Job Specifications
Every year, nearly 200 million travelers trust our client to get them where they're going. Take your career to new heights by working for this longstanding leader in air travel that services more worldwide destinations than any other airline.
Our client is hiring a Senior Security Engineer to join their team, hybrid in Atlanta, GA.
Contract Duration: 12 Months on W2, eligible for full benefits, potential to extend or convert
Required Skills & Experience
Prior experience (5+yrs) with PCI DSS assessments and supporting activities
Deep understanding of the PCI DSS 4.0.1 Standards and PCI Scoping and Network Segmentation in large enterprise environment
Assess, analyze, and drive remediation of security control deficiencies and compliance gaps; provide strategic guidance for sustainable mitigation and process optimization
Ability to consult IT Business Partners on PCI scope and segmentation requirements
Strong understanding of Vulnerability management and Penetration-Testing methodology
Strong written and verbal communication skills across multiple channels and organizational levels
Self-starter with the ability to work independently and deliver clear, actionable results
Demonstrated passion for learning and applying compliance standards
Skilled in drafting and interpreting policies and procedures
Proficient in identifying, implementing, and managing security controls
Knowledgeable in collecting and interpreting evidence and artifacts for various assessments.
Solid grasp of IT domains including information security, network architecture, and cloud computing
Prior experience in Governance, Risk & Compliance (GRC) organization or comparable role
Preferred Qualifications
Practical audit and control testing experience
Project management experience and ability to drive action across functional areas
Experience in the aviation industry
Prior with PCI DSS
Desired Certifications
Payment Card Industry - Professional (PCI-P)
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
Certified in Risk and Information Systems Control (CRISC)
What You Will Be Doing
Responsible for the design, testing, evaluation, implementation, support, management, and deployment of security systems/devices used to safeguard the organization’s information assets.
Responsible for analyzing the information security environment and assisting with the development of security measures to safeguard information against accidental or unauthorized modification, destruction, or disclosure.
Works with the technical team to recover data after a security breach.
Configures and installs firewalls and intrusion detection systems.
Develops automation scripts to handle and track incidents.
Investigates intrusion incidents, conducts forensic investigations and mounts incident responses.
Delivers technical reports and formal papers on test findings.
Installs firewalls, data encryption, and other security measures.
Maintains access by providing information, resources, and technical support.
Ensures authorized access by investigating improper access; revoking access; reporting violations; monitoring information requests by new programming; recommending improvements.
Updates job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
Accomplishes information systems and organization mission by completing related results as needed.
Builds, deploys, and tracks security measurements for computer systems and networks.
Mitigates security vulnerabilities by implementing applicable solutions and tools.
Performs vulnerability testing, risk analyses, and security assessments.
Collaborates with colleagues on authentication, authorization, and encryption solutions.
Tests security solutions using industry standard analysis criteria.
Responds to information security issues during each stage of a project’s lifecycle.
Performs risk assessments and testing of data processing systems.
Establishes system controls by developing framework for controls and levels of access; recommending improvements
Establishes computer and terminal physical security by developing standards, policies, and procedures; coordinates with facilities security; recommends improvements.
Safeguards computer files by performing regular backups; developing procedures for source code management and disaster preparedness; recommends improvements.
Determines the sensitivity of the data in order to recommend the appropriate security needs. -Develops proposals for, and consider cost effective equipment options to satisfy security needs.
Communicates with the technical team, management team and users companywide if data security is breached.
Designs infrastructure to alert the technical team of detected vulnerabilities.
Evaluates new technologies and processes that enhance security capabilities
Supervises changes in software, hardware, facilities, tel
About the Company
Motion Recruitment delivers IT Talent Solutions for Contract, Direct Hire, Managed Solutions and Statement of Work to all of North America from our 21 delivery centers. Our high-touch, specialized, team-based recruitment model’s success is proven through our exemplary track record in filling the most challenging IT positions for startup and enterprise clients alike. Our hyper-specialized tech focus results in a truly consultative approach for both our clients and candidates, within our recruiting areas of expertise: Software...
Know more