It Security Engineer Resume Samples - Page 4

HIGH QUALITY

The best examples from thousands of real-world resumes

EXPERT APPROVED

Handpicked by resume experts based on rigorous standards

DIVERSE EXAMPLES

Tailored for various backgrounds and experience levels

IT Security Engineers, also known as Information Systems Security Engineers or Information Security Analysts, help businesses safeguard their sensitive data from cyber-attacks. Their resumes highlight specific skills that include providing guidance on how to lower a company's risk to phishing and spear-phishing attacks, investigating the misuse of a company's IT resources, and reporting confirmed malware not caught by the vendor as malicious. For this position, example resumes indicate that a bachelor's degree is required in the fields of computer science, software engineering, systems engineering, information systems or a related field.

31

Lead System IT Security Engineer

  • Sub-contracted consultant to Raytheon as their IT security representative. Provided security compliance verification and implementation at for the Neutral Buoyancy Laboratory and the Space Vehicle Mock-up Facility of the International Space Station (ISS) industrial control systems (ICS) that utilizes Rockwell Automation software following ICS SCADA controls in NIST 800-82 and 800-53 at Space Center Houston (NASA).
  • Developed, implemented and maintained information security standards and procedures. Scheduled and performed quarterly continuous monitoring using McAfee Foundstone vulnerability scans. Ensured compliance activities to include laptop and CPU data at rest whole disk encryption, IT inventory, license management documentation, configuration documentation, application health monitoring, patching and change management procedures.
  • Participated in IT risk assessments during the Certification & Accreditation (C&A) process to include running network scans, ensuring correction and/or the mitigating of IT security issues discovered.
  • Maintained documentation required for compliance – System Security Plans (SSP), Risk Assessment Reports, Contingency Plans, POA&Ms in compliance with NIST regulatory requirements.
Candidate Info
10
years in
workforce
1
year
at this job
AAS
Electronic Systems Technology
AA
Associate of Arts
32

Systems Administrator/it Security Engineer

Primary on-site systems administrator/security engineer responsible for router & switch, firewall, domain controller/active directory, network security, and desktop management.

  • Network & systems auditing using tools NMAP, Wireshark, Nessus Network Vulnerability Scanner, & What's Up Gold Network Monitor to effectively secure the network infrastructure for FISMA Certification & Accreditation.
  • Assisted ISSO in documentation of the design & implementation of network infrastructure, as well as the Security Policies & Procedures for FISMA Certification & Accreditation in accordance with NIST Special Publications 800-53.
  • Implementation & management of Fortinet Fortigate Firewalls, HP switches, & Linksys Wireless AP's & switches.
  • Implementation of Public Key Infrastructure for secure email and website access for client sites.
  • Migration of Active Directory & Messaging infrastructure to Microsoft Windows 2003/Exchange 2003.
  • Administration, configuration, patch management & security updates for Windows Server 2000/2003, CentOS, Red Hat Enterprise Linux, & VMware GSX Servers, SSL VPN, NEC PBX phone system, LeftHand Networks SANS, Symantec Antivirus Server, and VERITAS Backup Exec.
  • Analyze & recommend new hardware, software, & communications products.
  • Performed advanced security, diagnostics, & maintenance on computer/networking devices.
  • Implemented Inventory Management process for all IT assets.
Candidate Info
10
years in
workforce
2
years
at this job
33

IT Security Engineer

Responsible for perimeter security through IronPort email systems and Websense web filtering.

  • Monitored AD infrastructure with ManageEngine tools.
  • Ran Ediscovery through EMC Discovery Manager.
  • Security Event monitoring with AlienVault/OSSIM.
  • Vulnerability and Patch Managment monitoring.
Candidate Info
25
years in
workforce
1
year
at this job
Technology
34

IT Security Engineer

Administer SAP security for R/3 system in modules FICO, HR, PM, PP, QM, SD, and MM for both North America and International sites. Oversee all audits including Sarbanes-Oxley, general computing controls and access controls. Work with audit team ensuring risk mitigation controls in place and operating effectively.

  • Environment: SAP R/3 Version 4.6C and ECC 6.0
  • Developed Authorization Roles using PFCG.
  • Research SAP transaction/process issues using SUIM, SU53, and Authorization Traces.
  • Experience providing security setup with NetWeaver and some Business Intelligence packages.
  • Experienced in all phases of the project life cycle including scoping, planning, and implementing SAP Security for Global Rollouts and Production Support projects.
  • Processed security role modifications via TMS transports (Development, Quality, and Production environments).
  • Provided support for Service Help Desk system and monitoring/assigning ticket requests.
  • Worked in 24/7 environments extensively to monitor and provide required support.
  • Experienced in ITGC, Risk Analysis, Remediation, and Mitigating risks for roles and user assignments based on SOD and SOX Compliance requirements for both Internal and External Auditing Firms.
  • Ensuring the SAP Security Administration team achieves target SLA's, Audit Compliance, and all related policies, procedures, control sets, and best practices.
Candidate Info
13
years in
workforce
5
years
at this job
C
Computer Programming / Technical Training
Accounting/business Law
35

IT Security Engineer

Lead engineer for the Whole Disk Encryption (WDE) project at Qualcomm. Deployed WDE to over 27000 systems worldwide in less than one year (97% of laptop systems). Created a custom theme for the WDE software using company logos to give systems a consistent look and feel for Qualcomm's users. Wrote troubleshooting guides for the WDE software to provide training to support staff globally.

  • During the WDE deployment I discovered that systems were simultaneously connected to the wireless and wired networks. To address this security issue I engineered two solutions to support two laptop types. These solutions activated the wireless device when a LAN connection was not detected and vice versa. These solutions ensure that the networks were not being bridged.
  • Upgraded the Symantec PGP infrastructure. Streamlined the encryption policy for the PGP services for consistency and to speed the processing of email.
  • Wrote a monitoring script to test the capture rate of the Netwitness concentrators and decoders using the Representational state transfer (REST) API. Wrote a script to detect hard drive failures in Netwitness servers and email the administrators if detected. Standardized the time in the Netwitness infrastructure.
  • Worked with my team to upgrade the Netwitness infrastructure to the latest version.
  • Worked with my team to upgrade the network DLP infrastructure to the latest version.
Candidate Info
10
years in
workforce
2
years
at this job
AAS
Electronics
36

IT Security Engineer

Worked on defining encryption and key management architecture of a client medical product that will be under FDA Oversight.

  • Developed a blue print for corporate Ad-Hoc and Mobile wireless network implementation.
  • Served as a member of Security team on Unatek high-profile client projects. This high-profile project involves daily, face-to-face communication with senior client directors, key stakeholders, security staff, and CIO's.
  • Monitored Security Information and Event Management (SIEM) for security incidents and perform incident response at Unatek. Support clients at highest level in development and implementation of doctrine and policies.
  • Developed project plans for all assigned security projects to ensure high-quality and timely delivery and to meet future requirements.
  • Advise IT Security Specialists on different Cyber security projects operations and manage centralized patch and vulnerability management using Microsoft System Management Server (SMS).
  • Experience in managing centralized patch and vulnerability management. Established and satisfied system-wide information security requirements based upon analysis of user, policy, regulatory and resource demands; and developed project plans for security environment to meet future requirements.
  • Implemented common controls into C&A package during contract procurement phase to ensure quick turnaround possible for Solution Provider's C&A task. Also, established system wide information security requirements based on policy and regulatory requirements based on NIST 800-53 for client; created reports of findings of C&A effort and presented documentation to client.
  • Develop and maintain System Security Plan formal document to ensure it provides an overview of security requirement for information system and describes security control in place to meet requirement of associated documentation NIST 800-37 (Guide for the Security Certification and Accreditation of Federal Information Systems), NIST 800-53A (Guide for Assessing the Security Controls in Federal Information Systems), NIST 800-60, NIST 800-30 and Federal Information Processing Standards (FIPS)199 and 200.
  • Conduct periodic reviews (self-assessments). Assist with information system Security audits and reviews; report findings.
  • Write Security Assessment Report (SAR) and provide (POA&M) Plan of Action and Milestones with list of risk. Attend weekly project security meetings.
Candidate Info
6
years in
workforce
2
years
at this job
BS
Finance
MS
Information System
37

Senior IT Security Engineer

Coordinate with internal and external auditors to determine compliance with policies, directives and standards.

  • Provide information on security policies, directives, standards and procedures to trading partners of the agency and interact for operational or commercial reasons.
  • Reviewed OS baseline configuration and policies. Audit the Plan of Action and Milestones (POAM) for security weaknesses. Interpret data and create reports and dashboards for senior management.
  • Assist the IT Department in developing a policy and procedures to provide cost effective, quality, system and network security assessment and certification based on unified federal guidelines and procedures.
  • Assist SEC Operational Data Center in identifying and meeting information assurance requirements. Analyzed the development and implementation of information security policies and procedures for patch and vulnerability.
  • Used Qualys and Bigfix tools to create regular reports for vulnerabilities and path management in the network systems.
Candidate Info
7
years in
workforce
1
year
at this job
MA
Master of Arts
38

IT Security Engineer II

I worked as a Level 2 Security Engineer on C4 System's Information Risk Management team. This was a team responsible for risk monitoring and mitigation of security incidents as well as incident handling.

  • Security incident management and response
  • Symantec Endpoint Protection (SEP) use and administration for security event management
  • Sourcefire administration for packet inspection and threat analysis
  • FireEye administration for incident handling and malware detection alerts
  • Splunk programming for security data analysis
  • Security Metrics Reports
  • Experience with anti-virus solutions, virus outbreak management, and virus removal
  • Analysis of network and workstation assets for hardware, network, and malware issues
Candidate Info
11
years in
workforce
5
years
at this job
BS
Information Technology
39

IT Security Engineer

Perform daily analysis of IT Audit Reports on vulnerabilities issues

  • Perform monthly security checklist for 129 Windows/Citrix servers
  • Work to resolve POA&M items reported in SCA Audit reports
  • Review event logs for audit failed objects
  • Participate in DTNM patch management to ensure DNIA compliance
  • Address computer security incidents as they occur
  • Perform computer security related work as required
  • Performing system requirements capturing
Candidate Info
22
years in
workforce
1
year
at this job
BS
Technical Management
40

IT Security Engineer

Assisted managing firewalls and anti-virus deployment

  • Primary contact for any security-related issue experienced by the company.
  • Worked on securing environment for PCI compliance including installing LogRhythm SIEM, CISCO FirePower IPS.
  • Performed network and application level penetration testing and vulnerability scanning using MetaSploit and Nessus.
  • Primary contact in Systems for auditors from SOX and PCI.
Candidate Info
13
years in
workforce
3
years
at this job
BS
Computer Science

Your Resume, Made Easy.

You are looking for your dream job and need a resume? My Perfect Resume is your solution and takes the hassle out of resume writing. Create the perfect job-worthy resume effortlessly in just a few clicks!