endpoint cybersecurity consultant (sacramento, ca)

cyberspace workforce, DIARMF Jobs, Information Assurance Jobs, IT Security Jobs, risk jobs, , , , , , , , , , , , ,

endpoint cybersecurity consultant (sacramento, ca)

my course: http://securitycompliance.thinkific.com

THE JOB

contact # 510-722-8503 Ext- 509.

Job Title End-Point Cybersecurity Consultant
Location Sacramento CA
Duration 6 months /Contract

JOB DESCRIPTION

We are looking for an End-Point Cybersecurity Consultant – Sacramento California

The ideal candidate will have 5 or more years of perimeter Cybersecurity experience, with a focus on designing and deploying end-point security solutions.

Mandatory Qualifications (MQ’s):

A minimum of five (5) years’ experience, of which three (3) must be in a lead capacity, in designing and developing an endpoint security infrastructure and developing procedures defining their use to meet business requirements
A minimum of three (3) years’ combined experience in designing and integrating device vulnerability scanning, securing systems, software, certificate authority, two-factor authentication, Patching, Security Information and/or Event Management.
A minimum of three (3) years’ combined experience related to Antivirus, Mobile Device Management, Encryption (In Transit/At Rest), Data Loss Prevention and/or Mobile Device Management.
Desired Qualifications:
Six (6) years’ experience, of which three (3) must be in a lead capacity, in designing and developing an endpoint security infrastructure and developing procedures defining their use to meet business requirements.
Four (4) years’ combined experience in designing and integrating device vulnerability scanning, securing systems, software, certificate authority, two-factor authentication, Patching, Security Information and/or Event Management.
Three or more (3+) years’ combined experience related to email hybrid integration and operational support of cloud Cisco e-mail Security services including hygiene/SPAM, Antivirus, Malware, Encryption, Data Loss Prevention and premise-based SMTP relays, VMWare AirWatch Mobile Device Management/ Workspace 1 and/or Active Directory (AD) authentication utilizing AD Federation Services
Three or more (3+) years’ experience utilizing Palo Alto web filtering technologies and developing automated reporting procedures for their use.
Possess SANS certifications, which may include Advanced Security Essentials, Enterprise Defender Certificate or other applicable SANS certification.
Three (3) years’ demonstrated experience in Malware/endpoint protection for incident response using McAfee and FireEye.
Three (3) years’ combined experience integrating border Router/Switches, Layer 3/ Application/Micro-Segmentation Firewall Policy/Administration, Load Balancer, Cloud Security for IaaS/PaaS/SaaS, DoS, Log/Monitoring correlation and/or Data Packet Inspection.
Three or more (3+) years’ combined experience related to Hypervisor, DNS, Identity/RBAC and Directory Services, MFA, IDS/IPS, Virtual Private Network, DMZ and/or Encryption (At Rest/In Transit).
Desired Soft Skills:

Excellent written and verbal communication and presentation skills with the ability to explain complex concepts
Highly self-motivated and directed with an attention to detail
Ability to take initiative and exercise judgment
Possess a flexible, proactive, can-do attitude
Job Responsibilities

Essential Security Endpoint and Operations Duties
Essential Security, SIEM, Vulnerability and Incident Duties
Security Compliance
Security Leadership/Mentor/Guidance
Closure, Transition, Training and Knowledge Transfer
Unanticipated Tasks
Other Requirements

Fully fluent in English for both written and verbal
Pass a Background check
Finalists must provide three references to verify skills and experience

Regards,
Abhishek Mishra
Technical Resource Specialist
Talent Anytime Inc.
41041 Trimboli way suite 1398 Fremont CA 94538
Contact# : 510-722-8503 x 509
Direct : 510-722-8835

STIG Update – STIG Viewer Version 2.9

STIGS, ,

STIG Update – STIG Viewer Version 2.9
DISA has released STIG Viewer Version 2.9. This latest version of STIG Viewer is available at https://iase.disa.mil/stigs/Pages/index.aspx.

Updates in Version 2.9 include the following additions:
– NIST SP 800-53 revision 4 control IDs to CSV exports of STIGs and Checklists
– Status to Checklist filters.
– Ability to create filtered Checklists from STIG filter results.
– Ability to filter on STIG names to the top of the STIGs list
– FQDN (fully-qualified domain name) to Checklist CSV export.

For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

STIG Update – April 2019 Quarterly Release

DIARMF, diarmf - implement, STIGS, , , , , , ,

STIG Update – April 2019 Quarterly Release
DISA has released the following updated Security Guidance, Security
Readiness Review Scripts and Benchmarks:

Unclassified Application STIGs : http://iase.disa.mil/stigs/app-security/Pages/index.aspx
Adobe Acrobat Professional Document Cloud (DC) Classic STIG, Version 1, Release 2
Citrix XenDesktop 7.x Delivery Controller STIG, Version 1, Release 2
Citrix XenDesktop 7.x License Server STIG, Version 1, Release 2
Citrix XenDesktop 7.x Windows Virtual Delivery Agent (VDA) STIG, Version 1, Release 2
McAfee VirusScan 8.8 Managed Client STIG, Version 5, Release 20
McAfee VSEL 1.9/2.0 Local Client STIG, Version 1, Release 4
McAfee VSEL 1.9/2.0 Managed Client STIG, Version 1, Release 4
Microsoft DotNet Framework 4.0 STIG, Version 1, Release 7
Microsoft Exchange 2010 Edge Transport Server STIG, Version 1, Release 5
Microsoft Exchange 2013 Edge Transport Server STIG, Version 1, Release 5
Microsoft Exchange 2013 Mailbox Server STIG, Version 1, Release 4
Microsoft Exchange 2016 Edge Transport Server STIG, Version 1, Release 2
Microsoft IIS 7.0 STIG, Version 1, Release 18
Microsoft IIS 8.5 Server STIG, Version 1, Release 7
Microsoft IIS 8.5 Site STIG, Version 1, Release 7
Microsoft Internet Explorer 11 STIG, Version 1, Release 17
Microsoft Office System 2013 STIG, Version 1, Release 8
Microsoft SQL Server 2016 Database STIG, Version 1, Release 4
Microsoft SQL Server 2016 Instance STIG, Version 1, Release 5
Microsoft Windows Defender Antivirus STIG, Version 1, Release 5
Mozilla FireFox STIG, Version 4, Release 25
PostgreSQL 9.x STIG, Version 1, Release 5
Web Server SRG, Version 2, Release 3

Unclassified Network STIGs and SRGs: http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx
BIND 9.x STIG, Version 1, Release 6
IBM MaaS360 with Watson MDM v10.x STIG, Version 1, Release 2
Infoblox 7.x DNS STIG, Version 1, Release 7
Network Infrastructure Policy STIG, Version 9, Release 8
Network WLAN STIG, Version 6, Release 15
Router SRG, Version 3, Release 2
Voice Video Endpoint SRG, Version 1, Release 9
Voice Video over Internet Protocol STIG, Version 3, Release 14
Voice Video Services Policy STIG, Version 3, Release 16

Unclassified Operating System STIGs and Overviews: http://iase.disa.mil/stigs/os/Pages/index.aspx
Active Directory Domain STIG, Version 2, Release 13
Apple OS X 10.3 (Sierra) STIG, Version 1, Release 2
Canonical Ubuntu 16.04 LTS STIG, Version 1, Release 2
Microsoft Windows Server 2008 DC STIG, Version 6, Release 43
Microsoft Windows Server 2008 MS STIG, Version 6, Release 42
Microsoft Windows Server 2008 R2 DC STIG, Version 1, Release 30
Microsoft Windows Server 2008 R2 MS STIG, Version 1, Release 29
Microsoft Windows Server 2012/2012 R2 DC STIG, Version 2, Release 16
Microsoft Windows Server 2012/2012 R2 MS STIG, Version 2, Release 15
Microsoft Windows Server 2016 STIG, Version 1, Release 8
Oracle Linux 6 STIG, Version 1, Release 15
Red Hat Enterprise Linux 6 STIG, Version 1, Release 22
Red Hat Enterprise Linux 7 STIG, Version 2, Release 3
Solaris 11 SPARC STIG, Version 1, Release 17
Solaris 11 x86 STIG, Version 1, Release 17
SUSE Enterprise Linux 12 STIG, Version 1, Release 2
z/OS ACF2 STIG, Version 6, Release 40
z/OS RACF STIG, Version 6, Release 40
z/OS TSS STIG, Version 6, Release 40

FOUO HBSS STIGs: https://iase.disa.mil/stigs/hbss/Pages/index.aspx
HBSS ePO 5.3/5.9 STIG Version 1, Release 17
HBSS HIP 8 Firewall STIG Version 1, Release 12
HBSS HIP 8 STIG Version 4, Release 22
HBSS Remote Console STIG Version 4, Release 17
McAfee ENS 10.x STIG Version 1, Release 3

FOUO Network STIGS: http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx
Joint Regional Security Stack STIG Version 1, Release 5

Benchmarks: http://iase.disa.mil/stigs/scap/Pages/index.aspx
Microsoft Internet Explorer 11 STIG Benchmark, Version 1, Release 13
Microsoft Windows 2008 DC STIG Benchmark, Version 6, Release 43
Microsoft Windows 2008 MS STIG Benchmark, Version 6, Release 43
Microsoft Windows 2008 R2 DC STIG Benchmark, Version 1, Release 31
Microsoft Windows 2008 R2 MS STIG Benchmark, Version 1, Release 32
Microsoft Windows 2012 and 2012 R2 DC STIG Benchmark, Version 2, Release 16
Microsoft Windows 2012 and 2012 R2 MS STIG Benchmark, Version 2, Release 15
Microsoft Windows Defender Antivirus STIG Benchmark, Version 1, Release 2
Microsoft Windows Server 2016 STIG Benchmark, Version 1, Release 9
Red Hat Enterprise Linux 6 STIG Benchmark, Version 1, Release 23
Red Hat Enterprise Linux 7 STIG Benchmark, Version 2, Release 3
Solaris 11/SPARC STIG Benchmark, Version 1, Release 11
Solaris 11/X86 STIG Benchmark, Version 1, Release 11

Software Engineer (Sterling, VA USA) #rockwellcollins

IT Security Jobs, risk jobs, , , , , , , , , , , , , ,

Interested in the Course:
https:/securitycompliance.thinkific.com

Title: Sr Software Engineer 1
Company: Rockwell Collins
Location: Sterling, VA

Description:
PLEASE NOTE:
-candidates must be US Citizens with the ability to obtain a secret clearance
-A SECRET CLEARANCE IS REQUIRED For this position.
-An Active Secret Clearance or a recently deactivated clearance(within the 24 months) is required
-4 year degree in an applicable STEM field REQUIRED
-contract to hire for the right candidate

Responsibilities:
-Capture and perform requirements analysis
-Further develop the architecture of software product designs
-Develop detailed software design specifications
-Modify/create engineering design documentation
-Review and critique peer engineering designs
-Present design to the customer during milestone events
-Provide accurate time estimates for the software development effort
-Debug and integrate software components
-Design, develop, implement, test, and debug real time software applications and associated user interfaces
-Support and enhance existing software products as necessary

Required Qualifications:
-BS degree in Computer Science or a STEM related degree.
-5 – 10 years of experience with full lifecycle software development, including:
—- Requirements analysis and deriving requirements
—- Object-Oriented Design using UML or SysML
—- Object-Oriented Development using C++
—- Unit testing
—- Source code control (Subversion, Git, ClearCase etc.)
-Comfortable with waterfall methodologies driven by customer milestones and deadlines.
-Ability to travel to customer site for debugging of issues (10% of the total project effort)
-Good written and oral communication skills

Desired Qualifications:
-Familiar with other programming languages (C, Ada)
-OS Experience: Windows 7, Windows 10, Linux or VxWorks
-Real-time programming
-Previous aircraft simulation software development a plus
-Experience with one or more of the following:
—Tactical Datalink (J-messages, K-messages, JREAP, IBS, Link-16)
—Simulated or real military radio communications

Regards
JacobSmith
E TalentNetwork

Home


8251 Greensboro Drive Suite 250
McLeanVA
jacobs@etalentnetwork.com
703-261-7028 Ext.367

STIG Update – Group Policy Objects (GPOs) for Security Technical Implementation Guides (STIGs) – April 2019

cyberspace workforce, diarmf - implement, STIGS, , , , ,

STIG Update – Group Policy Objects (GPOs) for Security Technical Implementation Guides (STIGs) – April 2019
Group Policy Objects (GPOs) have been updated for April 2019. See the Change Log document included in the zip file for additional information.

DISA Risk Management Executive is posting the GPOs for use by system administrators to ease the burden in securing systems within their environment.

The GPOs can be found on IASE website on the Group Policy Objects tab located at this link: https://iase.disa.mil/stigs/gpo/Pages/index.aspx

List of GPOs currently in the package:
Office Products:
Adobe Acrobat Pro DC Classic
Office system 2013
Browsers:
Internet Explorer 11
Operating Systems:
Windows Server 2008 R2 MS
Windows Server 2008 R2 DC
Windows Server 2012 R2 MS
Windows Server 2012 R2 DC
Windows Server 2016 MS
Windows Server 2016 DC

AntiVirus:
Windows Defender AntiVirus

For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

Vulnerability Management and Security Patching

DIARMF Jobs, Information Assurance Jobs, IT Security Jobs, risk jobs, , , , ,

checkout the course:
https://securitycompliance.thinkific.com

#vulnerability, #patching

Job Title: Vulnerability Management and Security Patching
Location: Santa Clara,CA / Austin, TX

Competencies:
Infra; Data Security – Client – Vulnerability Management

Essential Skills:
The Endpoint Security Engineer will support and maintain Applied Materials endpoints and security infrastructure globally. In this role, the candidate will primarily be responsible for Vulnerability Management and 3rd Party Patching. Duties: – Investigate or triage threats or vulnerabilities from various sources such as NVD, CVEs or 3rd party vendors such as Microsoft – Analyze and scan network / system for security vulnerabilities, configuration issues, including impact assessment, and relevant industry standards (e.g. CVE, CVSS, SCAP) – Identify/implement solution to remediate vulnerabilities and security risks – Responsible for patching software and hardware assets • Microsoft • 3rd party software • Firmware patching – Maintain a high patch compliance level

Role Description:
The Endpoint Security Engineer will support and maintain Applied Materials endpoints and security infrastructure globally. In this role, the candidate will primarily be responsible for Vulnerability Management and 3rd Party Patching. Duties: – Investigate or triage threats or vulnerabilities from various sources such as NVD, CVEs or 3rd party vendors such as Microsoft – Analyze and scan network / system for security vulnerabilities, configuration issues, including impact assessment, and relevant industry standards (e.g. CVE, CVSS, SCAP) – Identify/implement solution to remediate vulnerabilities and security risks – Responsible for patching software and hardware assets • Microsoft • 3rd party software • Firmware patching – Maintain a high patch compliance level

Experience (Years):
6-8

Desirable Skills
The Endpoint Security Engineer will support and maintain Applied Materials endpoints and security infrastructure globally. In this role, the candidate will primarily be responsible for Vulnerability Management and 3rd Party Patching. Duties: – Investigate or triage threats or vulnerabilities from various sources such as NVD, CVEs or 3rd party vendors such as Microsoft – Analyze and scan network / system for security vulnerabilities, configuration issues, including impact assessment, and relevant industry standards (e.g. CVE, CVSS, SCAP) – Identify/implement solution to remediate vulnerabilities and security risks – Responsible for patching software and hardware assets • Microsoft • 3rd party software • Firmware patching – Maintain a high patch compliance level

Thanks & Regards
Bajrang
Desk # 408-333-9221
500 East Diehl Road. Ste. 130 Naperville, IL
bajrang@enterprisesolutioninc.com
www.enterprisesolutioninc.com