About Halock:
Halock Security Labs was established in 1996 as a professional services firm focused on information security.  Since then, our offerings have steadily evolved as the needs of our clientele have changed.  Today, we provide PCI consulting and audit services,  penetration testing, governance and strategy consulting, technical architecture and system integration services to a growing list of clients in Financial Services, Education, Internet Retail, and Healthcare.
Senior Solutions Consultant:
We are looking for additional Senior Consultants for our Security Solutions Practice to manage multi-vendor solutions engagements in a very hands-on and consultative manner.  We desire highly motivated individuals that are passionate about learning and growing skills in the rapidly evolving realm of security technology.  The Senior Solutions Consultant will coordinate resources with vendors and HALOCK to appropriately scope, propose, and close opportunities generated from sales and portfolio management. Vendor relations management is a big part of this role as well as project management.
The Role:
Engineering and Project Management
•   Manage delivery of security solutions
•   Coordinate resources from client, HALOCK and vendors to implement solutions
•   Billable consultant/engineer
•   Escalate issues to client and HALOCK
Pre-sales Engineering
•   Meet solutions target quota
•   Support sales and portfolio management on calls, meetings and requests
•   Work with HALOCK Solutions Architects, vendor partners, and PCI QSAs to propose appropriate solutions to clients
•   Perform client sessions to understand specific client requirements
•   Pull together final quotes and proposes for client approval
•   Attend Sales and Account Management meetings
Account Management
•   Keep larger view of client beyond just immediate delivery need
•   Identify upselling opportunities
•   Manage client sponsor expectations
•   Manage sales pipeline with sales team/portfolio management
•   Work with Portfolio Management and Practice Leaders to strengthen overall security solution offerings that are vendor based


HALOCK seeks individuals with:

•   A four-year degree from an accredited college or university – while graduates of Computer Science or Engineering fields are preferred, candidates that have studied other disciplines will be considered.
•   10 years combined experience in the following:
o   Network and security engineering
o   Systems engineering (Windows, Linux)
o   Pre-sales engineering and proposal development
o   Vendor partnering and relations (RSA, Symantec, PGP, Alert Logic, Barracuda, Breach, Cisco, Check Point, Microsoft, etc)
o   Project Management and/or team lead
•   Excellent presentation and communication skills
•   A demonstrated ability to work independently, in a customer-driven environment
•   DLP, SIEM, Encryption, WAF, solutions expertise preferred but we are willing to train on HALOCK’s current vendor solution stack
•   Equally comfortable talking with network engineers and business sponsors

 
Disclosures:
All candidates invited to interview will be required to sign strict confidentiality and non-disclosure agreements. Full background checks are performed, with consent, on all successful candidates before employment offers can be extended.
Benefits and Extras:
   Comprehensive benefits package including health, dental, 401(k), long-term disability and more.
   Career Roadmap Program with quarterly performance reviews!
   Training, paid certifications and salary adjustments associated with new certifications/goals.
   Strong team culture, development/engineering lab, cross-training, peer support and company sponsored team outings.
Travel:
Halock currently serves many customers within the Midwest market, although candidates must be willing to travel to support changing business conditions.  All related expenses, including local mileage, are reimbursed.
Contact:
careers@halock.com

US citizens and Green Card Holders, EAD and TN are encouraged to apply.
We are unable to sponsor H1 candidates at this time
No 3rd parties please

Individuals only need apply-No Firms (please)

Keywords:
Information security, network engineer, CISSP, CCSP, CCNP, CCIE, MCSE: Security, Check Point, EMC, RSA, Symantec, PGP, Web Application Firewall, SIEM, DLP

Title:   Senior Consultant – PCI Services
Skills:   PCI Consulting, PCI Remediation Planning, PCI DSS Gap Assessment and Audit, PCI PA-DSS Gap Assessment and Audit, Network and Application Architecture
Location:   Schaumburg
Tax term:   FULLTIME 
Pay rate:   Based on experience

About Halock:   
HALOCK Security Labs is a professional services organization focused 100% on information security. HALOCK is a hybrid services firm capable of addressing both the strategic and technical security needs of our clients. We are in partnership with our clients to help them protect critical information assets and meet compliance needs as well as international security standards best practices.
HALOCK offers services in PCI compliance and validation, vulnerability assessments, penetration testing, network security architecture reviews, development of information security management systems, and security solution implementations including SIEM, DLP, and encryption. Our full-time consultants and engineers may be a part of one or more of these service offerings depending on their skills and interests.
HALOCK prides itself on its ability to perform in-depth security assessments across a wide range of technical environments. Tired of the plain vanilla *checklist* audit? Looking to demonstrate your assessment skills with like-minded team members? HALOCK has a unique, challenging and motivated environment for you to further develop your career.
Due to client demand, we are continuing to expand our consulting team. Each client engagement is assigned a dedicated and capable group of consultants, project management, resources, and tools. You will be expected to utilize your skills and abilities to satisfy the scope of the engagement within budgetary requirements.

Job Responsibilities:   
   Perform PCI consulting and advisory services
   Plan and execute PCI DSS Gap Assessments and Audits
   Assist Clients with Remediation Planning
   Perform PCI PA-DSS consulting and advisory services
   Plan and execute PCI PA-DSS Gap Assessments and Audits
   Perform internal and external network and application penetration testing using a variety of methods, tools, and techniques
   Perform wireless penetration testing using both collaborative and covert methods
   Perform hands-on review of network environments, including network device and server configurations, from both an advisory perspective as well as in support of HALOCK's PCI Audit and ISO governance practices
   Exhibit knowledge of PCI DSS, PA-DSS, ISO, and NIST standards and demonstrate ability to complete required work papers with detail
   Contribute to HALOCK's PCI Services Framework including findings, checklists, templates, testing methods and techniques, and research
   Adhere to HALOCK's code of conduct (http://www.halock.com/thecode.php)
   Author detailed PCI assessment reports and Reports on Compliance, including presentation of findings to clients following the conclusion of testing

Required Skills:   
The ideal candidate must meet the following minimum criteria:
   PCI QSA Certification
   Five years full time gap assessment or audit experience
   Strong background in network and application technologies, including penetration testing
   Excellent technical and business level writing skills
   Ability to multi-task without compromising deadlines and assignment expectations
   Take direction from project management and work as part of a collaborative team
   Previous consulting experience and ability to deliver under pressure
   Strong organizational skills, including ability to deliver with minimal supervision
   Basic to intermediate project management competencies such as following process and protocol for project delivery, ability to identify project risks, project multitasking, and ability to self manage when appropriate
   Ability to execute assessments as defined in proposals, within assigned budgets and due dates
   High motivation, integrity, and commitment to self development
   Strong verbal communication skills

Preferred Skills:   
The following are ideal but not prerequisites for the
role:
   PCI PA-QSA Certification
   Formal education in Information Security, Information Technology, Computer Science, Engineering or related discipline preferred
   Applicable certifications such as C|EH, C|EI, CSSLP, CISSP, CISA, technical certifications such as MCSD, SCJD, SCJP, MCAD, MCPD
   Network design and implementation experience
   Application development experience

Disclosures:   All candidates invited to interview will be required to sign strict confidentiality and non-disclosure agreements. Full background checks are performed, with consent, on all successful candidates before employment offers can be extended.

Benefits and Extras:   
   Comprehensive benefits package including health, dental, 401(k), long-term disability and more
   Career Roadmap Program with annual performance reviews
   Training and paid certification opportunities
   Strong team culture
   Virtual testing labs
Contact:   careers@halock.com
US citizens and Green Card Holders, EAD and TN are encouraged to apply.
We are unable to sponsor H1 candidates at this time
No 3rd parties please
Individuals only need apply- No Firms (please)
Travel required:   Up to 25%
Telecommute:   No
Keywords:   Information security, assessment, application security, network security, CISSP, PA-QSA, QSA, CISA, PCI, hacking, penetration test, pen test, audit

Title:   Senior Consultant – Assessment Services
Skills:   Vulnerability Assessment, Network Penetration Testing, Application Penetration Testing, Wireless Penetration Testing, Remote and Physical Social Engineering, Network Architecture and Configuration Review, PCI Penetration Testing
Location:   Schaumburg
Tax term:   FULLTIME 
Pay rate:   Based on experience

About Halock:   
HALOCK Security Labs is a professional services organization focused 100% on information security. HALOCK is a hybrid services firm capable of addressing both the strategic and technical security needs of our clients. We are in partnership with our clients to help them protect critical information assets and meet compliance needs as well as international security standards best practices.
HALOCK offers services in PCI compliance and validation, vulnerability assessments, penetration testing, network security architecture reviews, development of information security management systems, and security solution implementations including SIEM, DLP, and encryption. Our full-time consultants and engineers may be a part of one or more of these service offerings depending on their skills and interests.
HALOCK prides itself on its ability to perform in-depth security assessments across a wide range of technical environments. Tired of the plain vanilla *checklist* audit? Looking to demonstrate your assessment skills with like-minded team members? HALOCK has a unique, challenging and motivated environment for you to further develop your career.
Due to client demand, we are continuing to expand our consulting team. Each client engagement is assigned a dedicated and capable group of consultants, project management, resources, and tools. You will be expected to utilize your skills and abilities to satisfy the scope of the engagement within budgetary requirements.

Job Responsibilities:   
   Perform internal and external Vulnerability Scanning using commercial and open source tools
   Perform internal and external network and application penetration testing using a variety of methods, tools, and techniques
   Perform wireless penetration testing using both collaborative and covert methods
   Conduct onsite Social Engineering including persuasion and technical attacks
   Prepare and execute custom remote social engineering testing such as phishing, mock websites, and telephone contact
   Perform hands-on review of network environments, including network device and server configurations, from both an advisory perspective as well as in support of HALOCK's PCI Audit and ISO governance practices
   Exhibit knowledge of PCI, ISO, and NIST standards and demonstrate ability to complete required work papers with detail
   Contribute to HALOCK's Assessment Framework including findings databases, checklists, templates, testing methods and techniques, and research
   Adhere to HALOCK's code of conduct (http://www.halock.com/thecode.php)
   Author detailed assessment reports, including presentation of findings to clients following the conclusion of testing

Required Skills:   
The ideal candidate must meet the following minimum criteria:
   Five years full time penetration testing experience
   Strong background in network and application technologies
   Excellent technical and business level writing skills
   Ability to multi-task without compromising deadlines and assignment expectations
   Take direction from project management and work as part of a collaborative team
   Previous consulting experience and ability to deliver under pressure
   Strong organizational skills, including ability to deliver with minimal supervision
   Basic to intermediate project management competencies such as following process and protocol for project delivery, ability to identify project risks, project multitasking, and ability to self manage when appropriate
   Ability to execute assessments as defined in proposals, within assigned budgets and due dates
   High motivation, integrity, and commitment to self development
   Strong verbal communication skills

Preferred Skills:   
The following are ideal but not prerequisites for the role:
   Formal education in Information Security, Information Technology, Computer Science, Engineering or related discipline preferred
   Applicable certifications such as PCI QSA, PCI PA-QSA, C|EH, C|EI, CSSLP, CISSP, CISA, technical certifications such as MCSD, SCJD, SCJP, MCAD, MCPD
   Network design and implementation experience
   Application development experience

Disclosures:   All candidates invited to interview will be required to sign strict confidentiality and non-disclosure agreements. Full background checks are performed, with consent, on all successful candidates before employment offers can be extended.

Benefits and Extras:   
   Comprehensive benefits package including health, dental, 401(k), long-term disability and more
   Career Roadmap Program with annual performance reviews
   Training and paid certification opportunities
   Strong team culture
   Virtual testing labs

Contact:   
   careers@halock.com
US citizens and Green Card Holders, EAD and TN are encouraged to apply.
We are unable to sponsor H1 candidates at this time
No 3rd parties please
Individuals only need apply
Travel required:   Up to 25%
Telecommute:   No
Keywords:   Information security, assessment, application security, network security, CISSP, PA-QSA, QSA, CISA, PCI, hacking, penetration test, pen test, audit

Job Responsibilities:
   Perform Security Program / Security Controls Reviews based on ISO 27001/27002 standards
   Plan and implement Security Policy projects
   Plan and executive Risk Assessments and Risk Treatment Plans
   Design and implement Incident Response plans
   Implement Information Security Management Systems (ISMS) based on ISO 27001
   Perform HIPAA Gap Assessments
   Exhibit knowledge of ISO 27001/27002 and NIST standards, demonstrating the ability to complete required work papers with detail
   Contribute intellectual capital to Halock's Professional Services Framework including findings, checklists, templates, testing methods and techniques, and research
   Adhere to Halock's code of conduct (http://www.halock.com/thecode.php)
   Author detailed Security Program Review and other strategic reports
   Present findings to C-level sponsors and executive leadership teams

Critical Skills: 
The ideal candidate should have the following required skills:
   Consulting experience: 3+ years
   Gap Assessment experience: 3+ years
   Audit experience: 2+ years
   Information Security practitioner experience:  5+ years
   Risk Assessment
   Policy Development
   Incident Response
   ISO 27001/27002
   NIST
   HIPAA
   Excellent written and verbal communication skills
   Ability to multi-task without compromising deadlines and assignment expectations
   Project manage client projects as well as work as a member of a project team
   Strong organizational skills, including ability to work with minimal supervision
   High level of initiative – a self-starter
   Integrity, and commitment to ethical behavior


Nice to Have Skills: 
The following are nice to have but not required for the role:
   Government regulations
   DIACAP
   FISMA
   PCI QSA Certification
   Formal education in Information Security, Information Technology, Computer Science, Engineering or related discipline preferred
   Applicable certifications such as C|EH, C|EI, CSSLP, CISSP, CISA, technical certifications such as MCSD, SCJD, SCJP, MCAD, MCPD, GIAC, GSNA, GCIH, GPEN, GSEC, GCED
   Network design and implementation experience
   Application development experience
   Ethical hacking experience
Benefits and Extras:
   Comprehensive benefits package including health, dental, 401(k), long-term disability and more
   Career Roadmap Program with regularly occurring performance reviews
   A culture that “invests” into their people through continued training and paid certification opportunities
   Strong team culture

Contact: careers@halock.com
US citizens and Green Card Holders, EAD and TN are encouraged to apply.
We are unable to sponsor H1 candidates at this time
No 3rd parties please
Individuals only need apply

Travel required:
May be up to 25%, with majority of work in Chicago and Chicago suburbs

Telecommute: No

Date:  5/19/2010

Location: Schaumburg, IL

Pay rate: Competitive base salary and based on experience
Aggressive performance based bonus program



About Halock:
Halock Security Labs is a consulting boutique organization focused 100% on information security.  Halock is a thought leader in this rapidly growing market space!

Halock is a hybrid services firm capable of addressing both the strategic and technical security needs of our clients. With over 400 business clients, we work in partnership with our clients to help them protect critical information assets, meet compliance needs and uphold security standards best practices.
Halock offers services in security governance and strategy, PCI compliance and validation, vulnerability assessments, penetration testing, network security architecture reviews, development of information security management systems, risk assessment, incident response planning, policy development, and security solution implementations including SIEM, DLP, and encryption. Our full-time consultants and engineers may be a part of one or more of these service offerings depending on their skills and interests.
Halock prides itself on its ability to perform in-depth security assessments across a wide range of technical environments. Tired of the plain vanilla *checklist* audit? Looking to demonstrate your assessment skills with like-minded team members? Halock has a unique, challenging and motivated environment for you to further develop your career.
Due to client demand, we are continuing to expand our consulting team. Each client engagement is assigned a dedicated and capable group of consultants, project management, resources, and tools. You will be expected to utilize your skills and abilities to satisfy the scope of the engagement within budgetary requirements.
About the Governance and Strategy Practice:
The Governance and Strategy Practice is the fastest growing business unit at Halock.  With multiple ISO 27001 Certification Projects in progress in 2011, we are looking for individuals that are at the CISO level or aspire to get there quickly.  Our projects span every aspect of security governance and we are looking for high impact contributors that are seeking to fast track their experience to CISO/CIO level.

Title:   Senior Consultant – PCI Services
Skills:   PCI Consulting, PCI Remediation Planning, PCI DSS Gap Assessment and Audit, PCI PA-DSS Gap Assessment and Audit, Network and Application Architecture
Date:   
Location:   Schaumburg
Tax term:   FULLTIME 
Pay rate:   Based on experience
About Halock:   HALOCK Security Labs is a professional services organization focused 100% on information security. HALOCK is a hybrid services firm capable of addressing both the strategic and technical security needs of our clients. We are in partnership with our clients to help them protect critical information assets and meet compliance needs as well as international security standards best practices.
HALOCK offers services in PCI compliance and validation, vulnerability assessments, penetration testing, network security architecture reviews, development of information security management systems, and security solution implementations including SIEM, DLP, and encryption. Our full-time consultants and engineers may be a part of one or more of these service offerings depending on their skills and interests.
HALOCK prides itself on its ability to perform in-depth security assessments across a wide range of technical environments. Tired of the plain vanilla *checklist* audit? Looking to demonstrate your assessment skills with like-minded team members? HALOCK has a unique, challenging and motivated environment for you to further develop your career.
Due to client demand, we are continuing to expand our consulting team. Each client engagement is assigned a dedicated and capable group of consultants, project management, resources, and tools. You will be expected to utilize your skills and abilities to satisfy the scope of the engagement within budgetary requirements.
Job Responsibilities:      Perform PCI consulting and advisory services
   Plan and execute PCI DSS Gap Assessments and Audits
   Assist Clients with Remediation Planning
   Perform PCI PA-DSS consulting and advisory services
   Plan and execute PCI PA-DSS Gap Assessments and Audits
   Perform internal and external network and application penetration testing using a variety of methods, tools, and techniques
   Perform wireless penetration testing using both collaborative and covert methods
   Perform hands-on review of network environments, including network device and server configurations, from both an advisory perspective as well as in support of HALOCK's PCI Audit and ISO governance practices
   Exhibit knowledge of PCI DSS, PA-DSS, ISO, and NIST standards and demonstrate ability to complete required work papers with detail
   Contribute to HALOCK's PCI Services Framework including findings, checklists, templates, testing methods and techniques, and research
   Adhere to HALOCK's code of conduct (http://www.halock.com/thecode.php)
   Author detailed PCI assessment reports and Reports on Compliance, including presentation of findings to clients following the conclusion of testing
Required Skills:   The ideal candidate must meet the following minimum criteria:
   PCI QSA Certification
   Five years full time gap assessment or audit experience
   Strong background in network and application technologies, including penetration testing
   Excellent technical and business level writing skills
   Ability to multi-task without compromising deadlines and assignment expectations
   Take direction from project management and work as part of a collaborative team
   Previous consulting experience and ability to deliver under pressure
   Strong organizational skills, including ability to deliver with minimal supervision
   Basic to intermediate project management competencies such as following process and protocol for project delivery, ability to identify project risks, project multitasking, and ability to self manage when appropriate
   Ability to execute assessments as defined in proposals, within assigned budgets and due dates
   High motivation, integrity, and commitment to self development
   Strong verbal communication skills
Preferred Skills:   The following are ideal but not prerequisites for the role:
   PCI PA-QSA Certification
   Formal education in Information Security, Information Technology, Computer Science, Engineering or related discipline preferred
   Applicable certifications such as C|EH, C|EI, CSSLP, CISSP, CISA, technical certifications such as MCSD, SCJD, SCJP, MCAD, MCPD
   Network design and implementation experience
   Application development experience
Disclosures:   All candidates invited to interview will be required to sign strict confidentiality and non-disclosure agreements. Full background checks are performed, with consent, on all successful candidates before employment offers can be extended.
Benefits and Extras:      Comprehensive benefits package including health, dental, 401(k), long-term disability and more
   Career Roadmap Program with annual performance reviews
   Training and paid certification opportunities
   Strong team culture
   Virtual testing labs
Contact:   
US citizens and Green Card Holders, EAD and TN are encouraged to apply.
We are unable to sponsor H1 candidates at this time
No 3rd parties please
Individuals only need apply
Travel required:   Up to 25%
Telecommute:   No
Keywords:   Information security, assessment, application security, network security, CISSP, PA-QSA, QSA, CISA, PCI, hacking, penetration test, pen test, audit

Title:   Senior Consultant – Assessment Services
Skills:   Vulnerability Assessment, Network Penetration Testing, Application Penetration Testing, Wireless Penetration Testing, Remote and Physical Social Engineering, Network Architecture and Configuration Review, PCI Penetration Testing
Date:   
Location:   Schaumburg
Tax term:   FULLTIME 
Pay rate:   Based on experience
About Halock:   HALOCK Security Labs is a professional services organization focused 100% on information security. HALOCK is a hybrid services firm capable of addressing both the strategic and technical security needs of our clients. We are in partnership with our clients to help them protect critical information assets and meet compliance needs as well as international security standards best practices.
HALOCK offers services in PCI compliance and validation, vulnerability assessments, penetration testing, network security architecture reviews, development of information security management systems, and security solution implementations including SIEM, DLP, and encryption. Our full-time consultants and engineers may be a part of one or more of these service offerings depending on their skills and interests.
HALOCK prides itself on its ability to perform in-depth security assessments across a wide range of technical environments. Tired of the plain vanilla *checklist* audit? Looking to demonstrate your assessment skills with like-minded team members? HALOCK has a unique, challenging and motivated environment for you to further develop your career.
Due to client demand, we are continuing to expand our consulting team. Each client engagement is assigned a dedicated and capable group of consultants, project management, resources, and tools. You will be expected to utilize your skills and abilities to satisfy the scope of the engagement within budgetary requirements.
Job Responsibilities:      Perform internal and external Vulnerability Scanning using commercial and open source tools
   Perform internal and external network and application penetration testing using a variety of methods, tools, and techniques
   Perform wireless penetration testing using both collaborative and covert methods
   Conduct onsite Social Engineering including persuasion and technical attacks
   Prepare and execute custom remote social engineering testing such as phishing, mock websites, and telephone contact
   Perform hands-on review of network environments, including network device and server configurations, from both an advisory perspective as well as in support of HALOCK's PCI Audit and ISO governance practices
   Exhibit knowledge of PCI, ISO, and NIST standards and demonstrate ability to complete required work papers with detail
   Contribute to HALOCK's Assessment Framework including findings databases, checklists, templates, testing methods and techniques, and research
   Adhere to HALOCK's code of conduct (http://www.halock.com/thecode.php)
   Author detailed assessment reports, including presentation of findings to clients following the conclusion of testing
Required Skills:   The ideal candidate must meet the following minimum criteria:
   Five years full time penetration testing experience
   Strong background in network and application technologies
   Excellent technical and business level writing skills
   Ability to multi-task without compromising deadlines and assignment expectations
   Take direction from project management and work as part of a collaborative team
   Previous consulting experience and ability to deliver under pressure
   Strong organizational skills, including ability to deliver with minimal supervision
   Basic to intermediate project management competencies such as following process and protocol for project delivery, ability to identify project risks, project multitasking, and ability to self manage when appropriate
   Ability to execute assessments as defined in proposals, within assigned budgets and due dates
   High motivation, integrity, and commitment to self development
   Strong verbal communication skills
Preferred Skills:   The following are ideal but not prerequisites for the role:
   Formal education in Information Security, Information Technology, Computer Science, Engineering or related discipline preferred
   Applicable certifications such as PCI QSA, PCI PA-QSA, C|EH, C|EI, CSSLP, CISSP, CISA, technical certifications such as MCSD, SCJD, SCJP, MCAD, MCPD
   Network design and implementation experience
   Application development experience
Disclosures:   All candidates invited to interview will be required to sign strict confidentiality and non-disclosure agreements. Full background checks are performed, with consent, on all successful candidates before employment offers can be extended.
Benefits and Extras:      Comprehensive benefits package including health, dental, 401(k), long-term disability and more
   Career Roadmap Program with annual performance reviews
   Training and paid certification opportunities
   Strong team culture
   Virtual testing labs

Contact:  psmyth@rltdsecurity.com
US citizens and Green Card Holders, EAD and TN are encouraged to apply.
We are unable to sponsor H1 candidates at this time
No 3rd parties please
Individuals only need apply
Travel required:   Up to 25%
Telecommute:   No
Keywords:   Information security, assessment, application security, network security, CISSP, PA-QSA, QSA, CISA, PCI, hacking, penetration test, pen test, audit