Senior Information Security Engineer

Job Description/Responsibilities:

Responsibilities:

Assist with evaluation of architecture interfacing with other state/federal/local systems.
· Assist with assessing the security of any equipment needed.

· Assist with the evaluation of data integrity and data security.

· Assist with ensuring all background check compliance is met for all project team members.

· Assist with creating procedures to ensure the proper access rights are granted.

· Assist in building User Acceptance Testing (UAT) scenarios to ensure security requirements are properly tested and documented.

· Assist with architecture reviews of all environments.

· Assist with the evaluation and testing of disaster recovery plans.

· Assist with the development of change management processes and procedure projects.

· Provide written documentation and recommendations.

· Review agency network diagrams and access control lists (ACL) for compliance with FBI CJIS Security Policy and BCA CJDN Security Policy.

· Work with DVS staff, review IT security audit documentation from local agencies which access DVS systems and data to determine compliance with FBI CJIS Security Policy and BCA CJDN Security Policy requirements.

· Provide technical guidance, principles, standards, and best practices to guide criminal justice agency infrastructure design and system implementations to comply with FBI CJIS Security Policy and BCA CJDN Security Policy.

· Perform technical analysis of vendor solutions to assess compliance with FBI CJIS Security Policy and BCA CJDN Security Policy

· Audit identity and access management to assure they are properly managed and maintained for all systems utilized to access driver's license and motor vehicle registration data; and recommend remedial action when required.

· Audit the driver's license and motor vehicle systems for PCI compliance; and recommend remedial action when required.

· Work with DPS agencies and other government entities to ensure driver and vehicle data is accessible for utilization for mission critical functions while maintaining all security requirements.

Desired Skills

· Six (6) years' experience in a security architect or engineer role.

· Three (3) years' experience in network engineering, including firewall management.

· Four (4) or more engagements, within the last ten (10) years, in a security architect or engineer role where the engagement was longer than three months each.

· Experience with the design and implementation of information systems, in organizations with more than 50 people, with an emphasis on data, network, and infrastructure security.

· CISSP or GIAC certification.

· Comprehensive knowledge of hardware, software, application, and systems engineering.

· Broad knowledge of database systems, web-based technologies, and network security.

· Systems thinking – the ability to see how parts interact with the whole ("big picture" thinking).

· Knowledge of IT governance and operations.

· Interpersonal and leadership skills – servant leadership, collaboration, facilitation, and negotiation skills.

· Communication skills – both written and verbal.

· Ability to explain complex technical issues in a way that non-technical people may understand.

· Time management and prioritization.