Candidates are strong security engineers with over 5 years of experience who can bring innovation to our customer projects. You will help us enhance our capabilities in designing and implementing security solutions, identifying and responding to treats, maintaining security, researching and developing new models, and automating and improving the process. Candidates with skills/experience in these areas are encouraged to apply.
Major Functional Areas and Description of Duties:
- Develops and actively implements, configures, and manages security measures on computer systems, networks, and our propriety communications applications.
- Generates system security requirement definitions and analysis and establishes system security design.
- Assist system architects and systems engineers in the classification and implementation of appropriate information security functionality to ensure solutions meet customer requirements.
- Creates and reviews technical and process documentation for customer projects (e.g. Risk Management, System Security Plans, Vulnerability Assessments, System Hardening Reports, Contingency Plans, etc).
- Identifies and mitigates system security threats/risk throughout the program lifecycle. Responds to security escalations.
- Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for assigned programs.
- Interfaces with customer IA personnel as the main POC for security topics.
- Completes system penetration testing and software STIG analysis using DoD approved tools.
- Develops and follows test procedures to verify system security requirements.
- Collaborates with internal teams (e.g., program management, hardware & software development, solution architects, test engineering, field engineering, production) for total project success.
- Ensures adherence to industry standards, regulations, and best practices.
Experience in the following technologies:
- Operating Systems (RHEL)
- Security controls (data encryption, TLS, certificates, ACLs, hardening, FIPS, secure boot, DNS security)
- Vulnerability scanning tools (e.g. Nessus, nmap, openscap)
- System security management and intrusion detection tools (IdM, SSL, IPSec/VPN, SELinux, AIDE)
- Scripting languages (e.g., Bash, PowerShell, Perl, Python)
- Log aggregation and reporting (ELK/Opensearch, Splunk)
- Network analysis tools (Wireshark, Stablenet)
- System monitoring tools (Zabbix, SNMP)
- Virtualization (ESXi, KVM, Red Hat Virtualization)
- Data replication and storage (DBRD, NAS/SAN)
- Telecommunications protocols (SIP/RTP, ED-137)
- Experience in routing and networking technologies
Qualifications:
- BS or MS in Information Technology, Information Systems, Computer Engineering or equivalent experience with IT systems security and engineering.
- 5-14 years’ experience as an Information Systems Security Engineer (ISSE) for Government programs
- CISSP Certification.
- Deep understanding of network technology and systems security engineering practices.
- Experience in identifying, researching, characterizing, and documenting security weaknesses related to operating systems, software applications, firmware, network hardware components, as well as network architecture design and documented policies and procedures.
- Knowledge of, and practical experience with the NIST Special Publications 800 Series, CNSSI 1253, and DoD 8500.
- Experience with network technologies and the ability to demonstrate knowledge of network protocols, communications systems and architectures including network analysis tools such as Wireshark.
- Proficient in RHEL operating system and experience with Windows Server operating system
- Should have significant hands-on experience implementing security and/or network components, i.e. routers, firewalls, IPS, IDS, etc.