Position Title: Senior Consultant, PCI Risk & Compliance

Skills: PCI Risk Assessments/Gap Analysis/Remediation Plans

Tax Term: Full Time

Pay Range: $80-$110k commensurate with experience

Length: Indefinite

Travel Required: < 50%

Telecommute: Negotiable

POSITION DESCRIPTION

The Senior PCI Risk & Compliance Consultant will work with Sword & Shield customers to conduct procedural and operational assessments of information security processes and system controls – with a focus on PCI DSS compliance Senior consultants will leverage analytical skills and security and compliance knowledge to review organizations’ current security policies, processes, and controls to provide in-depth gap analyses and guidance on best practices in Governance, Risk, and Compliance (GRC) as it relates to the PCI DSS standards.

This position requires an extensive knowledge of security concepts and architecture, technical auditing techniques and standards, as well as a strong background in and knowledge PCI DSS compliance mandates. This function also requires excellent communication skills over phone and email and particularly the ability to correctly convey solutions to more or less knowledgeable customer contacts.

You can enjoy a casual work environment while working with a close, family-oriented peer group of security professionals. Sword & Shield is a small privately-owned company with large government contracts and Fortune 1000 commercial accounts. If you enjoy hands-on interactive network security work…this is the place for you. Our work environment allows our security consultants the opportunity to showcase their skills and abilities and receive the credit they deserve as individuals.

REQUIRED

Position Title: Senior Consultant, HIPAA Risk & Compliance

Skills: HIPAA Risk Assessments/Gap Analysis/Remediation Plans

Location: Negotiable

Tax Term: Full Time

Pay Range: $80-$110k commensurate with experience

Length: Indefinite

Travel Required: < 50%

Telecommute: Negotiable

POSITION DESCRIPTION

The Senior HIPAA Risk & Compliance Consultant will work with Sword & Shield customers to conduct procedural and operational assessments of information security processes and system controls – with a focus on HIPAA compliance. Senior consultants will leverage analytical skills and security and compliance knowledge to review organizations’ current security policies, processes, and controls to provide in-depth gap analyses and guidance on best practices in Governance, Risk, and Compliance (GRC) as it relates to HIPAA security and privacy standards.

This position requires an extensive knowledge of security concepts and architecture, technical auditing techniques and standards, as well as a strong background in and knowledge of HIPAA security and privacy rules. This function also requires excellent communication skills over phone and email and particularly the ability to correctly convey solutions to more or less knowledgeable customer contacts.

You can enjoy a casual work environment while working with a close, family-oriented peer group of security professionals. Sword & Shield is a small privately-owned company with large government contracts and Fortune 1000 commercial accounts. If you enjoy hands-on interactive network security work…this is the place for you. Our work environment allows our security consultants the opportunity to showcase their skills and abilities and receive the credit they deserve as individuals.

REQUIRED

POSITION DESCRIPTIONPosition Title: Senior Test Engineer

Department: Test Lab

Classification: Exempt

SALARY RANGE: $70-90K DOE

POSITION PURPOSE

The successful candidate will have 10+ years of system engineering and administration experience, working with HP-UX, Linux, and other UNIX distributions, as well as 5+ years working as a test engineer developing and executing test scenarios. This position involves performing day-to-day operation of a federal research and development information technology laboratory. Specific activities will be divided between systems engineering tasks in the lab and test scenario development, execution and documentation.

You can enjoy a casual work environment while working with a close, family-oriented peer group of security professionals. Sword & Shield is a small privately-owned company with large government contracts and Fortune 1000 commercial accounts. If you enjoy hands-on interactive network security work…this is the place for you. Our work environment allows our security consultants the opportunity to showcase their skills and abilities and receive the credit they deserve as individuals.

ESSENTIAL FUNCTIONS AND BASIC DUTIES

• United States Citizenship
• Ability to obtain a Secret Clearance
• Prior and current experience with UNIX-based administration skills
• Experience in developing test cases and documentation of Test Plans and Test Results
• Unix/Linux and Windows operating systems
• Basic knowledge of Cisco networking
• Experience in scripting languages, to include Perl, SQL, and shell scripting
• Experience with blade servers and virtual environments

QUALIFICATIONS

Education/Certification:

• BS Degree or higher in a technical discipline.

Required Knowledge:

• Good knowledge Systems, Network, and Storage technologies
• Systems engineering activities in a Linux environment
• Test scenario development, execution, and documentation
• Experience in scripting languages
• Experience with blade servers and virtualization

Experience Required:

• Test scenario development, execution and documentation
• Systems Engineering in a Linux environment

Skills/Abilities:

• Strong documentation skills
• Strong interpersonal and public relations skills.
• Well organized.
• Problem solving abilities.

Desirable Characteristics for: Senior Test Engineer

Expertise

• Significant knowledge of systems engineering discipline and testing
• Ability to perform hands-on systems engineering activities in a Linux environment
• Demonstrated experience in the development of Formal Test Plans and Test Reports

Attitude

• Interested in working in a team environment
• Willing to take on new challenges and work with new technologies

WORKING CONDITIONS

• Local (Knoxville, TN), up to 5% travel

UPDATE: THIS POSITION HAS BEEN FILLED

Job Title: Principal Consultant, Security Assessments

Skills: Vulnerability Assessments, Penetration Testing, IT Security Assessment

Location: Negotiable.

Tax Term: Full Time

Pay Range: $80-$110k commensurate with experience.

Length: Indefinite

Travel Required: 50%

Telecommute: Negotiable.

Position Description: The Principal Security Assessment Consultant will work with Sword & Shield customers to conduct procedural and operational reviews of information security processes and system controls against industry, government, and internal compliance standards.​ Principal consultants will leverage analytical skills and security and compliance knowledge to review organizations’ current security policies, processes, and controls to provide in-depth gap analyses and guidance on best practices in the IT and Cyber Security areas. This position will also perform technical security assessments using vulnerability scanning and penetration testing tools, and experience with these tools and techniques is required.

This position requires an extensive knowledge of security concepts and architecture, technical auditing techniques and standards, as well as a strong background in and knowledge of a variety of compliance mandates such as PCI DSS, ISO 27002, and HIPAA.  This function also requires excellent communication skills over phone and email and particularly the ability to correctly convey solutions to more or less knowledgeable customer contacts.

You can enjoy a casual work environment while working with a close, family-oriented peer group of security professionals. Sword & Shield is a small privately-owned company with large government contracts and Fortune 1000 commercial accounts. If you enjoy hands-on interactive network security work…this is the place for you. Our work environment allows our security consultants the opportunity to showcase their skills and abilities and receive the credit they deserve as individuals.

Required:

• United States Citizenship
• CISSP certification
• Familiarity with BackTrack and other well-known security assessment toolkits.
• Strong understanding of Metasploit, Nessus, Nmap, and other common assessment tools
• Strong understanding of risk management and information security management with specific experience in vulnerability assessments, penetration testing, wireless security assessments, social engineering (e.g “phishing”, “baiting”, “tailgating”, “pre-texting”), and Telco/VoIP security assessments
• BS degree (or higher) in a technical discipline.
• IT experience including at least eight (8) years of IT security, risk assessment or compliance experience (5 years)
• Technical operational knowledge of firewalls, routers and switches, intrusion detection systems, event log management, anti-malware, encryption, and additional information security areas
• Strong understanding of Unix and Windows platforms, as well as TCP/IP protocols
• Excellent communication & people skills

Desired (But Not Required):

• Active Qualified Security Assessor (QSA) certification for performing PCI audits
• General knowledge of scripting languages such as Perl, Python, and others is preferred.
• Experience with other compliance areas such as: SOX, HIPAA, FISMA/NIST, and FFIEC/GLBA.
• SANS GCIH, GPEN, CISM or CISA certifications

Ideal Personal Characteristics:

• Proven ability to interact with company and business leaders at the “C” level (e.g. CIO, CFO, CSO)
• Strong, creative problem solving and analytical thinking
• Willing to accept new challenges and learn in new areas
• Strong communication skills
• Flexibility and responsive to changing situations; adaptable
• In addition to a career in the challenging world of computer and network security, Sword & Shield Enterprise Security, Inc. offers competitive salaries, full benefits, participation in 401(k), and opportunities for professional growth and development. We offer the opportunity to work with cutting-edge security technologies in a stimulating work environment.

Job Title: Principal Consultant, Risk & Compliance

Skills: PCI DSS, IT/Compliance Risk Assessments/Gap Analysis

Location: Negotiable.

Tax Term: Full Time

Pay Range: $80-$110k commensurate with experience.

Length: Indefinite

Travel Required: 50%

Telecommute: Negotiable.

Position Description: The Principal Risk & Compliance Consultant will work with Sword & Shield customers to conduct procedural and operational reviews of information security processes and system controls against industry, government, and internal compliance standards.​ Principal consultants will leverage analytical skills and security and compliance knowledge to review organizations’ current security policies, processes, and controls to provide in-depth gap analyses and guidance on best practices in Governance, Risk, and Compliance (GRC) areas.

This position requires an extensive knowledge of security concepts and architecture, technical auditing techniques and standards, as well as a strong background in and knowledge of a variety of compliance mandates, specifically PCI DSS.  This function also requires excellent communication skills over phone and email and particularly the ability to correctly convey solutions to more or less knowledgeable customer contacts.

You can enjoy a casual work environment while working with a close, family-oriented peer group of security professionals. Sword & Shield is a small privately-owned company with large government contracts and Fortune 1000 commercial accounts. If you enjoy hands-on interactive network security work…this is the place for you. Our work environment allows our security consultants the opportunity to showcase their skills and abilities and receive the credit they deserve as individuals.

Required:

• United States Citizenship
• Experience with and knowledge of PCI compliance regulations and performing audits and assessments
• Strong understanding of risk management and information security management
• BS degree (or higher) in a technical discipline.
• IT experience including at least eight (8) years of IT security, risk assessment or compliance experience (5 years)
• Technical operational knowledge of firewalls, routers and switches, intrusion detection systems, event log management, anti-malware, encryption, and additional information security areas
• Strong understanding of Unix and Windows platforms, as well as TCP/IP protocols
• Expertise in using MS Excel, MS Word
• Excellent communication & people skills

Desired (But Not Required):

• Active Qualified Security Assessor (QSA) certification for performing PCI audits
• Experience with commercial and freeware governance, risk, and compliance tools such as Modulo Risk Manager
• Experience with other compliance areas such as: SOX, HIPAA, FISMA/NIST, and FFIEC/GLBA.
• CISSP, CISM or CISA certifications

Ideal Personal Characteristics:

• Proven ability to interact with company and business leaders at the “C” level (e.g. CIO, CFO, CSO)
• Strong, creative problem solving and analytical thinking
• Willing to accept new challenges and learn in new areas
• Strong communication skills
• Flexibility and responsive to changing situations; adaptable
• In addition to a career in the challenging world of computer and network security, Sword & Shield Enterprise Security, Inc. offers competitive salaries, full benefits, participation in 401(k), and opportunities for professional growth and development. We offer the opportunity to work with cutting-edge security technologies in a stimulating work environment.

Join Sword & Shield, one of the most trusted and fastest growing security consulting firms in the United States!

Job Title: Principal Consultant, Risk & Compliance

Skills: PCI DSS, IT/Compliance Risk Assessments/Gap Analysis/Remediation Plan

Location: Negotiable.

Tax Term: Full Time

Pay Range: $80-$100k commensurate with experience.

Length: Indefinite

Travel Required: 50%

Telecommute: Negotiable.

Position Description: The Principal Risk & Compliance Consultant will work with Sword & Shield customers to conduct procedural and operational reviews of information security processes and system controls against industry, government, and internal compliance standards.​ Principal consultants will leverage analytical skills and security and compliance knowledge to review organizations’ current security policies, processes, and controls to provide in-depth gap analyses and guidance on best practices in Governance, Risk, and Compliance (GRC) areas.

This position requires an extensive knowledge of security concepts and architecture, technical auditing techniques and standards, as well as a strong background in and knowledge of a variety of compliance mandates, specifically PCI DSS.  This function also requires excellent communication skills over phone and email and particularly the ability to correctly convey solutions to more or less knowledgeable customer contacts.

You can enjoy a casual work environment while working with a close, family-oriented peer group of security professionals. Sword & Shield is a small privately-owned company with large government contracts and Fortune 1000 commercial accounts. If you enjoy hands-on interactive network security work…this is the place for you. Our work environment allows our security consultants the opportunity to showcase their skills and abilities and receive the credit they deserve as individuals.

Required:

• United States Citizenship
• CISSP certification
• Experience with and knowledge of PCI compliance regulations and assessments
• Strong understanding of risk management and information security management
• BS degree (or higher) in a technical discipline.
• IT experience including at least eight (8) years of IT security, risk assessment or compliance experience (5 years)
• Technical operational knowledge of firewalls, routers and switches, intrusion detection systems, event log management, anti-malware, encryption, and additional information security areas
• Strong understanding of Unix and Windows platforms, as well as TCP/IP protocols
• Expertise in using MS Excel, MS Word
• Excellent communication & people skills

Desired (But Not Required):

• Active Qualified Security Assessor (QSA) certification for performing PCI audits
• Experience with commercial and freeware governance, risk, and compliance tools such as Modulo Risk Manager
• Experience with other compliance areas such as: SOX, HIPAA, FISMA/NIST, and FFIEC/GLBA.
• CISM or CISA certifications

Ideal Personal Characteristics:

• Proven ability to interact with company and business leaders at the “C” level (e.g. CIO, CFO, CSO)
• Strong, creative problem solving and analytical thinking
• Willing to accept new challenges and learn in new areas
• Strong communication skills
• Flexibility and responsive to changing situations; adaptable
• In addition to a career in the challenging world of computer and network security, Sword & Shield Enterprise Security, Inc. offers competitive salaries, full benefits, participation in 401(k), and opportunities for professional growth and development. We offer the opportunity to work with cutting-edge security technologies in a stimulating work environment.