Clearance: Must be willing to maintain a TS/SCI DoD Clearance
Location: This is a full-time, day role, supporting operations in Lorton, VA.
JOB DESCRIPTION
Apex Systems is seeking a Senior System Security Engineer, who enjoys security work and possesses both deep and wide expertise in the security space. You will work as part of dynamic team keeping computer systems and network devices hardened against attacks and securing information systems. Qualified candidates will have a background in security and systems engineering.
What You Will Be Doing
Engineer, implement and monitor security measures for the protection of computer systems and networks
Work closely with the ISSO, systems and network engineering teams to maintain architecture security posture
Work with systems and network engineering teams to build asset repositories and asset scan policies
Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
Implement tools to assist in detection, prevention and analysis of security threats
Implement a comprehensive scanning strategy to identify vulnerabilities and confirm remediation
Working with and configuration of a variety of security centric tools such as Anti-Virus, IDS/IPS, SIEM technologies.
Automate security testing
Provide certification and accreditation support and RMF based continuous monitoring support
Configure and execute Nessus vulnerability and compliance scans
Ensure traceability of all vulnerabilities from raw assessment results to a system POA&M
Conduct vulnerability analysis to support mitigation and residual risk determination
Provide guidance and recommendations for continuous monitoring technologies, leveraging current available technologies and recommending solutions to address gaps
QUALIFICATIONS
Required Experience
Minimum of 6 years of related experience
Proven work experience as a system security engineer or information security engineer
Experience in Windows and Linux operating system environments and scripting skills
Familiarity with network specific security toolsets, Suricata, iptables, Zeek, etc
Experience working with DISA Security Technical Implementation Guides (STIGs)
Experience building and executing Nessus scans
Experience working with Tenable's Security Center
Possess working knowledge of the DoD CS policy requirements set forth in DoDI 8500.01, "Cybersecurity," and DoDI 8510.01, "Risk Management Framework (RMF) for DoD Information Technology"
Thorough understanding of the latest security principles, techniques, and protocols
Strong organizational skills and an ability to stay focused while managing multiple tasks concurrently
Problem solving skills and ability to work under pressure
Detailed oriented
ADDITIONAL INFORMATION
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or
