Security Engineer at Williams-Sonoma, Inc. (Embarcadero / SF)

638 VE – Security Engineer

Develops, evaluates and manages systems security across the enterprise. Responsible for providing technical expertise on decisions and priorities regarding the enterprise’s security systems. Actively involved in the evaluation of products and/or procedures to enhance security. Tracks industry trends and maintains knowledge of new security technologies to better serve the enterprise’s security needs. Requires technical expertise in systems administration and security tools, combined with the knowledge of security practices and procedures. Must possess good technical knowledge of network topology, servers, desktops, laptops, etc, and related security.

Primary Functions

• Enforces security policies and procedures by administering and monitoring security profiles via security tools.

• Identifies security exposures and recommends controls for new or changing technologies and systems.

• Actively involved in the development and implementation of security policies and procedures (e.g., user log-on and authentication rules, security breach escalation procedures, security auditing procedures, use of firewalls, encryption routines, etc)

• Updates, maintains and documents security controls.

• Performs security assessments and reviews infrastructure and implementation of new security-based technologies.

• Reviews security violation reports, investigates possible security exceptions, follows-up on exceptions with system owners per documented procedures.

• Prepares status reports on security matters to develop security risk analysis scenarios and response procedures.

Secondary Functions

• Educates users on systems security standards and procedures.

• Provides direct support to the business and IT staff for systems security related issues.

• Bachelor’s Degree in related field or equivalent experience

• 8 + years of IT experience, 3+ years of security experience

• Must possess good technical knowledge of the following:

o Server and desktop operating systems (e.g., Windows, Unix, Linux, AS400, XP, Win7, Mac)

o Authentication systems (e.g. Active Directory)

o Network protocols and standards

o Intrusion Detection Systems, Firewalls and VPN devices

o Vulnerability Scanners and Test Methodology

o Penetration Test Methodology

o Server, PC and Network hardening

o PKI and Data Encryption methodology

o Network Access Control systems

o Ability to perform complex and varied level work where analysis of situations or data requires an in-depth evaluation of various factors.

o Security Log Management Tools

o Security Configuration Management Monitoring Tools

o Change Management Monitoring Tools

• Reliable business knowledge, preferably in the retail industry

• Advanced interpersonal, business communication, and writing skills

• Able to demonstrate effective use of applications and PCs

• Customer focused with high quality standards

• Complex thinking, analysis, and decision making skills

• Experienced with technical troubleshooting and problem solving

• Working knowledge of the PCI DSS

• GIAC, CISA, SSCP and/or other IT Security related certification a plus.

- Successful candidate will need to sit for and pass a background check

- We are unable to provide visa assistance for this opportunity

You may reach out to the recruiter at: BRThompson@wsgc.com
craigslist SF bay area | all jobs search “linux”