It Security Engineer Resume Samples - Page 3

HIGH QUALITY

The best examples from thousands of real-world resumes

EXPERT APPROVED

Handpicked by resume experts based on rigorous standards

DIVERSE EXAMPLES

Tailored for various backgrounds and experience levels

IT Security Engineers, also known as Information Systems Security Engineers or Information Security Analysts, help businesses safeguard their sensitive data from cyber-attacks. Their resumes highlight specific skills that include providing guidance on how to lower a company's risk to phishing and spear-phishing attacks, investigating the misuse of a company's IT resources, and reporting confirmed malware not caught by the vendor as malicious. For this position, example resumes indicate that a bachelor's degree is required in the fields of computer science, software engineering, systems engineering, information systems or a related field.

21

Lead IT Security Engineer

Use UML and related methodologies to communicate technical and business process oriented designs, issues and benefits envisioned within "as-is" and "to-be" environments. Conduct periodic security reviews and evaluations of technical designs and enterprise business processes. Performed analysis/evaluations on reported security risks and provided engineering recommendations, to respective business owners and senior IT leadership team members, to mitigate and/or correct identified issues.

  • As lead business/systems analyst, facilitated RFI and RFP exercises for evaluation and purchase of an Identity Management solution; this role included leading technical and business requirements gathering/design development, review and approval for the Identity Management enterprise solution.
  • Designed, developed and implemented framework to facilitate reviews, evaluations, approvals and implementation of changes to enterprise based firewalls rules-set. This effort provided needed audit and reporting capabilities to all levels of IT management.
  • Managed PCI testing activities.
  • Wrote Risk Management specifications document to support subsequent creation of an enterprise IT Security Risk Management and Compliancy group. Information from formal entities (e.g., DeepSight application) was used in input to build use-cases for envisioned risk-management framework
  • Designed and developed framework to facilitate reviews, evaluations and approval/exceptions to reported risks.
Candidate Info
42
years in
workforce
7
years
at this job
BA
Business Communications
Design And Development
Computer Science
22

IT Security Engineer

Provided information assurance (IA) support for the Joint Interoperability Test Command (JITC) systems, which conducts test, evaluation, and certification services to support global net-centric warfighting capabilities

  • Coordinated the requirements, planning, training execution, and assessment phases of JITC IA exercise assessments for purposes of evaluating the COCOMs, Services, and Agencies ability to protect and defend the Department of Defense networks and respond to potential attacks against the Global Information Grid (GIG).
  • Examined DoD Information Assurance Certification and Accreditation Process (DIACAP) scorecards for completion to gauge what additional information is required from the site, including the number of IA controls required, number of compliant/non-compliant areas, and assessed risk status of each non-compliant area to identify deficient IA controls and to ensure a successful exercise assessment.
  • Designed and implement software intended to ensure that DoD automated systems are secure from unauthorized use, viral infections and other problems that would compromise sensitive information in terms of confidentiality, integrity, and availability.
  • Conducted research and testing on proposed network products, services, protocols, and standard operation procedures (SOP) for authorization to operate (ATO) on DoD networks, to ensure that risk management is applied.
  • Conducted security audits in accordance with specific government policy guidelines.
  • Applies patches and modify systems configuration settings to mitigate Gold Disk and Retina vulnerability findings.
Candidate Info
8
years in
workforce
3
years
at this job
BS
Electronics Engineering Technology
23

IT Security Engineer

Provided information assurance (IA) support for the Joint Interoperability Test Command (JITC) systems, which conducts test, evaluation, and certification services to support global net-centric warfighting capabilities

  • Coordinated the requirements, planning, training execution, and assessment phases of JITC IA exercise assessments for purposes of evaluating the COCOMs, Services, and Agencies ability to protect and defend the Department of Defense networks and respond to potential attacks against the Global Information Grid (GIG).
  • Examined DoD Information Assurance Certification and Accreditation Process (DIACAP) scorecards for completion to gauge what additional information is required from the site, including the number of IA controls required, number of compliant/non-compliant areas, and assessed risk status of each non-compliant area to identify deficient IA controls and to ensure a successful exercise assessment.
  • Designed and implement software intended to ensure that DoD automated systems are secure from unauthorized use, viral infections and other problems that would compromise sensitive information in terms of confidentiality, integrity, and availability.
  • Conducted research and testing on proposed network products, services, protocols, and standard operation procedures (SOP) for authorization to operate (ATO) on DoD networks, to ensure that risk management is applied.
  • Conducted security audits in accordance with specific government policy guidelines.
  • Applies patches and modify systems configuration settings to mitigate Gold Disk and Retina vulnerability findings.
Candidate Info
8
years in
workforce
3
years
at this job
BS
Electronics Engineering Technology
24

Sr. IT Security Engineer Consultant

Coordinated the development, integration, delivery, and maintenance of new enterprise managed data network security offers including firewalls, virtual private networking, intrusion detection, application level security, network vulnerability assessment, mass data storage, reporting, and new security technologies

  • Forecasted budgetary requirements for infrastructure and staffing to accommodate business growth
  • Determined & provided staffing, system, training, and support requirements for new business applications
  • Developed user acceptance and operational readiness tests to ensure proper functionality, training support, and first offer integration during initial stages of new enterprise managed security services
  • Designed, documented, and taught classes regarding new security services along with their associated interface agreements, ticketing, troubleshooting, and maintenance methods and procedures
  • Required to work solo in a telecommuting position as well as in a 'war room' collective effort to get tasks completed efficiently and meet critical timelines
  • Responsible for planning, scheduled testing, implementation, maintenance, and documentation of intrusion detection, vulnerability assessment, auditing and analysis tools
  • Experienced with Microsoft Project, Cisco Intrusion Detection, Cisco IOS Firewall, Cisco PIX Firewall, Cisco Routers, CiscoWorks, CheckPoint Firewall, Nortel Connectivity Switch, Nortel Optivity Manager, HP OpenView, Remedy, SQL, SNMP, UNIX, and Windows.
  • Functioned as a subject matter expert for the security mitigation and maintenance of data center operations, system development, change management, and disaster recovery
  • Responsible for network infrastructure, application, and physical security controls in support of existing environment and forecast future needs worldwide
Candidate Info
5
years in
workforce
5
years
at this job
BS
Computer Science And Engineering
25

IT Security Engineer, Office of The Chief Technology Officer

Provided a highly secure environment by administering Internet content filtering rule established for 33 District agencies, and managing access control, RSA Secure ID token inventory for +100 users.

  • Served as task leader for the virus protection implementation project for the District of Columbia government with 15,000+ users; managed daily operations of virus protection management platform, policy Orchestrator, for 15 District agencies.
  • Authored virus protection management policies and procedures as well as a virus protection guide for system administrators; supported development of computer security-related materials.
  • Responded and reported incidents by serving as a CERT team member.
Candidate Info
3
years in
workforce
1
year
at this job
Information Systems Management
Graphic Design
26

IT Security Engineer

Implement and manage security controls for [company name] North America. Ensure network and endpoint security. Engineer and maintain Information Security solutions.

  • Maintain firewall and threat prevention policies with the use of Next Generation Firewalls in a global enterprise infrastructure.
  • Control network access using site-to-site and remote-access VPN, corporate
  • Maintain endpoint security with anti-virus, URL filtering, application control, vulnerability management, and patch management.
  • Respond to service requests for resolution of security related issues.
  • Evaluate new solutions and maintain equipment and services for existing solutions.
Candidate Info
19
years in
workforce
4
years
at this job
BS
Information Technology
27

IT Security Engineer - Security Evaluations Lab

Perform compliance evaluations in accordance with Common Criteria (ISO/IEC 15408) and the Common Evaluation Methodology. Software applications tested include eBusiness Applications, Disk Encryption, Open-View Operation, Single-Sign On, Antivirus, Routers, and Firewalls.

  • Write and evaluate test plans, test scripts, configuration management systems. Assess accuracy of test coverage analysis, vulnerability analysis, and strength of function analysis.
  • Perform manual and automated tests of security functions and external product interfaces.
  • Verify the consistency of marketing and design documentation which included: product/application functionality, the user/administrator guidance, internal/external interfaces (GUI and CLI, and error messages), and software design processes.
  • Assess the strength of identification/authentication, audit, and access control functions.
  • Report and present findings to National Information Assurance Partnership (NIAP) Validation Oversight Review (VOR) Board.
Candidate Info
30
years in
workforce
5
years
at this job
BS
Electrical Engineering
28

Senior IT Security Engineer

Senior IT Engineer and Team lead for the department of 4 people including contractors.

  • Daily monitoring of security logs of all firewalls and security devices.
  • Maintaining PCI environment to remain PCI DSS Compliant
  • Maintain Checkpoint and Palo Alto firewalls for external and PCI environments
  • Maintain McAfee Web Gateway for URL web content filtering.
  • Monitoring and maintaining of 25 Palo Alto IPS/IDS throughout the environment.
  • Web application security assessment testing of Frontier Airlines websites
  • Researched, recommended and implemented new technologies that was best for the environment.
  • Internal Pen testing for PCI audits and security assessments
Candidate Info
10
years in
workforce
4
months
at this job
AAS
Computer Science
BS
Computer Information Systems
BS
Management Information Systems
29

IT Security Engineer

Manage, monitor, and maintain McAfee ePO and all the software and their policies to adhere to the security standards of the company.

  • Responsible for the planning, configuring, and implementation of McAfee Endpoint Encryption.
  • Responsible for analyzing suspicious emails for malicious content/intent with several tools.
  • Scan the environment with Nexpose Vulnerability Scanner to identify vulnerabilities on workstations, servers, and printers and create remediation plans to fix the vulnerabilities.
  • Monitor the environment with Arcsight for suspicious traffic both internally and externally to help prevent attacks.
  • Help Level I Technicians with advanced troubleshooting.
  • Part of an on-call rotation that monitors the IT Security Team's tickets and assigns them to correct team member.
  • Resolve issues in a timely manner to prevent down time for the company.
Candidate Info
13
years in
workforce
4
years
at this job
BA
Management Information Systems
30

IT Security Engineer III

Responsible for engineering, implementing, supporting and maintaining complex security infrastructure deployments.

  • Provides analysis and support for the following technologies: Juniper and Palo Alto Firewalls, IDS/IPS, SSL VPN, and Blue Coat proxies.
  • Assists in the overall management of Enterprise client security infrastructure including the planning, design, deployment, and 24x7 administration
  • Assists in the development and implementation of security policies, procedures and measures in a networking environment
  • Prepare, configure, administer, and manage firewalls, ACLs, VPN appliances, IPS/IDS and applicable network management tools in a multi-vendor environment.
  • Provides best practices, engineering, implementation, maintenance, and hardware/software
  • Assists in performing security architecture reviews, develop engineering design, and deployment plans in order to identify and prevent security breaches.
  • Participates in security risk assessments and remediation efforts to ensure PCI compliance and overall security for the company.
Candidate Info
16
years in
workforce
4
years
at this job
BA
Communications

Your Resume, Made Easy.

You are looking for your dream job and need a resume? My Perfect Resume is your solution and takes the hassle out of resume writing. Create the perfect job-worthy resume effortlessly in just a few clicks!