Description:
The successful Cyber Security Engineer applies current analytical and logical thinking to the design, architecture, development, evaluation, testing, and integration of computer systems, appliances, and networks to elevate the security posture of the program. The Cyber Security Engineer may be involved with commercial, custom and/or government computer product vendors in the design, evaluation, and architecture of state-of-the-art secure GOTS/COTS applications, operating systems, networks, databases, and custom built technology. Attention to detail, honesty, out of the box thinking with a problem-solving mindset, be able to work under pressure, and be able to deliver on tight delivery schedules are very much desired.
Responsibilities Include:
• Provide technical leadership for an engineering team implementing differing technologies to include; Azure and/or AWS Cloud, firewalls, web application firewalls, VPNs, DNS, Data Loss Prevention, IDS/IPS, and proxies, to name a few.
• Develops security systems for any manual or automated systems environments which comprises on-prem and Cloud based systems.
• Responsible for ensuring the protection of organization data against unauthorized disclosure, accidental or intentional loss of data, and unauthorized modification. Lead cyber security teams working with a variety of different tools and appliances, security challenges, and troubleshooting various complex issues.
• Administer the management of security appliances, tools, products, and aspects of the information system and perform day-to-day security operations, as well as, Operations and Maintenance (O&M) of the system
• Provide security tools administration, management, troubleshooting, and testing.
• Experience and/or familiarity with the following network protection devices: Firewalls, intrusion detection and prevention systems (IDS/IPS), log analysis, malware analysis, network traffic flow and packet analysis
• Experience with Cloud services offered by Microsoft or Amazon. Azure Sentinel (SIEM) is most desired between the two
• Support Projects and Project management personnel throughout the full software development lifecycle
• Manage technology roadmaps with each product and propose briefs and reports to elaborate on recommended actions based on best practices
•Perform full product testing to the length of the products capabilities as required by the customer and the program
• Develop capabilities according to customer requirements and NIST, DHS, and Government guidelines and regulations
Required Skills:
• U.S. Citizenship
• Active Secret clearance. Must be able to obtain a TS/SCI clearance
• Must be able to obtain DHS Suitability
• 8+ years of experience engineering, operating, and managing layered security integration for on premise or cloud/private cloud environments
• 4+ years management and implementing a Tenable Nessus environment
• Minimum 2 years of professional experience working with AWS or Azure infrastructure, services in a security focused role.
• Advanced knowledge of AWS & Azure architectural concepts.
• Experience engineering, operating, and managing layered security and SIEM integration
• Demonstrated experience handling incidents across multiple operating systems
• Excellent written and oral communication skills
• This position may require shift work.
Desired Skills:
• Experience with one or more of the following:
o RSA Security Analytics (NetWitness)
o Symantec Bluecoat
o ForeScout CounterAct
o McAfee ePO
o Cisco FirePower (SourceFire)
o RedSeal, SecureSphere Imperva
o Tenable Nessus
o Azure Sentinel
o TAPs
o Cloud technologies,
o Project Management processes to include SAFe and Agile
Required Education/Experience:
Bachelor’s degree in a related field and a minimum of 8 years of prior relevant work experience. Two years of related work experience may be substituted for each year of degree level education.
Desired Certification(s):
• Certified Ethical Hacker (CEH), Windows/Linux Admin, Azure Sentinel or Other Cloud SIEM, CISSP, Security+, Network+, Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP)
• Vendor specific certification for the aforementioned products or similar certification.