? Develop and maintain security policy ? Address customer-specific questions on security and hosting environment ? Work with management in multiple departments to balance security goals with functional requirements ? Document current security policies and procedures and make recommendations to management for changes where appropriate ? Help to coordinate Incident Response efforts during virus / worm outbreaks, or other security incidents ? Document these incidents and debrief other network staff and management when the incident has been resolved ? Coordinate auditing/assessment readiness for Sarbanes-Oxley and SAS70 ? Manage User Rights Management (URMs) efforts ? Make policy or procedural recommendations or suggest technical countermeasures to reduce the risk of similar incidents in the future ? Review the security posture of current network architecture, systems, and applications ? Participate in rotational weekend on-call schedule ? Other duties as assigned Experience: ? Bachelor?s degree in computer science or a related technical field of study ? Certified Information System Security Professional (CISSP) is desirable ? 5+ years IT experience, to include a minimum of 3 years applied experience in security engineering ? Demonstrated technical familiarity with Windows 2000, Windows 2003 Server, Firewalls, TCP/IP, Security (SSH, SSL, IPSec), Enterasys Dragon IDS, Mazu and Snort IDS, Event Management Tools (NetIQ, e-Security), UNIX (Linux, Solaris), VPN technologies, and Cisco IOS ? Experience in SAS70 and Sarbanes-Oxley environments highly desirable To Apply to this job go to http://www.GadBall.com or click here