Security Engineer
Multiple openings available at Mid, Senior, and SME levels.
Security Engineer (Journeyman)
Opportunity for a Security Engineer (mid-level) to support a dynamic DevSecOps program operating in a SAFe Agile framework. She/he shall perform technical market research and analysis, and make recommendations of key technological, interface, service, security, and cyber issues likely to impact development and sustainment efforts. The Security Engineer will collaborate and provide inputs that support the solution engineering, planning, development, maintenance of architecture artifacts and security centric and program related documents required to support successful Assessment and Authorization (A&A) efforts required for Authorizations to Operate (ATOs). She/he will work with Information Systems Security Officials (ISSOs) and Information Systems Security Engineers (ISSEs) to provide user interface services across the functional capability areas.
Primary Responsibilities:
a) Manages and executes security engineering activities during the analysis, design, development, and sustainment phases
b) Interfaces with the government as the lead for designing security related capabilities for each project
c) Analyze the security of the pipelines, applications, and services to achieve release and deployment and provides integration and implementation of security solutions and security features for system architectures
d) Defines holistic cloud security strategy and implement cloud orchestration tools and solutions to meet cloud security architecture requirements, policies, and procedures
e) Implements, maintains, and improves existing industry best practices of NIST security controls such as identity and access management, IDS/IPS, log analytics, encryption and data security
f) Resolves and mitigates vulnerabilities, design security functions, and provides evidence-based reasoning to substantiate claims for trustworthy and secure work products
g) Work with developers, IT management, and other business stakeholders to gain an understanding of business security requirements for critical systems and sensitive data.
h) Communicate security vulnerability reports and trends to ensure appropriate corrective action is taken.
i) Develop, implement, communicate, and enforce security policies and/or processes for data, software applications, and cloud infrastructure.
j) Strong technical, analytical, and interpersonal skills. Self-motivation and ability to work independently.
k) Superior attention to detail with excellent written and verbal communication, problem solving, researching and follow-up skills
Basic Qualifications:
a) Implementing security measures that effectively safeguard sensitive data in the event of cyber-attack.
b) Developing and supporting network security solutions and providing guidance on vulnerabilities or potential vulnerabilities within the enterprise architecture.
c) Hands-on experience with Tanium, Gigamon, Suricata, SourceFire, FireEye, ePO, and other network and endpoint security tools.
d) Experience with the following security technologies: IPS/IDS, Firewalls, Proxies and reverse proxies, DNS servers, Anti-virus/Anti-malware tools, Endpoint detection and response tools, vulnerability and asset management tools.
e) Skilled in Linux-related scripting
f) One or more technical security certifications:
1. ISC2 Certified Cloud Security Professional (CCSP)
2. ISC2 Certified Information Systems Security Professional (CISSP)
3. ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
4. ISACA Certified Information Security Manager (ISSM)
5. SANS Global Information Assurance Certification (GIAC) Cloud Security Essentials (GCLD), Cloud Security Automation (GCSA), Security Essentials (GSEC), and others
Candidate must be a US citizen
Candidate must have an active TS/SCI
Required Education
Candidate must have a MA/MS degree with a minimum of 3 years of experience. This may be substituted with a BS/BA degree and a minimum of 6 years of total experience.
Security Engineer (Senior)
Opportunity for a Security Engineer (senior-level) to support a dynamic DevSecOps program operating in a SAFe Agile framework. She/he shall perform technical market research and analysis, and make recommendations of key technological, interface, service, security, and cyber issues likely to impact development and sustainment efforts. The Security Engineer will collaborate and provide inputs that support the solution engineering, planning, development, maintenance of architecture artifacts and security centric and program related documents required to support successful Assessment and Authorization (A&A) efforts required for Authorizations to Operate (ATOs). She/he will work with Information Systems Security Officials (ISSOs) and Information Systems Security Engineers (ISSEs) to provide user interface services across the functional capability areas.
Primary Responsibilities
a) Manages and executes security engineering activities during the analysis, design, development, and sustainment phases
b) Interfaces with the government as the lead for designing security related capabilities for each project
c) Analyze the security of the pipelines, applications, and services to achieve release and deployment and provides integration and implementation of security solutions and security features for system architectures
d) Defines holistic cloud security strategy and implement cloud orchestration tools and solutions to meet cloud security architecture requirements, policies, and procedures
e) Implements, maintains, and improves existing industry best practices of NIST security controls such as identity and access management, IDS/IPS, log analytics, encryption and data security
f) Resolves and mitigates vulnerabilities, design security functions, and provides evidence-based reasoning to substantiate claims for trustworthy and secure work products
g) Work with developers, IT management, and other business stakeholders to gain an understanding of business security requirements for critical systems and sensitive data.
h) Communicate security vulnerability reports and trends to ensure appropriate corrective action is taken.
i) Develop, implement, communicate, and enforce security policies and/or processes for data, software applications, and cloud infrastructure.
j) Strong technical, analytical, and interpersonal skills. Self-motivation and ability to work independently.
k) Superior attention to detail with excellent written and verbal communication, problem solving, researching and follow-up skills
Basic Qualifications:
a) Implementing security measures that effectively safeguard sensitive data in the event of cyber-attack.
b) Developing and supporting network security solutions and providing guidance on vulnerabilities or potential vulnerabilities within the enterprise architecture.
c) Significant experience with Tanium, Gigamon, Suricata, SourceFire, FireEye, ePO, and other network and endpoint security tools.
d) Significant experience with the following security technologies: IPS/IDS, Firewalls, Proxies and reverse proxies, DNS servers, Anti-virus/Anti-malware tools, Endpoint detection and response tools, vulnerability and asset management tools.
e) Highly skilled in Linux-related scripting
f) One or more technical security certifications:
1. ISC2 Certified Cloud Security Professional (CCSP)
2. ISC2 Certified Information Systems Security Professional (CISSP)
3. ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
4. ISACA Certified Information Security Manager (ISSM)
5. SANS Global Information Assurance Certification (GIAC) Cloud Security Essentials (GCLD), Cloud Security Automation (GCSA), Security Essentials (GSEC), and others
Candidate must be a US citizen
Candidate must have an active TS/SCI
Required Education:
Candidate must have a MA/MS degree with a minimum of 10 years of experience. This may be substituted with a BS/BA degree and a minimum of 12 years of total experience.
Security Engineer (SME)
Opportunity for a Security Engineer (subject matter expert) to support a dynamic DevSecOps program operating in a SAFe Agile framework. She/he shall perform technical market research and analysis, and make recommendations of key technological, interface, service, security, and cyber issues likely to impact development and sustainment efforts. The Security Engineer will collaborate and provide inputs that support the solution engineering, planning, development, maintenance of architecture artifacts and security centric and program related documents required to support successful Assessment and Authorization (A&A) efforts required for Authorizations to Operate (ATOs). She/he will work with Information Systems Security Officials (ISSOs) and Information Systems Security Engineers (ISSEs) to provide user interface services across the functional capability areas.
Primary Responsibilities:
a) Manages and executes security engineering activities during the analysis, design, development, and sustainment phases
b) Interfaces with the government as the lead for designing security related capabilities for each project
c) Analyze the security of the pipelines, applications, and services to achieve release and deployment and provides integration and implementation of security solutions and security features for system architectures
d) Defines holistic cloud security strategy and implement cloud orchestration tools and solutions to meet cloud security architecture requirements, policies, and procedures
e) Implements, maintains, and improves existing industry best practices of NIST security controls such as identity and access management, IDS/IPS, log analytics, encryption and data security
f) Resolves and mitigates vulnerabilities, design security functions, and provides evidence-based reasoning to substantiate claims for trustworthy and secure work products
g) Work with developers, IT management, and other business stakeholders to gain an understanding of business security requirements for critical systems and sensitive data.
h) Communicate security vulnerability reports and trends to ensure appropriate corrective action is taken.
i) Develop, implement, communicate, and enforce security policies and/or processes for data, software applications, and cloud infrastructure.
j) Strong technical, analytical, and interpersonal skills. Self-motivation and ability to work independently.
k) Superior attention to detail with excellent written and verbal communication, problem solving, researching and follow-up skills
Basic Qualifications:
a) Extensive experience implementing security measures that effectively safeguard sensitive data in the event of cyber-attack.
b) Extensive experience developing and supporting network security solutions and providing guidance on vulnerabilities or potential vulnerabilities within the enterprise architecture.
c) In-depth experience with Tanium, Gigamon, Suricata, SourceFire, FireEye, ePO, and other network and endpoint security tools.
d) Extensive experience with the following security technologies: IPS/IDS, Firewalls, Proxies and reverse proxies, DNS servers, Anti-virus/Anti-malware tools, Endpoint detection and response tools, vulnerability and asset management tools.
e) Highly skilled in Linux-related scripting
f) One or more technical security certifications:
1. ISC2 Certified Cloud Security Professional (CCSP)
2. ISC2 Certified Information Systems Security Professional (CISSP)
3. ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
4. ISACA Certified Information Security Manager (ISSM)
5. SANS Global Information Assurance Certification (GIAC) Cloud Security Essentials (GCLD), Cloud Security Automation (GCSA), Security Essentials (GSEC), and others
Candidate must be a US citizen
Candidate must have an active TS/SCI
Required Education:
Candidate must have a MA/MS degree with a minimum of 15 years of experience. This may be substituted with a BS/BA degree and a minimum of 20 years of total experience.