for our success today.

Position Summary

We are looking for a Senior Security Engineer with strong experience with wide range of security issues including architectures, electronic data traffic, and security access. Familiar with encryption technologies, penetration and vulnerability analysis of various security technologies, and information technology security research.  Prepares security and certification and accreditation documents/artifacts, research and review of products and technologies, penetration tests and security assessments and daily support and mentoring of CentraComm's Network Operations engineering team.  This individual will be responsible for assessing technical, administrative and physical controls bases on various regulations or standards at the client sites. Ideally, the candidate should have an IT infrastructure or security background with detailed technical skills.

Preferred Technical Experience

• Modern attack architectures and security tools
• Expert in TCP/IP networking, IP Sniffing and Analysis
• Reverse engineering tools (e.g., debuggers, disassemblers, assembly language, shell code)
• Unix/Linux/Windows internals and general administration
• Cryptography and PKI algorithms, applicability and strength, key management
•  Internet-enabled protocols and technologies (TLS/SSH/IPSec/HTTP/TCP/UDP, etc.)
  
  Essential Duties & Responsibilities
  
  
•  Able to work on multiple projects concurrently
•  Ability to perform project tasks with little or no supervision
•  Perform client work related to CentraComm's product and service services offerings
•  Document findings and create reports for professional service client both in written and verbal formats. 
•  Contribute a significant piece of a project deliverable
•  Ability to create detailed, professional documentation to be delivered to client
•  Able to create and recommend remediation for components of security policies.
•  Provide specific recommendations for a client's business or technical issues
•  Understanding of one or more regulatory areas (PCI, Sarbanes Oxley, etc.)
•  Understanding of specific IT security technologies and processes:
  •  
    • IP Network architecture and technology, dynamic routing
    • Firewalls, Intrusion Prevention, SIEM (QRadar), NBAD configuration and maintenance
    • Remote access facilities; SSL VPN, IPSec
    • Vulnerability and general security analysis tools; e g. nmap, Nessus, Ethereal, etc.
    • Latest hacking techniques and counter measures, e.g., IPS evasion, DDoS, buffer overflows, XSS, etc
      
      Additional Responsibilities
      
      Perform other essential duties as assigned
      Maintain a valid US drivers licenses
      
      
      Skills, Knowledge & Abilities
      
      
      
• Must possess excellent written and verbal communication skills
• Must possess strong analytical capabilities and have a desire to learn new things
• Experience working with complex, sophisticated clients
• High energy level, comfortable performing multifaceted projects in conjunction with day-to-day activities. 
• Resourceful and Well Organized
• Unquestioned integrity and personal ethics; willingness to provide feedback in challenging situations.
  
  
  Education and Experience
  
  
  5+ years of experience in information assurance, information security, technical analysis, or a combination thereof.   Desired experience should include a foundation in IT security and controls.
•  Bachelor's degree preferred preferably in computer science or information systems or equivalent work experience
• While experience in a number of IT disciplines may provide a solid framework for this position, hands-on results from performing IT risk assessments, information security consulting or IT audits are most beneficial.
• Technical or professional certifications, such as CISA or CISSP are a plus

 

 Vendor Specific Certifications preferred:

• Juniper Networks, All Product lines - JNCIA, JNCIS, JNCIP, JNCIE
• Cisco, Networking and Security Product lines - CCNA, CCNP, CCIE
• Microsoft - MCP, MSCE
• CISSP, CEH, Other security certifications a plus
• Q1 Labs
  
  Location:
  
  Person needs to reside within a reasonable distance to respond to on call duties at Findlay and / or Bluffton, Ohio SOC.
  
  
  E-mail Attachment
  
  
  Only candidates who send cover letters and resumes to humanresources@centracomm.net in PDF format will be considered.