Previous Job
Software Engineer - IT Security Analyst / Architect
Ref No.: 18-05280
Location: Atlanta, Georgia
Start Date: 05/24/2018
 Job description: 

Security Engineer with enterprise experience in retail sector doing PCI, PCI compliance, PCI remediation, PCI Audits, etc. Should be familiar with security engineering, design, architecture review, and security technology management. Enterprise Security Expertise, Security Engineering and Design background, CISSP and PCI certification a plus. 

The Senior Security Engineer is a member of the Security Services team reporting to the Manager of IT Security Operations and Engineering. Security Engineers are focused on designing and implementing solutions approved by both Security Management and other support team members to support the overall business goals of Carters. Additionally, Engineers support business operations teams with technical tasks to decrease security risks. 

Security Solution Design & Deployment (65%) 
• Research, evaluate, design, test, recommend and plan implementation of new or improved information security software or devices: analyze new or enhanced software application or tool implementations for implications to existing security software and devices. 
• Ensure the protection, integrity, confidentiality, and availability of information in the custody of or processed by the Company by responding in a timely manner to a loss or misuse of information assets; 
• Participate in investigations of suspected information security misuse or in compliance reviews as requested by auditors; communicate unresolved security exposures, misuse or noncompliance situations to management. 
• Research and consult with key technology suppliers and industry consultants to evaluate, select, install, and configure hardware and software systems that provide appropriate security functions. 

Administrative / Documentation (20%) 
• Aid in review of security policies and guide the administration of security tools that control and monitor information security, including: access control, alert on and investigating potential misuse or breaches, design computer system access and reports to limit risk and identify possible security violations, document data privacy and protection. 
• Develops procedural documentation to ensure all security processes are well defined and maintained 

IT / Security Operations Support (15%) 
• Assist resource owners and IT staff in understanding and responding to security audit failures reported by internal and external auditing departments. 
• Review operation logs and event console activity to determine cause of security related events or to identify potential security related events. 
• Provide technical consultation in new systems development and enhancement of existing systems related to system security. 

Experience and Skills 
• 5+ years' experience in an Information Security Program including measuring performance/effectiveness, security baseline governance, etc. 
• Security Engineering background, deep technical knowledge 
• Ability to meet deadlines and work with senior management across disciplines 
• Bachelor Degree in Computer Science or related field, preferred. 
• CISSP, CISM, SANS, OSCP or similar is preferred