Job Description
We are currently seeking an Senior Level Cyber Security Engineer for a dynamic position in support of a US Government contract located in Northern Virginia. This candidate will be responsible for building, maintaining, and testing the security of critical computer networks. The ideal candidate would have a solid understanding of cyber security and engineering best practices and be able to manage incident handling, incident analysis, processes/methodologies, the development of best practices, strong understanding of adversary processes/methodologies/TTP to include emerging threats, and the ability to develop signatures and countermeasures.
Key Responsibilities:
- Support the customer in researching, evaluating, planning, designing, engineering, and delivering cybersecurity solutions
- Review and ensure compliance with customer security policies and requirements
- Conduct vulnerability and generic security scans of both systems and networks to identify and mitigate security vulnerabilities
- Analyze and mitigate network-related risks
- Review new and existing system designs for compliance with security standards and best practices
- Conduct vulnerability assessments on new and existing systems
- Lead system and application architects through security acceptance testing
- Develop plans for vulnerability mitigation
- Document and communicate security policy to enterprise organizations
- Develop mitigation plans and security implications for vulnerabilities
- Provide architectural and technical guidance and recommendations for securing systems and networks
- Implement securing and hardening recommendations
- Produce threat reports
- Provide information security expertise and consulting
- Implement an information security framework
- Gain organizational commitment for security plans
- Plan, design, and implement security-related technologies
- Ensure new and existing products conform to information security policies, standards, and best practices
- Conduct research on emerging technologies in support of enterprise operations
- Review new and existing system designs for compliance with security standards and best practices
- Conduct vulnerability assessments on new and existing systems
- Lead system and application architects through security acceptance testing
- Develop plans for vulnerability mitigation
- Document and communicate security policy to enterprise organizations
- Cross-train and mentor other staff members as needed
Requirements
Required Qualifications:
- Clearance - TS/SCI FS Poly
- Bachelor’s degree in Computer Science, Computer Forensics, Information Technology or related technical discipline
- 10+ years of successfully implanting advanced cyber security technology in a complex environment
- 8+ years’ experience with CISCO and Juniper Networks
- Understanding of networking environment to include networking technologies (routing, switching, VLANs, subnets, firewalls); TCO/IP stack’ Windows operating systems; LINUX/UNIX-based operating systems; common networking protocols; and common enterprise technologies
- Understanding of IT security principals, technologies, best practices to include logical access control; PKI and other encryption methods; network-based and host-based IDS/IPS; security configuration baselines; auditing; vulnerability discovery and management
- Ability to work independently to identify errors, pinpoint root causes, and devise solutions with minimal oversight
- Demonstrated experience in testing and implementing network vulnerability and protection
- Senior-level knowledge of information security concepts, policy frameworks, and best practices
- Extensive in-depth technical experience with network infrastructure, operating systems, database, and web applications
- Information Assurance Certifications (i.e. CISSP, CISA, GIAC, Security +, Certified Ethnical Hacker, etc.)
- Experience with scanning and elevation tools (Nessus, Retina, Wireshark, NMAP, etc.)
- Excellent verbal and written communication skills
Desired Qualifications:
- CISCO CCNA, CCNP or CCIE certified
- In-depth knowledge of Linux operating system variants
- Knowledge of scripting language (Perl and/or Bash)