Tag Archives: Security

Bilingual job: Director of Global Security Services for LAO

KC-Unleash

Title: Director of Global Security for LAO   

Job # 759702, Kimberly-Clark Corp.

Location: Dallas TX (HQ) or Roswell GA (north of Atlanta)

Function: General Services

Reports to: VP Global Security

Direct reports: eight with Manager titles in various locations with $12 million budget

Scope: eight regions in Latin America

 

Ever wonder what it is like to belong to this global company?  Here are some reasons to join us: http://bit.ly/WorkingatKC !  

 

  • The Position and its Scope
    • Lead an in-region team of security managers and professionals, developing and implementing security strategies, programs and projects, and managing a security budget of $12M with a focus on the specific needs of the Latin America region.

Reporting: The person serves as an essential resource and investigative partner for Legal.  The direct reports for this position are eight (8) Security Managers assigned to each sub-region (Brazil, Austral, and Central America) and Security Managers in each country in the Andean sub-region (Bolivia, Colombia, Ecuador, Peru and Venezuela), twenty-nine (29) K-C security staff, and six hundred seventy-four (674) security officers (contracted).  This position provides direction to the Security Managers in each sub-region and their direct reports to ensure alignment with Global Security guidelines and policies for the company.

Advisor: This position is also responsible for the alignment and career development of the extended security team.  In particular, this position serves as an advisor to the President of LAO, and the region Vice President on all security and code of conduct matters.

Customers and Customer Expectations: Key customers including the President of Latin American Operations, the Managing Directors of Latin American sub-regions and countries, the sector and supply chain leads, mill/plant managers, and key leads in critical staff functions (Human Resources, Legal, Finance, Marketing, Internal Control, Compliance).   Additional customers include enterprise senior leaders, with particular emphasis on the Chief Counsel, the Chief Counsel for K-C International, and the Chief Compliance Officer.  Indirect customers include U.S. and Latin America law enforcement representatives outside the enterprise.  Specific areas of focus will be developed by the Director together with the Global Security team and key customers.   Special customer focus areas include high-risk countries, personal security, supply chain security, crisis preparedness/management, investigations and support of our compliance programs, and travel security.

Align: business risk and mitigation strategies with the Latin American Operations President and his staff and other senior management personnel.  Partner with other key departments including Legal, Finance/Internal Control, Supply Chain and Operations in matrix teams. Provide on-going communications with these leaders to keep them informed, and stay informed of business conditions and changes.

Lead: Develop and champion international security programs, procedures, specialized services, and expertise to help ensure that the enterprise’s personnel, assets, information and reputation are protected from injury, damage or other forms of loss.

Investigate: Serve as an investigator for security and compliance investigations.  This role will:

  • Conduct investigations of non-compliance involving serious legal risks (Anti-Corruption/FCPA, Anti-Trust, Conflicts of Interest & Privacy), complex matters or matters involving senior-level executives in close collaboration with other control groups (Legal, Global Security, HR, Internal Audit, Internal Control) to leverage cross-functional expertise and support as needed.
  • Establish and maintain effective external partnerships and investigation resources (investigative firms, outside counsel, government agencies and industry).
  • Collaborate with other functions to develop the necessary forensic capabilities (internal & external) for the collection, collation and processing of electronic data (Laptops & Smartphones), review of e-mails and assist in the analysis of other evidence.
  • Communicate sanitized versions of lessons learned from significant investigations with enterprise impact in compliance training sessions and leadership forums.

Develop: strategic relationships with vendors in region to provide superior security, investigative and business support services, particularly in high risk countries.

Support: physical security assessments and evaluations of security programs and recommend changes in procedures, to include security equipment and assets to protect facilities.  Oversee technical support for new facilities and facility upgrades.
Communicate: Develop and maintain relationships with counterparts in other multi-national and national enterprises, international security consultants, investigative and law enforcement resources so the enterprise has access to the most current information and benchmarking information.

 

Interested in this job? You can contact Dorothy.Beach@KCC.com to receive more information on this job.   Sending your resume would jump-start our process and could lead to a screen call.

Qualifications/Experience/Education

  • Master’s degree or international equivalent in an area of study relevant to this position and more than seven years experience with a major law enforcement, intelligence, public service or multi-national’s security
  • Bachelor’s degree or international equivalent in an area of study relevant to this position and more than ten years experience with a major law enforcement, intelligence, public or multi-national’s security department.
  • Must have demonstrated experience and exposure in an international security setting, preferably Latin America.
  • Excellent verbal and written communications are essential.
  • A demonstrated verbal and written skill in Spanish is required.
  • Certified Protection Professional and/or Certified Fraud Examiner certification
  • Demonstrated ability to communicate to all levels within an organization, particularly senior management.
  • Work in a matrixed, highly collaborative environment
  • Think critically and strategically align programs and projects to business objectives

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 175 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With more than 140 years of history of innovation, we believe in recruiting the best people and empowering them do their best work.  If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation, gender identity, age, pregnancy, genetic information, citizenship status, or any other characteristic protected by law.

 

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position.

 

K-C requires that an employee have authorization to work in the country in which the role is based.  In the event an applicant does not have current work authorization, K-C will determine, in its sole discretion, whether to sponsor an individual for work authorization.  However, based on immigration requirements, not all roles are suitable for sponsorship.

 

Global VISA and Relocation Specifications:

K-C will support relocation for the chosen candidate for the role, including assistance to obtain proper work authorization. The benefits provided will be per the terms of K-C’s applicable mobility policies. The benefits/policy provided will decided in K-C’s sole discretion.

Advertisements

Kimberly-Clark hiring IT Security Sr. Technical Consultant

KC-Unleash

Title: IT Security Sr. Technical Consultant

Job #140001wd , Kimberly-Clark Corp.

Location Negotiable: Roswell, GA – Dallas, TX – Neenah, WI – Knoxville, TN

Function: ITS

Reports to: CISO

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

The IT Security Technical Sr. Consultant will deliver security technical consulting to internal organizations and Information Technology Services (ITS).

The IT Security Technical Sr. Consultant will evaluate needs of key stakeholders to find solutions to challenging situations. Primary areas of expertise are IT infrastructure, Mergers & Acquisitions, Emerging Technologies (Cloud, BYOD) and information security compliance (HIPAA, SOX, PCI).

This position is very technical in nature. This person will provide guidance and mentoring to teammates and handle technical escalations. Represent information security organization in the most technically, or politically, challenging engagements. Facilitate team operations and ongoing execution of work activity. Backup all teammates in all engagements as necessary/warranted.

Responsibilities: 
• Drive SDL across ITS and business segments, for internal and externally facing applications, including Ecommerce sites, Mobility (Android, Apple IOS), and legacy applications;
• Source code analysis and remediation using Fortify; Network security assessments and analysis for corporate and non-corporate network environments;
• Firewall policy evaluation, review, and design;
• Ensure compliance across applications and networks for PCI, HIPAA, and SOX;
• Provide training and guidance for security including Threat Modeling, Penetration Testing, SDL, and Code Security Reviews.

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140001wd  .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Requirements: 
• Bachelor’s degree required (preferably in computer science or information systems)

  • 10+ years of Information Technology, with a background in Security and Compliance experience
  • 5+ years of experience leading penetration testing, application testing, and red team engagements

    Additional Requirements:
    • Experience with security tools such as – Nmap, Metasploit, Kali Linux, Burp Suite Pro, etc., as well as other various commercial and self-developed testing tools
    • Experience with scripting languages such as python, ruby, POSIX shell, as well as familiarity with programming languages such as: C/C++/ObjC/C#, Java, PHP, or .NET
    • Understanding of:
    – Web protocols (e.g., HTTP, HTTPS, and SOAP)
    – Web technologies (e.g., HTML, JavaScript, XML, AJAX, JSON, and REST)
    • Experience with WLAN security concepts and testing
    • Strong technical communication skills, both written and verbal; ability to explain technical security concepts to executive stakeholders in business language
    • While experience in a number of IT disciplines may provide a solid framework for this position, hands-on results from performing IT risk assessments, information security consulting or IT audits are most beneficial.
    • Experience in the following regulations and Frameworks: PCI, ISO 27001/2, HIPAA, GLBA, NIST

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

Seeking IT Security Engineer – Web Security for an expanding team

KC-Unleash

Title:  IT Security Engineer – Web Security

Job #140000oo, Kimberly-Clark Corp.

Location: Roswell GA (Atlanta area) or Dallas TX

Function: IT Security

Reports to: Sr. Manager

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.
The IT Security Engineer – Web Security is responsible for the identification, tracking, mitigating, remediation, and verification of web security vulnerabilities in software, systems, and application services.

 

The candidate will combine experience in information security, web development, IT operations, and project management to ensure security risks are effectively identified and appropriately addressed while maintaining a balance between security and usability. This role will define, deliver and sustain the enterprise web security strategy, standards and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments.

 

This position requires a broad range of technical and interpersonal skills and is responsible for the following functions:
• Provides technical consultation and direction on web application design, architecture and system performance, and evolving technologies.

  • Accountability and ownership for web security scanning solutions, processes, services and operations.
  • Develop and maintain tools and processes for web application scans, reviews and assessments along with ethical hacking.
  • Develop security guidance documentation.
  • Develop and maintain secure web coding practices and enterprise wide standards. Educate and collaborate with customers on practices and standards.
  • Performs requirements gathering, initial engineering design, platform/environment integration and evolution planning to support highly reliable, available, scalable, and cost-effective computing.
  • Interfaces with Architecture team regarding the ratification and implementation of new Architecture standards.
  • Interface with product vendors for escalated support and advanced product knowledge.
  • Ensures IT security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IT standards and overall IT security
  • Partner with delivery support teams and customers to maintain web security SLA/KPIs and provide technical leadership.
  • Manage and provide tier II support for web security related incidents.
  • Maintain an understanding of attacks, vectors and emergent threats (OWASP)
  • Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job # 140000oo .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Qualifications:

  • Bachelor’s Degree
  • 8+ Years of IT experience
  • 3+ years’ experience with Infrastructure engineering security
  • Experience with multiple programming languages (such as ASP.NET, Java, Powershell, Ruby, Perl, etc…)
  • 3+ years of web application security experience required (AppScan and Web Application Firewall)
  • Service oriented mentality with focus on customer service

Additional Skills Required:

  • Excellent written and verbal communication capability with a customer focus
  • Success in collaborating with customers, partners, and co-workers across cultural boundaries (including flexibility in work schedule as needed)
  • Able to identify, address or escalate potential dependencies and issues
  • Manage the effort within deferred and expense budget constraints (if project lead)
  • Effectively manage ambiguity, change and conflict
  • Effectively prioritize in high pressure situations
  • Strong project leadership and support skills
  • Demonstrated track record of success in delivering in a security environment
  • Proven experience in navigating complex organizations with creative problem solving
  • At ease in establishing senior-level working relationships and communications
  • Ability to deliver a clear yet compelling and realistic business case
  • Ability to translate complex technical topics into easy to understand concepts
  • Minimum of 5 years’ experience in security or network architecture/engineering role including designing and deploying security solutions
  • Strong analytical skills and cross functional knowledge across multiple security disciplines
  • Strong working experience with databases and data warehouse technologies and solutions
  • Working experience with systems automation in a major scripting language (Perl, Python, etc.)
  • Ability to communicate security-related concepts to a broad range of technical and non-technical staff
  • Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy
  • Any of the following are a plus: CISSP, CISM
  • Master’s Degree a plus

 

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

 

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

 

Hiring IT Security Engineer for Identity Management

KC-Unleash

Title:  IT Security Engineer for Identity Management 

Job #140001OU, Kimberly-Clark Corp.

Location: Roswell GA or Neenah WI

Function: IT Services – Security

Reports to: INF Security Manager

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

The Computer Security User Provisioning team is responsible for managing the global access rights for approximately 60,000 users on multiple applications throughout the Enterprise Network. Kimberly-Clark is looking for an IT Security Engineer – Identity Management to join the Computer Security User Provisioning Team.

Essential Functions:

  •  Provide outstanding Identity and Access Management services covering the user provisioning lifecycle, –
  •  Become a Subject Matter Expert (SME) and provide Level 3 and above technical support for CA Identity Manager, CA SiteMinder, and CA Governance Minder.
  •  Development and maintenance of access request forms and the workflow logic using Policy Express.
  •  Provide advanced technical expertise, with the creation and maintenance of provisioning targets using Connector Express.
  •  Work with IT Services infrastructure and applications teams; service delivery partners; and K-C business clients to enable Identity and Access Management processes.
  •  Provide regional and global consultation as required.

 

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140001OU.   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs. 

Basic Qualifications:

· Bachelor’s degree

  • 5+ years of Identity and Access Management (IAM) Technology experience or

· 2+ years of CA experience

· Experience automating business process that is enabled by Identity and Access Management solutions.

· Experience using Redhat JBOSS middleware

· Thorough understanding of how Human Resources data integrates with an IAM provisioning system

· Required occasional travel, night and weekend work

· Strong communication skills and the ability to work with remote customers and team members

Preferred Qualifications:

· Advanced degree in related field

· Certified Information Systems Security Professional (CISSP)

· Experience in one or more additional areas: Application Security, Network Security, Cyber risk assessment, or Business Intelligence

· Ability to work independently with a remote team

· Experience with Java based EE application servers

· Ability to maintain and update Java code

· Active Directory security experience

· Success in collaborating with customers, partners, and co-workers across cultural boundaries

· Manage the effort within deferred and expense budget constraints (if project lead)

· Effectively manage ambiguity, change and conflict

· Effectively prioritize in high pressure situations

· Strong project leadership and support skills

· Demonstrated track record of success in delivering in a security environment

· Proven experience in navigating complex organizations with creative problem solving

· At ease in establishing senior-level working relationships and communications

· Ability to deliver a clear yet compelling and realistic business case

· Ability to present publicly as a thought leader

· Ability to translate complex technical topics into easy to understand concepts

· Strong analytical skills and cross functional knowledge across multiple security disciplines

· Working experience with systems automation in a major scripting language (Perl, Python, etc.)

· Ability to communicate security-related concepts to a broad range of technical and non-technical staff

· Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

· Strong interpersonal communication, negotiation, and presentation skills

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Hiring IT Security Engineer for Firewall Protection

 

KC-Unleash

Title: IT Security Engineer – Firewalls   

Job #1400023H , Kimberly-Clark Corp.

Locations: Roswell GA (just north of Atlanta) or Dallas TX or

Knoxville TN

Function: ITS

Reports to: IT Security Manager

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

The IT Security Engineer will provide technical leadership to the security team to develop, maintain and advance the security posture of the company in order to protect assets.

Responsibilities include managing and enhancing the effectiveness of current security tools and applications including firewall infrastructure, web content filtering technologies, application and database firewalls, and supporting complex network environments. This role supports the implementation of corporate security policies, standards and programs to protect assets. The ideal candidate will have experience and direct knowledge of managing security infrastructure in large complex global multi-data center environments.

Duties:

• Drive technical implementations of security technologies to protect assets; including firewall, web content filtering, intrusion prevention, malware detection, network access control and logging tools.

• Ensure availability of security technologies by providing level 3 support and training

• Firewall policy

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #1400023H or any other IT Security jobs we have open .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Qualification: 
• Bachelor’s degree required, preferably in computer science or information systems
• 7+ years of Information Technology, Security and Compliance experience required
• 5+ years hands-on experience with firewalls and knowledge of IP networking and network security including Intrusion Prevention, DMZ, encryption, IPSec, VPNs, MPLS/VPN, Site to Site VPN tunnels, SSL/VPN and proxy services
• Cisco ASA experience / CheckPoint experience
• Experience with SIEM technologies
• Network routing, switching, packet analysis
• PCI DSS compliance knowledge
• Prior experience with network security & related applications, tools, logging and solutions
• Deep understanding of network routing and switching architecture, design and troubleshooting
• Experience supporting 24x7x365 high availability solutions in large complex environments
• Exceptional planning, organization, communication, presentation, multi-tasking, prioritization and business analysis skills. Ability to work independently in addition to working closely in a team environment.
• Excellent written, oral and interpersonal communication skills.

Preferred Qualifications:

• Imperva DB or WAF exposure

• Experience in the following regulations and Frameworks: PCI, ISO 27001/2, HIPAA, GLBA, NIST

• Technical product training and certifications, network hardware and application security training and/or certifications: CCNA, CISSP, Security+, Network+

  •  CISSP certification preferred

 The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Hiring IT Security Engr – Web Vulnerability

KC-Unleash

Title: IT Security Engineer – Web Security   

Job # 140000oo, Kimberly-Clark Corp.

Location: Roswell GA or Dallas TX or Neenah WI

Function: ITS

Reports to: IT Manager

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.
The IT Security Engineer – Web Security is responsible for the identification, tracking, mitigating, remediation, and verification of web security vulnerabilities in software, systems, and application services.

The candidate will combine experience in information security, web development, IT operations, and project management to ensure security risks are effectively identified and appropriately addressed while maintaining a balance between security and usability. This role will define, deliver and sustain the enterprise web security strategy, standards and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments.

This position requires a broad range of technical and interpersonal skills and is responsible for the following functions:
• Provides technical consultation and direction on web application design, architecture and system performance, and evolving technologies.

• Accountability and ownership for web security scanning solutions, processes, services and operations.

• Develop and maintain tools and processes for web application scans, reviews and assessments along with ethical hacking.

• Develop security guidance documentation.

• Develop and maintain secure web coding practices and enterprise wide standards. Educate and collaborate with customers on practices and standards.

• Performs requirements gathering, initial engineering design, platform/environment integration and evolution planning to support highly reliable, available, scalable, and cost-effective computing.

• Interfaces with Architecture team regarding the ratification and implementation of new Architecture standards.

• Interface with product vendors for escalated support and advanced product knowledge.

• Ensures IT security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IT standards and overall IT security

• Partner with delivery support teams and customers to maintain web security SLA/KPIs and provide technical leadership.

• Manage and provide tier II support for web security related incidents.

• Maintain an understanding of attacks, vectors and emergent threats (OWASP)

• Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140000oo or other IT Security jobs we have open .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Qualifications:

• Bachelor’s Degree

• 8+ Years of IT experience

• 3+ years’ experience with Infrastructure engineering security

• Experience with multiple programming languages (such as ASP.NET, Java, Powershell, Ruby, Perl, etc…)

• 3+ years of web application security experience required (AppScan and Web Application Firewall)

• Service oriented mentality with focus on customer service

Additional Skills Required:

• Excellent written and verbal communication capability with a customer focus

• Success in collaborating with customers, partners, and co-workers across cultural boundaries (including flexibility in work schedule as needed)

• Able to identify, address or escalate potential dependencies and issues

• Manage the effort within deferred and expense budget constraints (if project lead)

• Effectively manage ambiguity, change and conflict

• Effectively prioritize in high pressure situations

• Strong project leadership and support skills

• Demonstrated track record of success in delivering in a security environment

• Proven experience in navigating complex organizations with creative problem solving

• At ease in establishing senior-level working relationships and communications

• Ability to deliver a clear yet compelling and realistic business case

• Ability to translate complex technical topics into easy to understand concepts

• Minimum of 5 years’ experience in security or network architecture/engineering role including designing and deploying security solutions

• Strong analytical skills and cross functional knowledge across multiple security disciplines

• Strong working experience with databases and data warehouse technologies and solutions

• Working experience with systems automation in a major scripting language (Perl, Python, etc.)

• Ability to communicate security-related concepts to a broad range of technical and non-technical staff

• Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

• Any of the following are a plus: CISSP, CISM

• Master’s Degree a plus 

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

Kimberly-Clark seeks IT Senior Consultant for Security

 

KC-Unleash

Title:  Sr. Consultant – IT Security  

Job #140001we, Kimberly-Clark Corp.

Location negotiable: Dallas TX, Roswell GA or Neenah WI

Function: IT Services

Reports to: Sr. Manager INF Security

Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries. Every day, 1.3 billion people – nearly a quarter of the world’s population – trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being. With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries. With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

The IT Security Senior Consultant will deliver security consulting to internal organizations and Information Technology Services (ITS).

The Sr. Consultant will evaluate needs of key stakeholders to find solutions to challenging situations. Primary areas of expertise are IT infrastructure, Mergers & Acquisitions, Emerging Technologies (Cloud, BYOD) and information security compliance (HIPAA, SOX, PCI).

This person will provide guidance and mentoring to teammates and handle technical escalations. Represent information security organization in the most technically, or politically, challenging engagements. Facilitate team operations and ongoing execution of work activity. Backup all teammates in all engagements as necessary/warranted.
Responsibilities:
• Drive SDL across ITS and business segments, for internal and externally facing applications, including Ecommerce sites, Mobility (Android, Apple IOS), and legacy applications;
• Source code analysis and remediation using Fortify; Network security assessments and analysis for corporate and non-corporate network environments;
• Firewall policy evaluation, review, and design;
• Ensure compliance across applications and networks for PCI, HIPAA, and SOX;
• Provide training and guidance for security including Threat Modeling, Penetration Testing, SDL, and Code Security Reviews.

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job # 140001we .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs. 

Basic Requirements:

• Bachelor’s degree required, preferably in computer science or information systems

• 5+ years of experience leading penetration testing, application testing, and red team engagements

  •  10+ years of Information Technology, with a background in Security and Compliance experience

 

Additional Requirements:

• Experience with security tools such as – Nmap, Metasploit, Kali Linux, Burp Suite Pro, etc., as well as other various commercial and self-developed testing tools
• Experience with scripting languages such as python, ruby, POSIX shell, as well as familiarity with programming languages such as: C/C++/ObjC/C#, Java, PHP, or .NET
• Understanding of:
– Web protocols (e.g., HTTP, HTTPS, and SOAP)
– Web technologies (e.g., HTML, JavaScript, XML, AJAX, JSON, and REST)
• Experience with WLAN security concepts and testing
• Strong technical communication skills, both written and verbal; ability to explain technical security concepts to executive stakeholders in business language
• While experience in a number of IT disciplines may provide a solid framework for this position, hands-on results from performing IT risk assessments, information security consulting or IT audits are most beneficial.
• Experience in the following regulations and Frameworks: PCI, ISO 27001/2, HIPAA, GLBA, NIST

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position.

 

Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Sr IT Security Engineer – Threat Management |GA or WI

KC-Unleash

Title:  Senior Security Engineer – Threat Management

Job #140000B8 , Kimberly-Clark Corp.

Location: Neenah WI or Roswell GA

Function: IT Security – Corporate

Reports to: Director/ CISO

From brands such as Huggies® and Kleenex® to medical devices and workplace solutions, Kimberly-Clark makes the essentials for a better life. We hold the No. 1 or No. 2 share position globally in more than 80 countries, but we’re not just changing diapers here. Our employees are changing the world for the better with innovative products that create new categories and push existing ones to a higher level. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark!
The Senior Security Engineer – Threat Managementwill oversee network security activity to ensure new security technology implementations result in high availability, quality, and secure solutions across the entire Kimberly-Clark environment. The key focus will be toward network security that includes threat management. This position will work in conjunction with global and regional business units, corporate functions, and the ITS leadership team to ensure K-C network security.

 

The Sr. Security Engineer is responsible for the collection, analysis, and dissemination of cyber threat intelligence.  These capabilities will include timely collection of advanced warning of impeding IT vulnerabilities or threats, a thorough correlation, analysis, and storage of threat intelligence information, and operational support of the incident response process. They will define, deliver and sustain the enterprise management strategy and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments covering threat / vulnerability management.

 

Essential Functions:

Technical lead for evaluating, testing, recommending, developing, coordinating, monitoring and maintaining information security for operating systems, user authentication, and applications; driving strategic security architecture

Support the Cyber Incident Response Team (CIRT) in the effective detection, analysis, and containment of attacks

Operate the processes necessary to collect threat intelligence, analyze the data for patterns and actionable information, and create intelligence products for other teams to consume

Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents

Identify appropriate platform and application logging and triggers at design that support advanced fraud and cyber detection use cases

Integrate appropriate systems and logs into the global threat management platform or Security Incident and Event Management system to properly protect K-C’s critical assets

Design, test and develop specific content and alerting to identify threats against K-C’s critical assets

Document incident response procedures for new threat content and alerts

Maintain an understanding of attacks, vectors and emergent threats

Provide tier II support for escalated security incidents

Obtain and share cyber security intelligence with security partners, vendors and law enforcement as necessary

Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140000B8.   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs. 

Basic Qualifications:

· BS / MS in Information Systems, Computer Science

· 15 Years relevant IT experience

· 5+ years’ experience with Infrastructure engineering using other Information Security and Threat & Vulnerability products

Preferred Qualifications:

· Advanced degree in a related field

· Any of the following are a plus: CISM, CISSP

· Experience in security or network architecture/engineering role including designing and deploying security solutions

· Global capability delivery experience

· Excellent written and verbal communication capability with a customer focus

· Success in collaborating with customers, partners, and co-workers across cultural boundaries

· Able to identify, address or escalate potential dependencies and issues

· Manage the effort within deferred and expense budget constraints (if project lead)

· Effectively manage ambiguity, change and conflict

· Effectively prioritize in high pressure situations

· Strong project leadership and support skills

· Demonstrated track record of success in delivering in a security environment

· Proven experience in navigating complex organizations with creative problem solving

· At ease in establishing senior-level working relationships and communications

· Ability to deliver a clear yet compelling and realistic business case

· Ability to present publicly as a thought leader

· Ability to translate complex technical topics into easy to understand concepts

· Strong analytical skills and cross functional knowledge across multiple security disciplines

· Strong working experience with databases and data warehouse technologies and solutions

· Working experience with systems automation in a major scripting language (Perl, Python, etc.)

· Ability to communicate security-related concepts to a broad range of technical and non-technical staff

· Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

· Strong interpersonal communication, negotiation, and presentation skills

· Project management experience for projects exceeding $10MM is preferred

 

 

Sr IT Security Engineer – Apps and SW Management | WI or GA

KC-Unleash

Title:    Senior Security Engineer – Apps and SW Management

Job #140000B9, Kimberly-Clark Corp.

Location: Neenah WI or Roswell GA

Function: IT Security – Corporate

Reports to: Director/ CISO

From brands such as Huggies® and Kleenex® to medical devices and workplace solutions, Kimberly-Clark makes the essentials for a better life. We hold the No. 1 or No. 2 share position globally in more than 80 countries, but we’re not just changing diapers here. Our employees are changing the world for the better with innovative products that create new categories and push existing ones to a higher level. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark!

The Senior Security Engineer – Application and Software Management will oversee application security management for new applications developed internally or cloud applications to ensure new security technology implementations result in high availability, quality, and secure solutions across the entire Kimberly-Clark environment. The key focus will be toward developing secure applications and delivery. This position will work in conjunction with global and regional business units, corporate functions, and the ITS leadership team to ensure K-C network security.

The Senior Security Engineer is responsible for the identification, tracking, mitigating, remediation, and verification of security vulnerabilities in software, systems, and application services.  The candidate will combine experience in information security, software development, IT operations, and project management to ensure security risks are effectively identified and appropriately addressed while maintaining a balance between security and usability. They will define, deliver and sustain the enterprise management strategy and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments covering threat / vulnerability management.

This position requires a broad range of technical and interpersonal skills and is responsible for the following functions:

Essential Functions:

•       Provides technical consultation and direction on application design, architecture and system performance, and evolving technologies.

•       Execute application reviews and assessments.

•       Develop security guidance documentation.

•       Develop secure coding practices.

•       Performs requirements gathering, initial engineering design, platform/environment integration and evolution planning to support highly reliable, available, scalable, and cost-effective computing

•       Provides technical support to technical business customers.

•       Interfaces with Architecture team regarding the ratification and implementation of new Architecture standards.

•       Interface with product vendors for escalated support and advanced product knowledge.

•       Ensures IT security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IT standards and overall IT security

•       Provide analytical support to K-C’s incident response team

•       Maintain an understanding of attacks, vectors and emergent threats

•       Provide tier II support for escalated security incidents

•       Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

•       Up to 10% travel required

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140000B9.   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

Basic Qualifications:

· BS / MS in Information Systems, Computer Science

· 15 Years relevant IT experience

· 5+ years’ experience with Infrastructure engineering using other Information Security and Threat & Vulnerability products

Preferred Qualifications:

· Advanced degree in a related field

· Any of the following are a plus: CISM, CISSP

· Experience in security or network architecture/engineering role including designing and deploying security solutions

· Global capability delivery experience

· Excellent written and verbal communication capability with a customer focus

· Success in collaborating with customers, partners, and co-workers across cultural boundaries

· Able to identify, address or escalate potential dependencies and issues

· Manage the effort within deferred and expense budget constraints (if project lead)

· Effectively manage ambiguity, change and conflict

· Effectively prioritize in high pressure situations

· Strong project leadership and support skills

· Demonstrated track record of success in delivering in a security environment

· Proven experience in navigating complex organizations with creative problem solving

· At ease in establishing senior-level working relationships and communications

· Ability to deliver a clear yet compelling and realistic business case

· Ability to present publicly as a thought leader

· Ability to translate complex technical topics into easy to understand concepts

· Strong analytical skills and cross functional knowledge across multiple security disciplines

· Strong working experience with databases and data warehouse technologies and solutions

· Working experience with systems automation in a major scripting language (Perl, Python, etc.)

· Ability to communicate security-related concepts to a broad range of technical and non-technical staff

· Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

· Strong interpersonal communication, negotiation, and presentation skills

· Project management experience for projects exceeding $10MM is preferred

Sr. IT Security Engineer – Vulnerability Management | WI or GA

 

KC-Unleash

Title:    Sr. Security Engineer – Vulnerability Management

Job #140000BA , Kimberly-Clark Corp.

Location: Neenah WI or Roswell GA

Function: IT Security – Corporate

Reports to: Director/ CISO

From brands such as Huggies® and Kleenex® to medical devices and workplace solutions, Kimberly-Clark makes the essentials for a better life. We hold the No. 1 or No. 2 share position globally in more than 80 countries, but we’re not just changing diapers here. Our employees are changing the world for the better with innovative products that create new categories and push existing ones to a higher level. If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark!

The Senior Security Engineer is responsible for identifying vulnerabilities and security risks of networks, operating systems, applications, databases, and new technology initiatives. Validate vulnerability findings and assist in remediation efforts.  Ensure compliance to corporate information security standards, policies, and procedures. They will define, deliver and sustain the enterprise management strategy and solutions from a governance, process, discipline and technology standpoint, to support Kimberly-Clark’s global and enterprise environments covering threat / vulnerability management.

This position requires a broad range of technical and interpersonal skills and is responsible for the following functions:

Essential Functions:

·         Functions as primary technical engineer and operational support for K-C’s vulnerability management program and tools.

·         Performs daily monitoring and troubleshooting of operational issues.

·         Provides engineering support for other Information Security infrastructure systems as required.

·         Partners with Information Security, support, engineering and operational teams to optimize processes, manage product life cycles, deliver cost-effective solutions and maximize the supportability, usability, stability and flexibility with the vulnerability management toolset.

·         Provides technical consultation and direction on application design, architecture and system performance, and evolving technologies.

·         Performs requirements gathering, initial engineering design, platform/environment integration and evolution planning to support highly reliable, available, scalable, and cost-effective computing

·         Provides technical support to technical business customers.

·         Interfaces with Architecture team regarding the ratification and implementation of new Architecture standards.

·         Interface with product vendors for escalated support and advanced product knowledge.

·         Provide 7×24 on-call coverage and perform application upgrades during non-peak business hours

·         Ensures IT security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IT standards and overall IT security

·         Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents

·         Design, test and develop specific content and alerting to identify threats against K-C’s critical assets

·         Provide analytical support to K-C’s  incident response team

·         Maintain an understanding of attacks, vectors and emergent threats

·         Provide tier II support for escalated security incidents

·         Mentor and educate teams with expert knowledge of information security event management, security forensics, network access controls and perimeter security, operations, implementations of new technologies

·         Up to 10% travel required

 

Interested? You can contact Dorothy.Beach@KCC.com to receive more information on job #140000BA  .   Sending your resume can allow a more intelligent discussion between your career goals and what Kimberly-Clark needs.

 

Basic Qualifications:

· BS / MS in Information Systems, Computer Science

· 15 Years relevant IT experience

· 5+ years’ experience with Infrastructure engineering using other Information Security and Threat & Vulnerability products

 

Preferred Qualifications:

· Advanced degree in a related field

· Any of the following are a plus: CISM, CISSP

· Experience in security or network architecture/engineering role including designing and deploying security solutions

· Global capability delivery experience

· Excellent written and verbal communication capability with a customer focus

· Success in collaborating with customers, partners, and co-workers across cultural boundaries

· Able to identify, address or escalate potential dependencies and issues

· Manage the effort within deferred and expense budget constraints (if project lead)

· Effectively manage ambiguity, change and conflict

· Effectively prioritize in high pressure situations

· Strong project leadership and support skills

· Demonstrated track record of success in delivering in a security environment

· Proven experience in navigating complex organizations with creative problem solving

· At ease in establishing senior-level working relationships and communications

· Ability to deliver a clear yet compelling and realistic business case

· Ability to present publicly as a thought leader

· Ability to translate complex technical topics into easy to understand concepts

· Strong analytical skills and cross functional knowledge across multiple security disciplines

· Strong working experience with databases and data warehouse technologies and solutions

· Working experience with systems automation in a major scripting language (Perl, Python, etc.)

· Ability to communicate security-related concepts to a broad range of technical and non-technical staff

· Must possess a high degree of integrity, be trustworthy, and have the ability to work with autonomy

· Strong interpersonal communication, negotiation, and presentation skills

· Project management experience for projects exceeding $10MM is preferred