Globalxperts Inc.
IT Security Principal Engineer -NATIONWIDE_
Globalxperts Inc., Raleigh, North Carolina, United States, 27601
IT Security Principal Engineer - NATIONWIDE
GlobalXperts is a leading IT solution provider specializing in remote monitoring, co-managed support, and professional services for advanced Cisco, Microsoft, and Data Center solutions. Our team of Level 1 through Level 3 networking experts (CCNA through CCIE) provides 24/7 support with deep expertise in internetworking technologies including Collaboration, Data Center, Borderless Networking, and Security. We align our professional services with Cisco's PPDIOO modelprepare, plan, design, implement, operate, and optimizeensuring comprehensive support across all phases. The IT Security Principal Engineer will deliver security consulting to internal teams and IT services, evaluating stakeholder needs and providing solutions. Key focus areas include IT infrastructure and information security compliance (HIPAA, SOX, PCI, Penetration Testing, etc.). Responsibilities:
Drive SDL across IT services and business segments for internal and external applications, including eCommerce, Mobility (Android, iOS), and legacy systems. Conduct source code analysis and remediation using Fortify. Perform network security assessments for various environments. Evaluate, review, and design firewall policies. Ensure compliance with PCI, HIPAA, and SOX standards. Provide security training and guidance on Threat Modeling, Penetration Testing, SDL, and Code Security Reviews. Qualifications:
Bachelor's degree in computer science or information systems preferred. At least 5 years of experience leading penetration testing, application testing, and red team engagements. Over 10 years of IT experience with a background in security and compliance. Additional Requirements:
Experience with security tools such as Nmap, Metasploit, Kali Linux, Burp Suite Pro, etc. Proficiency with scripting languages like Python, Ruby, POSIX shell, and familiarity with programming languages including C/C++, Objective-C, C#, Java, PHP, or .NET. Understanding of web protocols (HTTP, HTTPS, SOAP) and web technologies (HTML, JavaScript, XML, AJAX, JSON, REST). Knowledge of WLAN security concepts and testing. Strong technical communication skills, capable of explaining security concepts to executive stakeholders. Experience in IT risk assessments, security consulting, or IT audits is highly beneficial. Familiarity with regulations and frameworks such as PCI, ISO 27001/2, HIPAA, GLBA, NIST. All information will be kept confidential in accordance with EEO guidelines. #J-18808-Ljbffr
GlobalXperts is a leading IT solution provider specializing in remote monitoring, co-managed support, and professional services for advanced Cisco, Microsoft, and Data Center solutions. Our team of Level 1 through Level 3 networking experts (CCNA through CCIE) provides 24/7 support with deep expertise in internetworking technologies including Collaboration, Data Center, Borderless Networking, and Security. We align our professional services with Cisco's PPDIOO modelprepare, plan, design, implement, operate, and optimizeensuring comprehensive support across all phases. The IT Security Principal Engineer will deliver security consulting to internal teams and IT services, evaluating stakeholder needs and providing solutions. Key focus areas include IT infrastructure and information security compliance (HIPAA, SOX, PCI, Penetration Testing, etc.). Responsibilities:
Drive SDL across IT services and business segments for internal and external applications, including eCommerce, Mobility (Android, iOS), and legacy systems. Conduct source code analysis and remediation using Fortify. Perform network security assessments for various environments. Evaluate, review, and design firewall policies. Ensure compliance with PCI, HIPAA, and SOX standards. Provide security training and guidance on Threat Modeling, Penetration Testing, SDL, and Code Security Reviews. Qualifications:
Bachelor's degree in computer science or information systems preferred. At least 5 years of experience leading penetration testing, application testing, and red team engagements. Over 10 years of IT experience with a background in security and compliance. Additional Requirements:
Experience with security tools such as Nmap, Metasploit, Kali Linux, Burp Suite Pro, etc. Proficiency with scripting languages like Python, Ruby, POSIX shell, and familiarity with programming languages including C/C++, Objective-C, C#, Java, PHP, or .NET. Understanding of web protocols (HTTP, HTTPS, SOAP) and web technologies (HTML, JavaScript, XML, AJAX, JSON, REST). Knowledge of WLAN security concepts and testing. Strong technical communication skills, capable of explaining security concepts to executive stakeholders. Experience in IT risk assessments, security consulting, or IT audits is highly beneficial. Familiarity with regulations and frameworks such as PCI, ISO 27001/2, HIPAA, GLBA, NIST. All information will be kept confidential in accordance with EEO guidelines. #J-18808-Ljbffr