Senior Systems Engineer with UNIX

The ComLogix Group is a woman majority-owned, fully integrated, professional services organization, providing highly specialized Human Capital Strategy and Support, nationally to companies and individuals within the commercial, government and non-profit sectors. Our core competencies are comprised around Full Life Cycle Recruiting and Outplacement/Career Development support to both clients and candidates.

Our client is looking for a senior UNIX systems engineer with a well-rounded background in security and intrusion detection. 

 



Responsible for the daily operation, administration, design and security of the network, including maintaining reliability, performance, and availability of the environment.  Provide tier-3 support in troubleshooting issues for enterprise.  Support the turn up of new customers.  Design and implement security policies/procedures for network operating systems as well as to document and implement security best practices on an ongoing basis.  Participate in research and development of security technologies that will assess/monitor/reduce vulnerabilities for the enterprise.

 

•  Design, implement, and support a diverse security infrastructure including worldwide implementations of firewalls, IDS systems, VPN’s and auditing systems.

•  Responsible for Siteminder policy server and web agent maintenance, including design, implementation, and support web based SSO solutions.

•  Maintain multiple LDAP server instances.

•  Work with external groups concerning system patching and hardening. 

•  Lead in the design and implementation of new projects and systems.  Work with business teams to ensure that new projects have the appropriate security measures planned and in place.

•  Perform penetration testing and audit analysis of systems and network devices to ensure the security and integrity of the environment.

•  Provide support for security incidents including internal violations, attacks, viruses and system outages.

•  Research new technologies and security methodologies.

•  Support 24x7x356 operations environment with on-call duty to meet stringent internal and external service level agreements.

•  Other duties as assigned.

 

Requirements

Requires a bachelor's degree in a related field or equivalent, and a minimum of 5-6 years of experience in the Information Security field.

•  Experience administering UNIX (Solaris & HPUX) and LINUX systems, with a focus on security related topics such as configuring/installing access controls, and host-based intrusion detection and forensics techniques.

•  Skilled at maintaining and securing against (DOS, DDOS, Intrusions, and system compromise) for public services including DNS, Whois, and Web systems (Apache & IIS) as well as other extranet applications.

•  Knowledge of LDAP and Pam_Ldap to support a large and diverse UNIX environment.

•  Experience with various MTA’s and spam filtering techniques.

•  Experience with AAA deployments and concepts.

•  Experience with TCP/IP based networking and distributed computing environment concepts.

•  Knowledge of with network security related policies and best practices (e.g. SANs)

•  Skilled in packet capturing & decoding, firewall management and configuration techniques, virtual private networks, remote access and network based intrusion detection techniques. 

•  Ability to configure and secure Linux, Solaris and Microsoft machines  to be deployed in a DMZ environment.

•  Strong interpersonal and communication skills: ability to write proposals and papers, act as a vendor liaison, make presentations to client audiences or professional peers, work closely with upper management, and ability to identify tasks that require automation and to automate them.

•  Experience in working in a 24x7 environment.

•  Experience with the following products is required. Unix (Linux, Solaris, BSD, IPSO), Microsoft (Active Directory, Exchange), Firewalls/VPN’s (Checkpoint, Juniper/NetScreen, Cisco, IP tables), Radius, ACE, LDAP, Siteminder, Webtrends, various IDS systems, vulnerability assessment tools, and event correlation products.

•  Proficient with shell scripting (PERL, Sh, awk, sed).