Common use of Security Engineer Clause in Contracts

Security Engineer. Tier 3 5 Reviews device configuration, configuration changes, installs updates to device software (filters, profiles and patches) to ensure completeness and accuracy. Defines repeatable methods for resolving issues-creates new 'known issue' resolutions. Monitors device health and performance using pre-set or standard dashboards and reports. Creates new dashboards, queries and reports for use by support team and customers. Troubleshoots new or unknown issues escalated from Tier1 or Tier2 Engineers, directs Tier1 and or Tier2 to resolve issue. Addressed issues requiring escalation to Vendor (e.g., RMA activities) escalate to Tier3. Supervises Tier 1 and Tier2 Engineers. Five (5) or more years of IT security experience with managing devices of similar type. Resource Unit Resource Type Minimum Yrs/ Exp Role Qualifications Security Incident Management Incident Engineer 5 Reviews documentation (response preparedness plan, network documentation, current incident data and summaries - as available), interviews customer personnel, captures incident event and activity data, identifies potential issues, breach, or system compromise, makes recommendations for mitigation and remediation, participates on working sessions, conference and status calls, documents and presents final incident reports. Five (5) or more years of security and/or incident response experience. Possesses a practitioner's understanding of the incident response process. Digital Forensic Investigation Digital Analyst 5 Configures digital forensic tools to capture forensic data from target platforms. Performs analysis of captured data to identify evidence of indicators of compromise (IoCs), identify data (source IP, Destination IP, Ports, Protocols) related to suspicious traffic, documents and presents forensic investigation reports. Five (5) or more years of security and/or audit compliance experience. Possesses a practitioner's understanding of digital forensics requirements and process. Response Preparedness Incident Engineer 5 Performs documentation reviews, interviews customer personnel, captures preparedness support data, identifies response gaps, makes recommendations for addressing gaps, documents and presents finding and recommendation reports. Five (5) or more years of security and/or incident response experience. Possesses a practitioner's understanding of the incident response process. Resource Type Minimum Yrs/ Exp Role Qualifications Security Risk Assessment Rate Card Senior Engineer 5 Performs documentation reviews, interviews customer personnel, captures assessment support data, identifies compliance gaps, makes recommendations for addressing gaps, documents and presents finding and recommendation reports. Supervises Junior Engineer(s) in their work. Five (5) or more years of security and/or audit compliance experience. Understanding of audit planning and leading an assessment engagement. Possesses a practitioner's understanding of the assessment's underlying requirements. Participation on similar assessment engagements (possibly as Junior Engineer). Junior Engineer 2 Performs, as directed, documentation reviews, interviews customer personnel, captures assessment support data, identifies potential compliance gaps, supports documentation of findings and recommendation reports. Two (2) or more years of security and/or audit compliance experience. Understanding of audit plans and methods of plan execution. Quality Assurance 5 Reviews assessment reports and supporting data to ensure all findings are supportable. Ensures completeness of reports. Five (5) or more years of security and/or audit compliance experience. Participation of similar assessment engagements (possibly as Senior or Junior Engineer).

Security Engineer. Tier 3 5 Reviews device configuration, configuration changes, installs updates to device software (filters, profiles and patches) to ensure completeness and accuracy. Defines repeatable methods for resolving issues-issues- creates new 'known issue' resolutions. Monitors device health and performance using pre-set or standard dashboards and reports. Creates new dashboards, queries and reports for use by support team and customers. Troubleshoots new or unknown issues escalated from Tier1 or Tier2 Engineers, directs Tier1 and or Tier2 to resolve issue. Addressed issues requiring escalation to Vendor (e.g., RMA activities) escalate to Tier3. Supervises Tier 1 and Tier2 Engineers. Five (5) or more years of IT security experience with managing devices of similar type. Resource Unit Resource Type Minimum Yrs/ Exp Role Qualifications Security Incident Management Incident Engineer 5 Reviews documentation (response preparedness plan, network documentation, current incident data and summaries - as available), interviews customer personnel, captures incident event and activity data, identifies potential issues, breach, or system compromise, makes recommendations for mitigation and remediation, participates on working sessions, conference and status calls, documents and presents final incident reports. Five (5) or more years of security and/or incident response experience. Possesses a practitioner's understanding of the incident response process. Digital Forensic Investigation Digital Analyst 5 Configures digital forensic tools to capture forensic data from target platforms. Performs analysis of captured data to identify evidence of indicators of compromise (IoCs), identify data (source IP, Destination IP, Ports, Protocols) related to suspicious traffic, documents and presents forensic investigation reports. Five (5) or more years of security and/or audit compliance experience. Possesses a practitioner's understanding of digital forensics requirements and process. Response Preparedness Incident Engineer 5 Performs documentation reviews, interviews customer personnel, captures preparedness support data, identifies response gaps, makes recommendations for addressing gaps, documents and presents finding and recommendation reports. Five (5) or more years of security and/or incident response experience. Possesses a practitioner's understanding of the incident response process. Resource Type Minimum Yrs/ Exp Role Qualifications Security Risk Assessment Rate Card Senior Engineer 5 Performs documentation reviews, interviews customer personnel, captures assessment support data, identifies compliance gaps, makes recommendations for addressing gaps, documents and presents finding and recommendation reports. Supervises Junior Engineer(s) in their work. Five (5) or more years of security and/or audit compliance experience. Understanding of audit planning and leading an assessment engagement. Possesses a practitioner's understanding of the assessment's underlying requirements. Participation on similar assessment engagements (possibly as Junior Engineer). Junior Engineer 2 Performs, as directed, documentation reviews, interviews customer personnel, captures assessment support data, identifies potential compliance gaps, supports documentation of findings and recommendation reports. Two (2) or more years of security and/or audit compliance experience. Understanding of audit plans and methods of plan execution. Quality Assurance 5 Reviews assessment reports and supporting data to ensure all findings are supportable. Ensures completeness of reports. Five (5) or more years of security and/or audit compliance experience. Participation of similar assessment engagements (possibly as Senior or Junior Engineer).