Cyber Security Engineer with Security Clearance

---

Job description

The Customer provides support to 12+ unique systems and networks. The Customer requires support specializing in cybersecurity to monitor and maintain system and network security, and research vulnerabilities, risks, and events. The work will be within a team environment comprised of network and system engineers. The Customer needs advanced skills in system and network security practices and the ability to manage a moderate to heavy workload. The Cyber Security Engineer (CSE) shall work closely with Customer, ISSEs, and ISSMs to maintain system and network security compliance and to mitigate vulnerabilities for multiple Customer systems and networks. The CSE will be responsible for utilizing and running multiple vulnerability scanning tools on multiple networks and troubleshooting any scanning issues, deploy, install, manage, and operate Security Information and Event Management (SIEM) solutions, and perform assessments of threats and vulnerabilities to organizational computing assets and developing or integrate rules, queries, and filtering techniques to produce meaningful risk analysis for responses. The selected candidate needs to be able to coordinate with teams to ensure all devices and components report all relevant logs to the SIEM solution and perform troubleshooting and maintenance of assets, work with customers to track, remediate, and report compliance for disclosed vulnerabilities, validate technical security controls are in place for operating systems, applications, and network appliances, and recommend enhancements, and review proposed SIEM configuration changes for security impact. Finally, the CSE will work with technical and policy teams to implement, maintain, and monitor technical security configuration controls, including: Security Technical Implementation Guides (STIGs) and other industry security hardening guidance and collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements. 1.(Mandatory) Demonstrated experience with one or more of the following programming languages: Java, Javascript, Python, C, C++, and SQL. 2.(Mandatory) Demonstrated experience implementing, tuning, and monitoring SIEM rulesets. 3.(Mandatory) Demonstrated experience working with technical and policy teams to implement, maintain, and monitor technical security configuration controls, including: Security Technical Implementation Guides (STIGs) and other industry security hardening guidance. 4.(Mandatory) Demonstrated experience understanding of common cyber threat patterns, indicators of compromise, and defenses. 5.(Mandatory) Demonstrated experience understanding of Linux and Windows Operating Systems. 6.(Mandatory) Demonstrated experience with the ability to interpret and apply rules, regulations, and procedures. 7.(Mandatory) Demonstrated experience gathering, analyzing, and presenting facts. 8.(Mandatory) Demonstrated experience understanding network, storage, server, and application technologies. 9.(Desired) Demonstrated experience and strong understanding of Assessment & Authorization (A&A) processes. 10.(Desired) Demonstrated experience automating routine administrative tasks. 11.(Desired) Demonstrated experience (documented training) or certification in Security+. 12.(Desired) Demonstrated experience (documented training) or certification in SANS/GIAC. 13.(Desired) Demonstrated experience (documented training) or certification in Red Hat Enterprise Linux and Splunk Enterprise. 14.(Desired) Demonstrated experience (documented training) or certification in Network+. 15.(Desired) Demonstrated experience with strong verbal and written communication skills. 16.(Desired) Demonstrated experience working cooperatively as a member of a team. 17.(Desired) A.S or B.S in Information Technology with concentration in Cybersecurity or equivalent Cybersecurity certification(s).

<!– job description page –>