Security Consultant - PCI in Chicago, IL
A Senior Consultant possesses mid to advanced Level knowledge and experience in information security and/or relevant information technology best practices and standards with a heavy concentration on testing and evaluating technical controls or regulatory or best practices gap analysis.
Functional Responsibilities and Skills
-Ability to perform project tasks with little or no supervision.
-Contribute a significant piece of a project deliverable.
-Ability to create detailed, professional documentation to be delivered to client.
-Able to create and recommend remediation for components of security policies. -Provide specific recommendations for a clients business or technical issues. (Example: Lack of or enforcement of a password policy.)
-Understanding of PCI and one more regulatory area including, but not limited to:
*PCI (Visa CISP, MasterCard SDP, Discover DISC, Amex DSOP)
*ISO 17799/BS 7799
*GLBA
*HIPAA
-Understands the creation, management, and oversight of Information Security Programs, Business Continuity Planning and Change Control functions for Information Services
-Familiar with retail information security challenges a plus
-Excellent written and verbal communications.
Technical Responsibilities and Skills
-Deep technical problem / resolution skills
-Mid to advanced level infrastructure or security design capabilities for environments that include 10 to 20 security devices, processes or applications.
-Mid to advanced level systems administration (UNIX, Windows, or mainframe)
-Knowledge with different application architectures and platforms, their development challenges, their control configurations, and their inherent security strengths and weaknesses (e.g., ColdFusion, J2EE, .Net)
-Mid to advanced level network administration (thorough protocol experience)
*Firewalls
*IDS/IPS Systems
*Enterprise level network architecture
-Mid to advanced level security knowledge
*Internet attack anatomy
*Perimeter protection strategies
*Security Policy structure
-Mid to advanced level methods knowledge of one of the following:
*Penetration testing (network, system and application)
*Application development
*Policy Development
-Ability to travel as needed
Educational Requirements
-Bachelor of Science or equivalent experience;
-At least two technical certification such as CISSP, CISM, CISA, CCNA, CCDA, CCSA, GIAC.
To Apply to this job go to http://www.GadBall.com or click here