Tag Archives: CISSP

NEW JOB: Director of Cyber Security

KC-Unleash

Title: Director of Cyber Security   

Job # 758999, Kimberly-Clark Corp.

Location: Roswell GA

Function: IT Services

Reports to: CISO

 

The Director of Cyber Security reporting directly to the Chief Information Security Officer working to mature, delivery and provide oversight of a cyber security program. Governance expectations include establishing and maintaining of standards, procedures and guidelines to protect the Company’s information assets stored on premise as well as company assets stored or managed with third party vendors.

This role includes, but is not limited to the development of identification strategies and guidance on remediation of potential or known exposures (accidental or intentional), that may cause serious financial and/or information loss, as well as establishing policy on the administration of systems and information ownership.

The Director of Cyber Security establishes and maintains working relationships with other noncompetitive companies to ensure that the Corporation maximizes its investment in IT infrastructure and security services. In addition, the position directs external business partners to drive down unit cost and total cost of ownership while providing service assurance that meets or exceeds service level expectations.

Specific Responsibilities:

  • Leads a global IT Security team consisting of engineers, service delivery, and security intelligence resources located in multiple regions (APAC, EMEA, NA).
  • Responsible for managing the annual Security operating budget and portfolio of services.
  • Manage the information security function in accordance with the established policies and guidelines while balancing the appropriate levels of risk in support of the business objectives.
  • Interact with Business Leadership to ensure that the Information Security Program addresses Business needs for protection and proactively identifying threats.
  • Drive assessment of risk to applications via standard secure code cycle and determine exposure from 3rd party vendors.
  • Leads and facilitates sync meetings between product innovation teams, infrastructure, enterprise architecture to build security in their processes and projects.
  • Advises and influences global business clients and customers, at executive level, regarding the delivery, costs, availability and functionality of security components
  • Interprets the strategic direction of Kimberly-Clark’s global business units and IT and aligns to security capability.
  • Track appropriate measures and metrics related to the development and management of our security infrastructure and regularly communicate them to leadership team.
  • Provide coaching, consulting, and training opportunities to create and maintain talent within the security organization at the manager and below level.
  • Recruits, hires, orients, trains and evaluates security staff.
  • Drives and aligns to an agile work methodology to ensure delivery of security outcomes.
  • Ensure alignment with industry frameworks such as the NIST Cyber Security Framework, ISO27001, COBIT, OCTAVE.

Ever wonder what it is like to belong to this global company?  Here are some reasons to join us: http://bit.ly/WorkingatKC !  Interested in this job? You can contact Dorothy.Beach@KCC.com to receive more information on this job.   Sending your resume would jump-start our process and could lead to a screen call.

Basic Qualifications:

  • Bachelor’s degree from an accredited college/university
  • Preferred Master’s or advance degree from an accredited college/university
  • 10-15 years of work experience in similar position or having equivalent kind of skills experience
  • 8+ years of work experience in information security
  • 3+ years of work experience in leading an Information Security team
  • Substantial knowledge of cyber security threats and risk mitigation strategies
  • Experience implementing Payment Card Information Data Security Standards
  • Demonstrated effectiveness in collaborating with business partners on security needs Strong analytic and problem solving skills; sound judgment
  • Experience in managing enterprise identity and access management platforms
  • Proven knowledge in Cloud Security platforms and managing data protection technologies
  • Experience with security measures and metrics
  • Ability to communicate information about the vision and direction of our information security program to senior leadership
  • Demonstrated ability to work in partnership with global cultures and times zones
  • Ability to visualize, plan, and execute process improvement to increase departmental efficiency
  • Communication skills including the ability to translate security concepts into business language

 

Preferred Qualifications:

  • Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)

 

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position. 

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 175 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With more than 140 years of history of innovation, we believe in recruiting the best people and empowering them do their best work.  If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

 

 

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation, gender identity, age, pregnancy, genetic information, citizenship status, or any other characteristic protected by law.

K-C requires that an employee have authorization to work in the country in which the role is based.  In the event an applicant does not have current work authorization, K-C will determine, in its sole discretion, whether to sponsor an individual for work authorization.  However, based on immigration requirements, not all roles are suitable for sponsorship.

Advertisements

Job: Advanced IT Auditor in Dallas | F500

KC-Unleash

Title: Advanced IT Auditor

Job # 150000Q0, Kimberly-Clark Corp.

Location: Dallas TX, HQ

Function: Audit

Reports to: Manager

As a member of the Internal Audit team, this individual will be involved in performing Kimberly Clark’s audit activities to primarily identify and assess technology related risks and controls, as well as operational, compliance, and business process risk and controls. Where necessary, the individual will work with external service providers. By executing audit activities, the individual will objectively evaluate key risk areas to identify meaningful, value-added improvement opportunities and share results with management.

Primary Duties

Specific activities related to the execution of audit activities will include: • Execute IT audits, including SOX IT General Controls testing as well as risk-based IT audits. • Analyze processes to evaluate whether they are effective in efficiently processing and adequately protecting data. • Execute audit work programs and maintain organized and complete audit work papers pertinent to the audit’s scope and related findings. • Identify and define issues, analyze evidence and document IT testing procedures and results. • Conduct interviews, examine documents, prepare work papers and compose summary memos, as necessary. • Evaluate IT findings and communicate to Internal Audit management in a timely manner. • Develop strong relationships with IT and 3rd party service provider(s) to coordinate audit activities. • Conduct special assignments as requested by the Senior IT Audit Manager. • Represent Internal Audit with various organizational project teams and with external organizations. • Develop and maintain productive relationships throughout the company through individual contacts and meetings. • Perform computer assisted audit techniques and data analysis. • Maintain a working knowledge of information security assessment industry standards/best practices and compliance with information security-related laws and regulations (e.g., SEC, PCI-DSS, HIPAA, and other state/regulatory data privacy laws).

Other Skills: • Excellent verbal and written communication skills. • Ability to communicate succinctly and effectively with management. • Strong analytical, deductive and problem solving skills. • Excellent interpersonal and organizational skills. • Ability to meet commitments, deadlines, and schedules. • Demonstrated ability to use technology to improve the effectiveness of assignments, increase efficiencies, and quickly complete work objectives. • Ability to successfully manage multiple assignments and projects simultaneously.

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on this job.   Sending your resume would jump-start our process and allow a discussion between your career goals and what Kimberly-Clark needs.

Minimum Requirements:Bachelor’s degree in Management Information Systems, Accounting Information Systems or related degree. • Familiarity with information technology frameworks, including but not limited to COBIT, ITIL, NIST and ISO 27001/27002. • Practical knowledge of information technology processes, risks and internal controls. • PC proficiency in MS Office applications (Excel, Word, etc.). • 1-2 years of experience in public accounting, or 2-4 years of experience in an internal audit department of a large corporation, with a focus on information technology audits.

Preferred Requirements: • Understanding of manufacturing and/or consumer products industries. • Experience using ACL or comparable software to perform various audit techniques and analytical procedures. • Experience with auditing SAP ERP. • Current designation and maintenance of a Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or similar certification is highly desirable. • Working knowledge of CCH TeamMate Audit Management Software.

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 63 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

 

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position.

 

 

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

 

Kimberly-Clark job of Sr. IT Auditor in Dallas

KC-Unleash

Title: Senior IT Auditor  

Job #15000112, Kimberly-Clark Corp.

Location: Dallas TX at HQ

Function: Audit

Reports to: IT Audit Manager

As a member of the Internal Audit team, this individual will be involved in performing Kimberly Clark’s audit activities to primarily identify and assess technology related risks and controls, as well as operational, compliance, and business process risk and controls.

The Sr. IT Auditor will provide project-level supervision to junior members of the Internal Audit team. Where necessary, the individual will work with external service providers. By executing audit activities, the individual will objectively evaluate key risk areas to identify meaningful, value-added improvement opportunities and share results with management.

Primary Duties 

Specific activities related to the execution of audit activities will include:  • Assist in scoping and coordinating IT audits, including SOX IT General Controls testing.  • Analyze processes to evaluate whether they are effective in efficiently processing and adequately protecting data.  • Execute audit work programs and maintain organized and complete audit work papers pertinent to the audit’s scope and related findings.  • Perform first-level, detail review of working papers for staff level auditors.  • Identify and define issues, analyze evidence and document IT testing procedures and results.  • Conduct interviews, examine documents, prepare work papers and compose summary memos, as necessary.  • Evaluate IT findings and communicate to Internal Audit management in a timely manner.  • Develop strong relationships with IT and 3rd party service provider(s) to coordinate audit activities.  • Conduct special assignments as requested by the Senior IT Audit Manager.  • Represent Internal Audit with various organizational project teams and with external organizations.  • Develop and maintain productive relationships throughout the company through individual contacts and meetings.  • Perform computer assisted audit techniques and data analysis.  • Maintain a working knowledge of information security assessment industry standards/best practices and compliance with information security-related laws and regulations (e.g., SEC, PCI-DSS, HIPAA, and other state/regulatory data privacy laws).

Other Skills:  • Excellent verbal and written communication skills  • Excellent verbal and written communication skills  • Ability to communicate succinctly and effectively with management  • Strong analytical, deductive and problem solving skills  • Excellent interpersonal and organizational skills  • Ability to meet commitments, deadlines, and schedules  • Demonstrated ability to use technology to improve the effectiveness of assignments, increase efficiencies, and quickly complete work objectives  • Ability to successfully manage multiple assignments and projects simultaneously.

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on this job. Sending your resume would jump-start our process and allow a discussion between your career goals and what Kimberly-Clark needs.

Basic Qualifications:  • Bachelor’s degree in Management Information Systems, Computer Science or related degree.  • 2-3 years of experience in public accounting, or 4-5 years of experience in an internal audit department of a large corporation, with a focus on information technology audits.  • Familiarity with information technology frameworks, including but not limited to COBIT, ITIL and ISO 27002.  • Practical knowledge of processes, risks and internal controls.  • PC proficiency in MS Office applications (Excel, Word, etc.).  • Experience using ACL or comparable software to perform various audit techniques and analytical procedures.  • Current designation and maintenance of a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) or similar certification.

Preferred Qualifications:  • Understanding of manufacturing and/or consumer products industries.  • Experience with auditing SAP ERP.  • Working knowledge of CCH TeamMate Audit Management Software.  • Fluent in Spanish (written and spoken)

 

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 63 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position.

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

 

Kimberly-Clark hiring IT Security Sr. Technical Consultant

KC-Unleash

Title: IT Security Sr. Technical Consultant

Job #140001wd , Kimberly-Clark Corp.

Location Negotiable: Roswell, GA – Dallas, TX – Neenah, WI – Knoxville, TN

Function: ITS

Reports to: CISO

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

The IT Security Technical Sr. Consultant will deliver security technical consulting to internal organizations and Information Technology Services (ITS).

The IT Security Technical Sr. Consultant will evaluate needs of key stakeholders to find solutions to challenging situations. Primary areas of expertise are IT infrastructure, Mergers & Acquisitions, Emerging Technologies (Cloud, BYOD) and information security compliance (HIPAA, SOX, PCI).

This position is very technical in nature. This person will provide guidance and mentoring to teammates and handle technical escalations. Represent information security organization in the most technically, or politically, challenging engagements. Facilitate team operations and ongoing execution of work activity. Backup all teammates in all engagements as necessary/warranted.

Responsibilities: 
• Drive SDL across ITS and business segments, for internal and externally facing applications, including Ecommerce sites, Mobility (Android, Apple IOS), and legacy applications;
• Source code analysis and remediation using Fortify; Network security assessments and analysis for corporate and non-corporate network environments;
• Firewall policy evaluation, review, and design;
• Ensure compliance across applications and networks for PCI, HIPAA, and SOX;
• Provide training and guidance for security including Threat Modeling, Penetration Testing, SDL, and Code Security Reviews.

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140001wd  .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Requirements: 
• Bachelor’s degree required (preferably in computer science or information systems)

  • 10+ years of Information Technology, with a background in Security and Compliance experience
  • 5+ years of experience leading penetration testing, application testing, and red team engagements

    Additional Requirements:
    • Experience with security tools such as – Nmap, Metasploit, Kali Linux, Burp Suite Pro, etc., as well as other various commercial and self-developed testing tools
    • Experience with scripting languages such as python, ruby, POSIX shell, as well as familiarity with programming languages such as: C/C++/ObjC/C#, Java, PHP, or .NET
    • Understanding of:
    – Web protocols (e.g., HTTP, HTTPS, and SOAP)
    – Web technologies (e.g., HTML, JavaScript, XML, AJAX, JSON, and REST)
    • Experience with WLAN security concepts and testing
    • Strong technical communication skills, both written and verbal; ability to explain technical security concepts to executive stakeholders in business language
    • While experience in a number of IT disciplines may provide a solid framework for this position, hands-on results from performing IT risk assessments, information security consulting or IT audits are most beneficial.
    • Experience in the following regulations and Frameworks: PCI, ISO 27001/2, HIPAA, GLBA, NIST

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

Seeking IT Security Engineer – Web Security for an expanding team

KC-Unleash

Title:  IT Security Engineer – Web Security

Job #140000oo, Kimberly-Clark Corp.

Location: Roswell GA (Atlanta area) or Dallas TX

Function: IT Security

Reports to: Sr. Manager

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.
The IT Security Engineer – Web Security is responsible for the identification, tracking, mitigating, remediation, and verification of web security vulnerabilities in software, systems, and application services.

 

The candidate will combine experience in information security, web development, IT operations, and project management to ensure security risks are effectively identified and appropriately addressed while maintaining a balance between security and usability. This role will define, deliver and sustain the enterprise web security strategy, standards and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments.

 

This position requires a broad range of technical and interpersonal skills and is responsible for the following functions:
• Provides technical consultation and direction on web application design, architecture and system performance, and evolving technologies.

  • Accountability and ownership for web security scanning solutions, processes, services and operations.
  • Develop and maintain tools and processes for web application scans, reviews and assessments along with ethical hacking.
  • Develop security guidance documentation.
  • Develop and maintain secure web coding practices and enterprise wide standards. Educate and collaborate with customers on practices and standards.
  • Performs requirements gathering, initial engineering design, platform/environment integration and evolution planning to support highly reliable, available, scalable, and cost-effective computing.
  • Interfaces with Architecture team regarding the ratification and implementation of new Architecture standards.
  • Interface with product vendors for escalated support and advanced product knowledge.
  • Ensures IT security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IT standards and overall IT security
  • Partner with delivery support teams and customers to maintain web security SLA/KPIs and provide technical leadership.
  • Manage and provide tier II support for web security related incidents.
  • Maintain an understanding of attacks, vectors and emergent threats (OWASP)
  • Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job # 140000oo .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Qualifications:

  • Bachelor’s Degree
  • 8+ Years of IT experience
  • 3+ years’ experience with Infrastructure engineering security
  • Experience with multiple programming languages (such as ASP.NET, Java, Powershell, Ruby, Perl, etc…)
  • 3+ years of web application security experience required (AppScan and Web Application Firewall)
  • Service oriented mentality with focus on customer service

Additional Skills Required:

  • Excellent written and verbal communication capability with a customer focus
  • Success in collaborating with customers, partners, and co-workers across cultural boundaries (including flexibility in work schedule as needed)
  • Able to identify, address or escalate potential dependencies and issues
  • Manage the effort within deferred and expense budget constraints (if project lead)
  • Effectively manage ambiguity, change and conflict
  • Effectively prioritize in high pressure situations
  • Strong project leadership and support skills
  • Demonstrated track record of success in delivering in a security environment
  • Proven experience in navigating complex organizations with creative problem solving
  • At ease in establishing senior-level working relationships and communications
  • Ability to deliver a clear yet compelling and realistic business case
  • Ability to translate complex technical topics into easy to understand concepts
  • Minimum of 5 years’ experience in security or network architecture/engineering role including designing and deploying security solutions
  • Strong analytical skills and cross functional knowledge across multiple security disciplines
  • Strong working experience with databases and data warehouse technologies and solutions
  • Working experience with systems automation in a major scripting language (Perl, Python, etc.)
  • Ability to communicate security-related concepts to a broad range of technical and non-technical staff
  • Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy
  • Any of the following are a plus: CISSP, CISM
  • Master’s Degree a plus

 

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

 

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

 

Hiring IT Security Engineer for Identity Management

KC-Unleash

Title:  IT Security Engineer for Identity Management 

Job #140001OU, Kimberly-Clark Corp.

Location: Roswell GA or Neenah WI

Function: IT Services – Security

Reports to: INF Security Manager

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

The Computer Security User Provisioning team is responsible for managing the global access rights for approximately 60,000 users on multiple applications throughout the Enterprise Network. Kimberly-Clark is looking for an IT Security Engineer – Identity Management to join the Computer Security User Provisioning Team.

Essential Functions:

  •  Provide outstanding Identity and Access Management services covering the user provisioning lifecycle, –
  •  Become a Subject Matter Expert (SME) and provide Level 3 and above technical support for CA Identity Manager, CA SiteMinder, and CA Governance Minder.
  •  Development and maintenance of access request forms and the workflow logic using Policy Express.
  •  Provide advanced technical expertise, with the creation and maintenance of provisioning targets using Connector Express.
  •  Work with IT Services infrastructure and applications teams; service delivery partners; and K-C business clients to enable Identity and Access Management processes.
  •  Provide regional and global consultation as required.

 

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140001OU.   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs. 

Basic Qualifications:

· Bachelor’s degree

  • 5+ years of Identity and Access Management (IAM) Technology experience or

· 2+ years of CA experience

· Experience automating business process that is enabled by Identity and Access Management solutions.

· Experience using Redhat JBOSS middleware

· Thorough understanding of how Human Resources data integrates with an IAM provisioning system

· Required occasional travel, night and weekend work

· Strong communication skills and the ability to work with remote customers and team members

Preferred Qualifications:

· Advanced degree in related field

· Certified Information Systems Security Professional (CISSP)

· Experience in one or more additional areas: Application Security, Network Security, Cyber risk assessment, or Business Intelligence

· Ability to work independently with a remote team

· Experience with Java based EE application servers

· Ability to maintain and update Java code

· Active Directory security experience

· Success in collaborating with customers, partners, and co-workers across cultural boundaries

· Manage the effort within deferred and expense budget constraints (if project lead)

· Effectively manage ambiguity, change and conflict

· Effectively prioritize in high pressure situations

· Strong project leadership and support skills

· Demonstrated track record of success in delivering in a security environment

· Proven experience in navigating complex organizations with creative problem solving

· At ease in establishing senior-level working relationships and communications

· Ability to deliver a clear yet compelling and realistic business case

· Ability to present publicly as a thought leader

· Ability to translate complex technical topics into easy to understand concepts

· Strong analytical skills and cross functional knowledge across multiple security disciplines

· Working experience with systems automation in a major scripting language (Perl, Python, etc.)

· Ability to communicate security-related concepts to a broad range of technical and non-technical staff

· Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

· Strong interpersonal communication, negotiation, and presentation skills

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Hiring IT Security Engineer for Firewall Protection

 

KC-Unleash

Title: IT Security Engineer – Firewalls   

Job #1400023H , Kimberly-Clark Corp.

Locations: Roswell GA (just north of Atlanta) or Dallas TX or

Knoxville TN

Function: ITS

Reports to: IT Security Manager

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

The IT Security Engineer will provide technical leadership to the security team to develop, maintain and advance the security posture of the company in order to protect assets.

Responsibilities include managing and enhancing the effectiveness of current security tools and applications including firewall infrastructure, web content filtering technologies, application and database firewalls, and supporting complex network environments. This role supports the implementation of corporate security policies, standards and programs to protect assets. The ideal candidate will have experience and direct knowledge of managing security infrastructure in large complex global multi-data center environments.

Duties:

• Drive technical implementations of security technologies to protect assets; including firewall, web content filtering, intrusion prevention, malware detection, network access control and logging tools.

• Ensure availability of security technologies by providing level 3 support and training

• Firewall policy

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #1400023H or any other IT Security jobs we have open .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Qualification: 
• Bachelor’s degree required, preferably in computer science or information systems
• 7+ years of Information Technology, Security and Compliance experience required
• 5+ years hands-on experience with firewalls and knowledge of IP networking and network security including Intrusion Prevention, DMZ, encryption, IPSec, VPNs, MPLS/VPN, Site to Site VPN tunnels, SSL/VPN and proxy services
• Cisco ASA experience / CheckPoint experience
• Experience with SIEM technologies
• Network routing, switching, packet analysis
• PCI DSS compliance knowledge
• Prior experience with network security & related applications, tools, logging and solutions
• Deep understanding of network routing and switching architecture, design and troubleshooting
• Experience supporting 24x7x365 high availability solutions in large complex environments
• Exceptional planning, organization, communication, presentation, multi-tasking, prioritization and business analysis skills. Ability to work independently in addition to working closely in a team environment.
• Excellent written, oral and interpersonal communication skills.

Preferred Qualifications:

• Imperva DB or WAF exposure

• Experience in the following regulations and Frameworks: PCI, ISO 27001/2, HIPAA, GLBA, NIST

• Technical product training and certifications, network hardware and application security training and/or certifications: CCNA, CISSP, Security+, Network+

  •  CISSP certification preferred

 The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Hiring IT Security Engr – Web Vulnerability

KC-Unleash

Title: IT Security Engineer – Web Security   

Job # 140000oo, Kimberly-Clark Corp.

Location: Roswell GA or Dallas TX or Neenah WI

Function: ITS

Reports to: IT Manager

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.
The IT Security Engineer – Web Security is responsible for the identification, tracking, mitigating, remediation, and verification of web security vulnerabilities in software, systems, and application services.

The candidate will combine experience in information security, web development, IT operations, and project management to ensure security risks are effectively identified and appropriately addressed while maintaining a balance between security and usability. This role will define, deliver and sustain the enterprise web security strategy, standards and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments.

This position requires a broad range of technical and interpersonal skills and is responsible for the following functions:
• Provides technical consultation and direction on web application design, architecture and system performance, and evolving technologies.

• Accountability and ownership for web security scanning solutions, processes, services and operations.

• Develop and maintain tools and processes for web application scans, reviews and assessments along with ethical hacking.

• Develop security guidance documentation.

• Develop and maintain secure web coding practices and enterprise wide standards. Educate and collaborate with customers on practices and standards.

• Performs requirements gathering, initial engineering design, platform/environment integration and evolution planning to support highly reliable, available, scalable, and cost-effective computing.

• Interfaces with Architecture team regarding the ratification and implementation of new Architecture standards.

• Interface with product vendors for escalated support and advanced product knowledge.

• Ensures IT security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IT standards and overall IT security

• Partner with delivery support teams and customers to maintain web security SLA/KPIs and provide technical leadership.

• Manage and provide tier II support for web security related incidents.

• Maintain an understanding of attacks, vectors and emergent threats (OWASP)

• Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140000oo or other IT Security jobs we have open .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Qualifications:

• Bachelor’s Degree

• 8+ Years of IT experience

• 3+ years’ experience with Infrastructure engineering security

• Experience with multiple programming languages (such as ASP.NET, Java, Powershell, Ruby, Perl, etc…)

• 3+ years of web application security experience required (AppScan and Web Application Firewall)

• Service oriented mentality with focus on customer service

Additional Skills Required:

• Excellent written and verbal communication capability with a customer focus

• Success in collaborating with customers, partners, and co-workers across cultural boundaries (including flexibility in work schedule as needed)

• Able to identify, address or escalate potential dependencies and issues

• Manage the effort within deferred and expense budget constraints (if project lead)

• Effectively manage ambiguity, change and conflict

• Effectively prioritize in high pressure situations

• Strong project leadership and support skills

• Demonstrated track record of success in delivering in a security environment

• Proven experience in navigating complex organizations with creative problem solving

• At ease in establishing senior-level working relationships and communications

• Ability to deliver a clear yet compelling and realistic business case

• Ability to translate complex technical topics into easy to understand concepts

• Minimum of 5 years’ experience in security or network architecture/engineering role including designing and deploying security solutions

• Strong analytical skills and cross functional knowledge across multiple security disciplines

• Strong working experience with databases and data warehouse technologies and solutions

• Working experience with systems automation in a major scripting language (Perl, Python, etc.)

• Ability to communicate security-related concepts to a broad range of technical and non-technical staff

• Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

• Any of the following are a plus: CISSP, CISM

• Master’s Degree a plus 

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

Sr. IT Security Engineer – Vulnerability Management | WI or GA

 

KC-Unleash

Title:    Sr. Security Engineer – Vulnerability Management

Job #140000BA , Kimberly-Clark Corp.

Location: Neenah WI or Roswell GA

Function: IT Security – Corporate

Reports to: Director/ CISO

From brands such as Huggies® and Kleenex® to medical devices and workplace solutions, Kimberly-Clark makes the essentials for a better life. We hold the No. 1 or No. 2 share position globally in more than 80 countries, but we’re not just changing diapers here. Our employees are changing the world for the better with innovative products that create new categories and push existing ones to a higher level. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark!

The Senior Security Engineer is responsible for identifying vulnerabilities and security risks of networks, operating systems, applications, databases, and new technology initiatives. Validate vulnerability findings and assist in remediation efforts.  Ensure compliance to corporate information security standards, policies, and procedures. They will define, deliver and sustain the enterprise management strategy and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments covering threat / vulnerability management.

This position requires a broad range of technical and interpersonal skills and is responsible for the following functions:

Essential Functions:

·         Functions as primary technical engineer and operational support for K-C’s vulnerability management program and tools.

·         Performs daily monitoring and troubleshooting of operational issues.

·         Provides engineering support for other Information Security infrastructure systems as required.

·         Partners with Information Security, support, engineering and operational teams to optimize processes, manage product life cycles, deliver cost-effective solutions and maximize the supportability, usability, stability and flexibility with the vulnerability management toolset.

·         Provides technical consultation and direction on application design, architecture and system performance, and evolving technologies.

·         Performs requirements gathering, initial engineering design, platform/environment integration and evolution planning to support highly reliable, available, scalable, and cost-effective computing

·         Provides technical support to technical business customers.

·         Interfaces with Architecture team regarding the ratification and implementation of new Architecture standards.

·         Interface with product vendors for escalated support and advanced product knowledge.

·         Provide 7×24 on-call coverage and perform application upgrades during non-peak business hours

·         Ensures IT security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IT standards and overall IT security

·         Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents

·         Design, test and develop specific content and alerting to identify threats against K-C’s critical assets

·         Provide analytical support to K-C’s  incident response team

·         Maintain an understanding of attacks, vectors and emergent threats

·         Provide tier II support for escalated security incidents

·         Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

·         Up to 10% travel required

 

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140000BA  .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

 

Basic Qualifications:

· BS / MS in Information Systems, Computer Science

· 15 Years relevant IT experience

· 5+ years’ experience with Infrastructure engineering using other Information Security and Threat & Vulnerability products

 

Preferred Qualifications:

· Advanced degree in a related field

· Any of the following are a plus: CISM, CISSP

· Experience in security or network architecture/engineering role including designing and deploying security solutions

· Global capability delivery experience

· Excellent written and verbal communication capability with a customer focus

· Success in collaborating with customers, partners, and co-workers across cultural boundaries

· Able to identify, address or escalate potential dependencies and issues

· Manage the effort within deferred and expense budget constraints (if project lead)

· Effectively manage ambiguity, change and conflict

· Effectively prioritize in high pressure situations

· Strong project leadership and support skills

· Demonstrated track record of success in delivering in a security environment

· Proven experience in navigating complex organizations with creative problem solving

· At ease in establishing senior-level working relationships and communications

· Ability to deliver a clear yet compelling and realistic business case

· Ability to present publicly as a thought leader

· Ability to translate complex technical topics into easy to understand concepts

· Strong analytical skills and cross functional knowledge across multiple security disciplines

· Strong working experience with databases and data warehouse technologies and solutions

· Working experience with systems automation in a major scripting language (Perl, Python, etc.)

· Ability to communicate security-related concepts to a broad range of technical and non-technical staff

· Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

· Strong interpersonal communication, negotiation, and presentation skills

· Project management experience for projects exceeding $10MM is preferred

 

Sr. Security Engineer – Endpoint Security | GA or WI

 

KC-Unleash

Title:   Sr. Security Engineer – Endpoint Security

Job #140000BB , Kimberly-Clark Corp.

Location: Neenah WI preferred but also open to Roswell GA

Function: IT Security – corporate

Reports to: Director/ CISO

From brands such as Huggies® and Kleenex® to medical devices and workplace solutions, Kimberly-Clark makes the essentials for a better life. We hold the No. 1 or No. 2 share position globally in more than 80 countries, but we’re not just changing diapers here. Our employees are changing the world for the better with innovative products that create new categories and push existing ones to a higher level. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark!

The Senior Security Engineer – End Point Security will oversee network security activity to ensure new security technology implementations result in high availability, quality, and secure solutions across the entire Kimberly-Clark environment. The key focus will be toward network security that includes mobility and emerging technologies. This position will work in conjunction with global and regional business units, corporate functions, and the ITS leadership team to ensure K-C network security.

 

The Senior Security Engineer is responsible for evaluating, designing, implementing, and supporting information security applications for end point protection with particular focus on Windows, Linux, and Mobility. Work to design and standardize security solutions and processes across all platforms including virus protection, anti-malware, host intrusion prevention, and application white-listing. They will define, deliver and sustain the enterprise management strategy and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments covering threat / vulnerability management.

Essential Functions:

•       Provides technical consultation and direction on application design, architecture and system performance, and evolving technologies.

•       Provide expert operational/engineering support for administering endpoint security products

•       Interfaces with Architecture team regarding the ratification and implementation of new Architecture standards.

•       Coordinating with application development and engineering teams to evaluate custom endpoint security solutions.

•       Ensures IT security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IT standards and overall IT security

•       Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents

•       Develops techniques and procedures for conducting IT security risk assessments, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents

•       Identify appropriate platform and application logging and triggers at design that support advanced fraud and cyber detection use cases

•       Provide analytical support to K-C’s  incident response team

•       Maintain an understanding of attacks, vectors and emergent threats

•       Provide tier II support for escalated security incidents

•       Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

•       Up to 10% travel required

Interested? You can contact Dorothy.Beach@KCC.com to receive more information.   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs. 

Basic Qualifications:

· BS / MS in Information Systems, Computer Science

· 15 Years relevant IT experience

· 5+ years’ experience with Infrastructure engineering using other Information Security and Threat & Vulnerability products

 

Preferred Qualifications:

· Project management experience for projects exceeding $10MM is preferred

· Advanced degree in a related field

· Any of the following are a plus: CISM, CISSP

· Experience in security or network architecture/engineering role including designing and deploying security solutions

· Global capability delivery experience

· Excellent written and verbal communication capability with a customer focus

· Success in collaborating with customers, partners, and co-workers across cultural boundaries

· Able to identify, address or escalate potential dependencies and issues

· Manage the effort within deferred and expense budget constraints (if project lead)

· Effectively manage ambiguity, change and conflict

· Effectively prioritize in high pressure situations

· Strong project leadership and support skills

· Demonstrated track record of success in delivering in a security environment

· Proven experience in navigating complex organizations with creative problem solving

· At ease in establishing senior-level working relationships and communications

· Ability to deliver a clear yet compelling and realistic business case

· Ability to present publicly as a thought leader

· Ability to translate complex technical topics into easy to understand concepts

· Strong analytical skills and cross functional knowledge across multiple security disciplines

· Strong working experience with databases and data warehouse technologies and solutions

· Working experience with systems automation in a major scripting language (Perl, Python, etc.)

· Ability to communicate security-related concepts to a broad range of technical and non-technical staff

· Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

· Strong interpersonal communication, negotiation, and presentation skills