Sr. Consultant - Qualified Security Assessor (QSA) in Boston, MA

The mission of VeriSign® Global Security Consulting (GSC) is to blend unmatched security expertise with world-class business and program management in order to provide comprehensive enterprise security solutions to our clients. Our experts combine business driven approaches with technology expertise in order to deliver maximum client satisfaction. VeriSign security consultants average 10 years of experience. They are professionals who have actually experienced real-world security and compliance implementations. http://www.verisign.com/global-consulting/security-consulting/index.html

VeriSign is seeking motivated and knowledgeable Senior Security Consultants for our Global PCI Practice. We are seeking certified PCI (QSA) Consultants in Atlanta, Boston, Mexico City, Tokyo, and Shenzhen.

. This is a Full time (remote/ home office) employment opportunity with VeriSign, Inc.
. This position requires business travel: candidates must be flexible, willing and able to travel for business purposes when needed at least 50% up to 100%. (Monday - Friday, travel varies and based on client requirements)
. Candidates must reside in or be willing to relocate to Atlanta, Boston, Mexico City, Tokyo, and Shenzhen.

At VeriSign, we care about our employees and provide a comprehensive, flexible benefits package that empowers individuals and families to choose options that best meet their needs. As a result of our rich diversity and competitive advantage, we have compiled a full range of first-rate options, including health, welfare and financial plans, as well as risk management plans and more. VeriSign provides its employees with a variety of additional perks, such as tuition reimbursement and health club reimbursement. All in all, we offer one of the most comprehensive, convenient, flexible benefits plans for those who work in our dynamic environment.

POSITION DETAILS

A Senior Consultant possesses mid to advanced Level knowledge and experience in information security and/or relevant information technology best practices and standards with a heavy concentration on testing and evaluating technical controls or regulatory or best practices gap analysis.

Functional Responsibilities and Skills
. Ability to perform project tasks with little or no supervision.
. Contribute a significant piece of a project deliverable.
. Ability to create detailed, professional documentation to be delivered to client.
. Able to create and recommend remediation for components of security policies. Provide specific recommendations for a clients business or technical issues. (Example: Lack of or enforcement of a password policy.)
. Understanding and experience in PCI (Visa CISP, MasterCard SDP, Discover DISC, Amex DSOP) and preferably one more regulatory area including, but not limited to:
o ISO 17799/BS 7799
o GLBA
o HIPAA
. Understands the creation, management, and oversight of Information Security Programs, Business Continuity Planning and Change Control functions for Information Services
. Familiar with retail information security challenges a plus
. Excellent written and verbal communications.

Educational Requirements
. Bachelor of Science or equivalent experience
. PCI Qualified Security Assessor (QSA) certification required and QPASP preferred
. At least one more technical certification such as CISSP, CISM, CISA, CCNA, CCDA, CCSA, GIAC

Technical Responsibilities and Skills
. Deep technical problem / resolution skills
. 5+ years of information security operations experience
. Mid to advanced level infrastructure or security design capabilities for environments that include 10 to 20 security devices, processes or applications.
. Mid to advanced level systems administration (UNIX, Windows, or mainframe)
. Knowledge with different application architectures and platforms, their development challenges, their control configurations, and their inherent security strengths and weaknesses (e.g., ColdFusion, J2EE, .Net)
. Mid to advanced level network administration (thorough protocol experience)
o Firewalls
o IDS/IPS Systems
o Enterprise level network architecture
. Mid to advanced level security knowledge
o Internet attack anatomy
o Perimeter protection strategies
o Security Policy structure
. Mid to advanced level methods knowledge of one of the following:
o Penetration testing (network, system and application)
o Application development
o Policy Development
. Ability to travel as needed

For immediate consideration please email resumes to
Cynthia Hamilton, Recruiting Consultant, at


To Apply to this job go to http://www.GadBall.com or click here