Job Description

ROLE: SECURITY ENGINEER

LOCATION: SACRAMENTO CA

CLIENT: PERSPECTA

DURATION: 1 YEAR

SUMMARY: The DHMS Cloud Security Officer will monitor, analyze, and detect security events and incidents within the DHMS AWS cloud environment. They will coordinate and maintain security toolsets to support the projects continuous monitoring and ongoing authorization programs and establish a framework by which security risks can be measured and mitigated. JOB RESPONSIBILITIES: • Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates. • Implements security systems by specifying intrusion detection methodologies and equipment. • Directing equipment and software installation and calibration. • Preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation. • Verifies security systems by developing and implementing test scripts. • Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs. • Responsible for the design, development, implementation, and integration of a DoD IA architectures, systems, or system components for use within computing, network, and enclave environments. • Ensure that the architecture and design of development and operational systems are functional and secure. • This include designs for program of record systems and special purpose processing nodes with platform IT interconnectivity. SKILLS: • Significant experience with classes of vulnerabilities, appropriate remediation, and industry standard classification schemes (CVE, CVSS, CPE). • Significant, demonstrated knowledge regarding security vulnerabilities, application analysis, and protocol analysis. • Experience devising methods to automate testing activities and streamline testing processes. • Knowledge of methods for on-going evaluation of the effectiveness and applicability of information security controls (e.g., vulnerability testing, and assessment tools). • Significant experience with Linux and Windows operating systems. Practiced experience with common programming or scripting languages. Exploit development experience a plus. • Knowledge of circuit boards, processors, electronic equipment and computer hardware and software. • Knowledge of the practical application of engineering science and technology. • Knowledge of laws, legal codes, government regulations, agency rules and the democratic political process. • Knowledge of patching programs of major hardware/software manufacturers. Knowledge of secure configuration and hardening of systems. EDUCATION/EXPERIENCE: • Bachelor's degree in computer programming or relevant field required. • Experience defining, deploying, and managing security in AWS EC2 required. • Experience defining, deploying, and managing security in VMWare Cloud (VMC) preferred. • Current CEH, GPEN, CISSP, and GCIA certifications preferred. • Experience with SIEM (i.e. Arcsight, QRadar) Sourcefire, FireEye, Snort or an equivalent tool required. • 5-7 years’ experience required.

Company Description

Maintains records of property owned by government, company, and associate contractors in accordance with company procedure or government regulations. Maintains records and logs of property received, transferred, allocated, held and disposed; coordinates property transfers; conducts periodic property inventories; and prepares reports of property status.