Vacancy expired!
Role:
The Network Security Engineer will ensure successful implementation of the Director's cyber security and compliance
objectives in a cost-effective and time-efficient manner. Leads the risk assessment, incident management, and vulnerability remediation efforts. Deliver and maintain cyber security
policies, procedures, and plans. Provide recommendations to improve processes and implement potential solutions to improve security posture.
Responsibilities:
? Collaborate with Senior Staff to ensure Director's information
system and network security objectives are achieved.
? Make timely decisions at the appropriate level and inform the Senior Staff of those decisions or actions.
? Monitor networks and system tools that pertain to Cyber Security, Risk Management, Policy enforcement, Incident Management, and Reporting.
? Maintain and support SIEM threat management, log management,
and change/configuration management in accordance with security policies and standards.
? Conduct vulnerability scans, patching, and create the Security Technical Implementation Guides (STIG).
? Record and classify received incidents and undertake an immediate effort in order to troubleshoot, provide/conduct remediation/mitigation related to the incident.
? Produce maintain, and revise Standard Operating Procedures (SOP), System Security Plans (SSP) and maintain Approval to Operate (ATO) documentation.
? Manage and optimize cloud resource usage and compliance
? Provide cybersecurity support for application development, planning, network implementation, systems integration, communication support,
computer-communication maintenance, asset management, and security controls.
? Identify deficiencies, evaluate approved technologies/services, propose, and assist in the design and implementation of existing and new security services and cloud
solutions.
? Provide timely reports, recommendations, and support requests to the leadership regarding the status of the information and information system resources.
Qualifications:
? Must be able to obtain a DoD Security Clearance.
? Bachelor's degree in Management Information Systems, Computer Science, Information
Technology, Cybersecurity, or equivalent combination of education, training, and experience.
? 5+ years of experience in Information, Network, and Cloud Security.
? Experience implementing NIST 800-171 controls and knowledge of Cybersecurity Maturity Model Certification (CMMC) requirements, and regulatory compliance
requirements related to information security and cloud computing.
? Experience with setting up and maintaining a Cloud environment (AWS, Azure, Google Cloud Platform) and cloud service models (SaaS, PaaS, IaaS).
? Experience with vulnerability management, SIEM, compliance to security baselines, and Identity and Access Management in the cloud and on-prem.
? Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies
? Good organizational and time management skills to handle multiple tasks
simultaneously
? Excellent interpersonal, verbal, and written communication skills with the ability to communicate concepts to a broad range of technical and non-technical audiences
