Dice is the leading career destination for tech experts at every stage of their careers. Our client, AAA Global Technologies LLC, is seeking the following. Apply via Dice today!
Additional Job Information: Title:
Information Security Configuration Manager Engineer
Location:
Atlanta, GA United States
Job Description
The Configuration Manager (CM) role requires a strong background in security as it relates to platform infrastructure, application security, and other aspects of network/cloud infrastructure security. The Configuration Management Engineer has the responsibility of designing and establishing configuration change management processes, standards, documentation, and SOPs. Works on developmental and operational teams to create and maintain configuration baselines (development, test, production, etc.) supporting developmental and operational systems. The candidate will use or recommend automated CM tools to implement CM policies and procedures. Develops or modifies CM plans, policies, and procedures tailored to the complexity and scope of the developmental or operational system. Implement CM discipline for the entire life cycle of systems from initial requirements/capabilities baselines to system end-of-life. Perform change control and configuration audits.
Primary Responsibilities and Essential Functions include:
- Plan and execute Configuration Management (CM) throughout the project lifecycle, including development, migration, deployment, and securityphase
- Develop and maintain overall Configuration Management Plan for the program - Ensure an accurate Risk Registry while incorporating modernization initiatives
- Identify critical incidents (i.e., hardware, software, documentation configuration items) and enter them into the Risk Registry
- Facilitate Configuration Management audits
- Mentors the organization on Configuration Management services, concepts, policies, and procedures
- Continuous configuration scanning, prioritization, and reporting of vulnerabilities throughout on-premise and cloud-based environments across both enterprise and service provider networks.
- Assist in implementing hardware and software version control processes, policies, and procedures
- Direct cross-functional, cross-department teams in remediating non-compliant configurations
- Work closely with Application team and utilize DevSecOps principles to drive the technology release strategy, execution, and improvements from third-party software changes (i.e., software version updates, major upgrades, patches, and bug-fixes)
- Develop key performance indicators for the configuration management process
- Performs operational activities as defined by Configuration Management policies and procedures
- Review and update configuration management processesas needed
- Reviews and publishes configuration management reporting
Job Related Experience:
Preferred Level: 5+ years of related experience required
Education:
Preferred Level: Bachelor s degree in information systems, information security, computer science, engineering, and 4+ years of information security, networking and/or systems administration experience; or 6+ years of information security experience without a degree.
Licenses / Certifications:
Preferred: Certified Information Systems Security Professional (CISSP), PCI ISA/QSA, CompTIA Security +, ITIL
Skills Required:
- Experience in ITIL Service Asset & Configuration Management
- Experience in GRC tool such as Archer
- Solid understanding of Risk Management frameworks, Security frameworks & Data Protection regulations
- Strong leadership, collaborative, and interpersonal skills including the ability to lead across multiple business and technology organizations.
- 2+ years of experience designing, building, implementing, and/or maintaining vulnerability and configuration management technologies in an enterprise level environment.
- Experience with Linux, Windows, networking, iOS (mobile), Android, IOT configuration management
- Excellent interpersonal, leadership, presentation, and collaborative skills to work effectively with teams throughout organization.
- Ability to influence across functional teams to achieve desired business results.
- Detailed knowledge of configuration management, software security, red team concepts, tools, and trends.
- Capable of working independently and involving leadership as necessary
Skills Desired:
- Knowledge in Cloud based platforms e.g. AWS, Azure
- Knowledge in containerized environments e.g. Docker, Kubernetes etc
- Experience in Web Application vulnerability management
- Some knowledge using any of Qualys/Tenable/Rapid 7/Nexpose Vulnerability Manager
- Experience in Splunk Enterprise Security tool
- Experience with Inventory Management tool
Best Regards,
Sethu Mathan, MBA
Senior Manager, IT Strategic Solution
Services You Can Trust
7000 Peachtree Dunwoody Rd | Bldg. 11, Suite 301
Atlanta, GA 30328
Information Security Configuration Manager Engineer