Critical System Protection

We are looking to hire a CSP resident in the Raleigh, NC area.  The req can be found at:

http://www.symantec.com/about/careers/careers.jsp?areq=%2021145BR

Please contact Ryan Alves at ryan_alves@symantec.com.

Responsibilities

This Resident Consultant will be the trusted advisor in Symantec Data Center Security (DCS) - formerly Critical System Protection (CSP) - for a customer located in Raleigh, NC.  The successful candidate will be part of a team of onsite Consultants that support multiple Symantec technologies for this customer.  The primary responsibilities include:

• Prevention and Detection policy testing, tuning, and automation
• Customized reporting and analytics
• Upgrade testing and deployment
• Assist with daily administration and optimization of the DCS/CSP environment
• Assist with DCS/CSP events and remediation
• Assist with creating and managing process, procedure and best practices documentation
• Support business enablement activities as the DCS/CSP subject matter expert
• Informal DCS/CSP knowledge-sharing and ad-hoc training
• Liaise with Technical Support, Engineering and Product Management
• Drive break/fix issues to resolution
• Report program status regularly highlighting DCS/CSP activities, tasks and accomplishments
• Cross train on other Symantec technologies utilized by the client including Endpoint Protection (SEP), Data Loss Prevention (DLP), Messaging Gateway (SMG), Web Gateway (SWG), Email Encryption (PGP) and Symantec Security Information Manager (SSIM)
• Assessing the security impact of traffic anomalies on customer networks
• Articulating technical security issues to customers, both verbally and written
• Responding to technical security questions and concerns from customers
• Possessing a deep understanding of hacker techniques, vulnerabilities, attacks and countermeasures
• Maintaining a strong awareness and understanding of the current threat landscape
• Conducting research on emerging security threats and potential customer impact
• Performing malware analysis and risk management on a computer system

Qualifications

• A passion for security, learning, and knowledge sharing
• 6-8 years of experience in Information Security
• 2+ years of experience creating and tuning detection and prevention policies for data center server security using Symantec DCS/CSP or competitive products
• 2+ years of experience with security incident response and remediation
• Experience working with other Symantec or competitive security technologies: such as SSIM, SEP, DLP, SMG, SWG, and PGP email preferred
• In depth understanding of host-based intrusion detection (HIPS) and host-based intrusion prevention (HIPS)
• Experience with file integrity monitoring and application whitelisting preferred
• Strong knowledge of the TCP/IP protocol suite and related security concerns
• Working knowledge of Microsoft SQL or competitive database platforms
• Strong knowledge of operating system platforms, routers, web proxies (BlueCoat), network protocols, and security architecture
• Working knowledge of well-known security tools such as NMAP, Nessus, TCPDump, Wireshark, Netcat, Backtrack, Encase, Helix, FTK
• Working knowledge of common attacks and vulnerabilities
• Strong understanding of common categories of malware and characteristics of each
• Advanced college coursework in Computer Science or Information Technology, or equivalent experience preferred
• Relevant industry standard certifications preferred (SANS, CISSP, C|EH, Etc..)
• Excellent written and verbal communication
• Ability to pass an enhanced background verification (Public Trust)
• Applicant must have resided and worked in the U.S. for 5 years to pass background verification