Request Technology - Craig Johnson
Chicago, Illinois
*Position is bonus eligible* Prestigious Financial Company is currently seeking a Cyber Threat and Vulnerabilities Defense Manager. Candidate will help plan actions and lead security professionals in the analysis and determination of threats to the enterprise, vulnerabilities in the environment, and how our company will best defend itself against these threats. This position will require initiative to oversee security technology implementations and be expected to put together projects and teams to remediate identified security threats, incidents, and compliance issues. Responsibilities: Manage security tools including appliances, hosted systems, and SaaS including health checks, version updates, and content development. Validate content changes to security tools are appropriate from other analysts and teams. Report on and enhance current metrics surrounding security tool capabilities and efficacy. Take a lead role in the systems life cycle performing upgrades, implementation of new technologies, and enhancement identification. Lead 3-5 employees and contingent labor professional for the cyber systems function within Cyber Defense. Manage team effectively in delivery of incident resolution, project tasks, compliance milestones, and systems implementations. Perform talent management functions across the team, including performance reviews, direct feedback, and other administrative functions as required. Lead cyber security incident responders in response activities including investigation, coordination, review, and reporting. Oversee technical analysis of security events while coordinating incident response activities with internal and external teams. Ensure and directly oversee the collection and preservation of data associated with cyber security incident response activities following industry best practices and established procedures. Develop and support briefings to senior management as a trusted incident responder. Supervisory Responsibilities: Manages all members of the Cybersecurity team within Security Services. Assigns personnel to projects, directs their activities, and performs personnel actions (hiring, promotions, terminations, etc.) Confer with and advise subordinates on administrative policies and procedures, technical problems, priorities, and methods. Promote employee development by conducting career-planning sessions with staff and selecting and scheduling employee training classes, conferences, and seminars Qualifications : Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. SIEM solutions Experience with Crowdstrike solutions Forensic analysis tools (Axiom, EnCase, FTK) Malware analysis tools (dynamic and static) Secure Web Gateway (BlueCoat, Microsoft Forefront) solutions Network sniffers and packet tracing tools (DSS, Ethereal and tcpdump, WireShark). Intrusion Detection & Prevention Tools such as SNORT/Sourcefire, Palo Alto, etc.) Encryption technologies (PGP, PKI and X.509) Hands on experience with network architecture, including network security. Hands on experience with Active Directory Security, including scans, best practices and security configuration. Hands on experience with Application Security controls including design, dynamic scans, static code analysis. Hands on experience with Incident Reponses process, procedures and Tools Identity and access management (I&AM) experience with Active Directory, NTFS permissions, LDAP and Single Sign On (SSO) solutions. Industry-standard metrics and measurements for SOC effectiveness Risk management in the context of the NIST CSF or another industry-standard framework Passion for creating tools and automating processes. Standard technical writing tools including MS Word, Excel, Project and Visio Industry-standard operating systems and environments such as Microsoft Windows and Linux distributions, in data center and cloud environments. LAN/WAN routing and high availability (OSPF, BGP4/iBGP, EIGRP and NSRP) Fundamental understanding of the underlying protocols and data used as the basis for the security monitoring service, including: HTTP, HTTPS, SQL, TCP/IP, Active Directory Application and database security experience Network and security engineering experience, including log and network traffic capture analysis. Experience with assessing system hardening procedures for Windows, Linux Security policy, standards, governance, privacy and regulatory experience (eg, NIST, COBIT). Knowledge of BYOD and Mobile Device Management platforms. Securing cloud based platforms (Microsoft Azure, Amazon AWS, etc.). Minimum three years of information security experience, preferably in the financial services industry. Minimum two years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response Minimum one year in a leadership role or team/project lead capacity. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies. Industry knowledge of leading-edge security technologies and methods working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities Professional security certifications is a plus (ie, GIAC, CISSP, CISA, CISM, CRISC)
*Position is bonus eligible* Prestigious Financial Company is currently seeking a Cyber Threat and Vulnerabilities Defense Manager. Candidate will help plan actions and lead security professionals in the analysis and determination of threats to the enterprise, vulnerabilities in the environment, and how our company will best defend itself against these threats. This position will require initiative to oversee security technology implementations and be expected to put together projects and teams to remediate identified security threats, incidents, and compliance issues. Responsibilities: Manage security tools including appliances, hosted systems, and SaaS including health checks, version updates, and content development. Validate content changes to security tools are appropriate from other analysts and teams. Report on and enhance current metrics surrounding security tool capabilities and efficacy. Take a lead role in the systems life cycle performing upgrades, implementation of new technologies, and enhancement identification. Lead 3-5 employees and contingent labor professional for the cyber systems function within Cyber Defense. Manage team effectively in delivery of incident resolution, project tasks, compliance milestones, and systems implementations. Perform talent management functions across the team, including performance reviews, direct feedback, and other administrative functions as required. Lead cyber security incident responders in response activities including investigation, coordination, review, and reporting. Oversee technical analysis of security events while coordinating incident response activities with internal and external teams. Ensure and directly oversee the collection and preservation of data associated with cyber security incident response activities following industry best practices and established procedures. Develop and support briefings to senior management as a trusted incident responder. Supervisory Responsibilities: Manages all members of the Cybersecurity team within Security Services. Assigns personnel to projects, directs their activities, and performs personnel actions (hiring, promotions, terminations, etc.) Confer with and advise subordinates on administrative policies and procedures, technical problems, priorities, and methods. Promote employee development by conducting career-planning sessions with staff and selecting and scheduling employee training classes, conferences, and seminars Qualifications : Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. SIEM solutions Experience with Crowdstrike solutions Forensic analysis tools (Axiom, EnCase, FTK) Malware analysis tools (dynamic and static) Secure Web Gateway (BlueCoat, Microsoft Forefront) solutions Network sniffers and packet tracing tools (DSS, Ethereal and tcpdump, WireShark). Intrusion Detection & Prevention Tools such as SNORT/Sourcefire, Palo Alto, etc.) Encryption technologies (PGP, PKI and X.509) Hands on experience with network architecture, including network security. Hands on experience with Active Directory Security, including scans, best practices and security configuration. Hands on experience with Application Security controls including design, dynamic scans, static code analysis. Hands on experience with Incident Reponses process, procedures and Tools Identity and access management (I&AM) experience with Active Directory, NTFS permissions, LDAP and Single Sign On (SSO) solutions. Industry-standard metrics and measurements for SOC effectiveness Risk management in the context of the NIST CSF or another industry-standard framework Passion for creating tools and automating processes. Standard technical writing tools including MS Word, Excel, Project and Visio Industry-standard operating systems and environments such as Microsoft Windows and Linux distributions, in data center and cloud environments. LAN/WAN routing and high availability (OSPF, BGP4/iBGP, EIGRP and NSRP) Fundamental understanding of the underlying protocols and data used as the basis for the security monitoring service, including: HTTP, HTTPS, SQL, TCP/IP, Active Directory Application and database security experience Network and security engineering experience, including log and network traffic capture analysis. Experience with assessing system hardening procedures for Windows, Linux Security policy, standards, governance, privacy and regulatory experience (eg, NIST, COBIT). Knowledge of BYOD and Mobile Device Management platforms. Securing cloud based platforms (Microsoft Azure, Amazon AWS, etc.). Minimum three years of information security experience, preferably in the financial services industry. Minimum two years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response Minimum one year in a leadership role or team/project lead capacity. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies. Industry knowledge of leading-edge security technologies and methods working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities Professional security certifications is a plus (ie, GIAC, CISSP, CISA, CISM, CRISC)
Picture More Ltd
IT Infrastructure Storage & Virtualization Specialist We are currently seeking an experienced Infrastructure Engineering with expertise in Storage & Virtualization. This is a diverse permanent opportunity based at our client's head office in London. As part of the IT Infrastructure Engineering Team, you will play a critical role in maintaining and advancing the global IT infrastructure. Position: IT Infrastructure Engineering Storage & Virtualization Specialist - Permanent Reporting To: IT Infrastructure Engineering Manager Location: London, Head Office A leading organization with a global presence, and the Technology Department is at the forefront of driving innovation and efficiency across the business services. The IT Infrastructure Engineering Team focuses on project delivery and engineering improvements to support the global offices. Key Responsibilities: Monitor and maintain the firm's storage infrastructure (Nutanix, HPE3Par, HPE Nimble, MSA). Oversee the hypervisor layer (VMWare/NutanixAHV/Azure) and HPE blade chassis and blades. Maintain and advise on the firm's backup infrastructure (Commvault, Veeam). Provide physical engineering presence for the installation and maintenance of hardware. Provision and configure physical and virtual Servers (VMWare, Azure). Project Delivery: Lead the build of new systems, both physical and virtual (VMWare/Azure/Cloud). Participate in and lead IT infrastructure life cycle projects, including PID creation and solution costing review. Ensure proposed infrastructure architecture/design align with firm policies. Cyber Security: Review and improve the firm's security posture. Identify vulnerabilities and work with Engineering/Operations teams for remediation. Stay informed about current and emerging security threats. 3rd Level Support: Provide Major Problem/Incident Support. Liaise with 3rd party suppliers on system issues. Ensure 3rd level teams have relevant skills, procedures, and documentation. Candidate Profile: Experience and Qualifications: 10+ years of Full time IT professional experience. 5+ years of experience designing, maintaining, and upgrading similar-sized environments. Demonstrable experience with VMware, NutanixAHV, and Azure. Experience in Infrastructure Business Continuity or Disaster Recovery planning. Technical Skills: Extensive experience with VMware, Nutanix, and Azure technologies. Strong skills in SAN technologies, including NutanixNX's, HPE3Par, and HP Nimble. Knowledge of Azure services and ARM templates. Familiarity with Windows Server, Active Directory, DHCP, DNS, and related technologies. Ideally accredited in VMWare and Azure technologies (VCP). Ideally accredited Microsoft Certified System Engineer (MCSE). If you are a highly skilled IT professional looking to join a dynamic team and contribute to innovative projects, please apply today!
IT Infrastructure Storage & Virtualization Specialist We are currently seeking an experienced Infrastructure Engineering with expertise in Storage & Virtualization. This is a diverse permanent opportunity based at our client's head office in London. As part of the IT Infrastructure Engineering Team, you will play a critical role in maintaining and advancing the global IT infrastructure. Position: IT Infrastructure Engineering Storage & Virtualization Specialist - Permanent Reporting To: IT Infrastructure Engineering Manager Location: London, Head Office A leading organization with a global presence, and the Technology Department is at the forefront of driving innovation and efficiency across the business services. The IT Infrastructure Engineering Team focuses on project delivery and engineering improvements to support the global offices. Key Responsibilities: Monitor and maintain the firm's storage infrastructure (Nutanix, HPE3Par, HPE Nimble, MSA). Oversee the hypervisor layer (VMWare/NutanixAHV/Azure) and HPE blade chassis and blades. Maintain and advise on the firm's backup infrastructure (Commvault, Veeam). Provide physical engineering presence for the installation and maintenance of hardware. Provision and configure physical and virtual Servers (VMWare, Azure). Project Delivery: Lead the build of new systems, both physical and virtual (VMWare/Azure/Cloud). Participate in and lead IT infrastructure life cycle projects, including PID creation and solution costing review. Ensure proposed infrastructure architecture/design align with firm policies. Cyber Security: Review and improve the firm's security posture. Identify vulnerabilities and work with Engineering/Operations teams for remediation. Stay informed about current and emerging security threats. 3rd Level Support: Provide Major Problem/Incident Support. Liaise with 3rd party suppliers on system issues. Ensure 3rd level teams have relevant skills, procedures, and documentation. Candidate Profile: Experience and Qualifications: 10+ years of Full time IT professional experience. 5+ years of experience designing, maintaining, and upgrading similar-sized environments. Demonstrable experience with VMware, NutanixAHV, and Azure. Experience in Infrastructure Business Continuity or Disaster Recovery planning. Technical Skills: Extensive experience with VMware, Nutanix, and Azure technologies. Strong skills in SAN technologies, including NutanixNX's, HPE3Par, and HP Nimble. Knowledge of Azure services and ARM templates. Familiarity with Windows Server, Active Directory, DHCP, DNS, and related technologies. Ideally accredited in VMWare and Azure technologies (VCP). Ideally accredited Microsoft Certified System Engineer (MCSE). If you are a highly skilled IT professional looking to join a dynamic team and contribute to innovative projects, please apply today!
Crimson Limited
Senior Information Strategy Manager - Birmingham Salary up to £59,300 Hybrid working available Senior Information Strategy Manager required for a leading client based in Birmingham. My client is currently seeking a Senior information Strategy Manager to come on board to be Will be tasked with formulating a comprehensive information strategy for the client, encompassing policies, strategies, models, and governance to ensure a thorough understanding and effective management of information throughout the program. This role offers guidance on Information Management requirements to the supply chain and assesses information management-related requirements. Additionally, the incumbent oversees a team of Information Assurance and Governance roles that provide guidance and assurance to Information Technology (IT) projects, products, and Information Asset Owners. Their responsibilities include advising on how to structure and manage information to determine acceptable levels of risk, staying aware of continuously evolving information security and data protection standards, and supporting or leading audit and certification programs, collaborating with Integrated Project Teams (IPT). Key skills and responsibilities, Information Strategy Manager experience Insight into business domains, data/content, and processes. Expertise in managing and analysing distributed systems in both cloud and hybrid environments. Preferred experience in executing data and analytics management programs. Familiarity with innovation and ideation methods, including design thinking. Previous roles in Information Strategy, leading Information Assurance and Governance. Proven experience in developing and implementing Information Management strategies, objectives, and plans seamlessly within the business. Track record of running an efficient Information Management function Familiarity with common information management frameworks and data models. Understanding of metamodels, taxonomies, and ontologies, as well as the challenges of applying structured techniques (such as Datamodelling) to less-structured sources. Proficiency in data science concepts, including MDM (Master Data Management), business intelligence, and data warehouse design and implementation techniques. Knowledge of various data access and analytics approaches, such as microservices and event-based architectures. Awareness of information and cyber security risk management. Understanding of Data Protection and Freedom of Information Acts, Environmental Information Regulations, and other legal aspects related to managing information. Knowledge of information technology service strategy, delivery, and operations. Familiarity with auditing and compliance of security standards and policies. Interested!?! Please send your up to date CV to Emma Siwicki at Crimson for immediate review Not interested?! Do you know anyone that might be? Refer a friend for this role to earn £250 worth of vouchers. Crimson are acting as an employment business in regards to this vacancy.
Senior Information Strategy Manager - Birmingham Salary up to £59,300 Hybrid working available Senior Information Strategy Manager required for a leading client based in Birmingham. My client is currently seeking a Senior information Strategy Manager to come on board to be Will be tasked with formulating a comprehensive information strategy for the client, encompassing policies, strategies, models, and governance to ensure a thorough understanding and effective management of information throughout the program. This role offers guidance on Information Management requirements to the supply chain and assesses information management-related requirements. Additionally, the incumbent oversees a team of Information Assurance and Governance roles that provide guidance and assurance to Information Technology (IT) projects, products, and Information Asset Owners. Their responsibilities include advising on how to structure and manage information to determine acceptable levels of risk, staying aware of continuously evolving information security and data protection standards, and supporting or leading audit and certification programs, collaborating with Integrated Project Teams (IPT). Key skills and responsibilities, Information Strategy Manager experience Insight into business domains, data/content, and processes. Expertise in managing and analysing distributed systems in both cloud and hybrid environments. Preferred experience in executing data and analytics management programs. Familiarity with innovation and ideation methods, including design thinking. Previous roles in Information Strategy, leading Information Assurance and Governance. Proven experience in developing and implementing Information Management strategies, objectives, and plans seamlessly within the business. Track record of running an efficient Information Management function Familiarity with common information management frameworks and data models. Understanding of metamodels, taxonomies, and ontologies, as well as the challenges of applying structured techniques (such as Datamodelling) to less-structured sources. Proficiency in data science concepts, including MDM (Master Data Management), business intelligence, and data warehouse design and implementation techniques. Knowledge of various data access and analytics approaches, such as microservices and event-based architectures. Awareness of information and cyber security risk management. Understanding of Data Protection and Freedom of Information Acts, Environmental Information Regulations, and other legal aspects related to managing information. Knowledge of information technology service strategy, delivery, and operations. Familiarity with auditing and compliance of security standards and policies. Interested!?! Please send your up to date CV to Emma Siwicki at Crimson for immediate review Not interested?! Do you know anyone that might be? Refer a friend for this role to earn £250 worth of vouchers. Crimson are acting as an employment business in regards to this vacancy.
