Get more qualified candidates and reduce your costs with our guaranteed recruiting solutions

Talk to an expert today

1728 - Cyber Information Security Engineer

Washington, DC
Secret

OVERVIEW:
Our Cyber Missions Sector is currently seeking a Sr. Principal Cyber Information Security Engineer for a critical program located in the Washington, DC Metro area.

GENERAL DUTIES:

  • Perform technical planning, system integration, verification and validation, cost and risk, and supportability and effectiveness analyses for total systems.
  • Perform analysis at al l levels of total system product to include: concept, design, fabrication, test, installation, operation, maintenance and disposal.
  • Ensure the logical and systematic conversion of customer or product requirements into total systems solutions that acknowledge technical, schedule, and cost constraints.
  • Perform functional analysis, timeline analysis, detail trade studies, requirements allocation and interface definition studies to translate customer requirements into hardware and software specifications.
  • Work is performed without appreciable direction. Exercises considerable latitude in determining technical objectives of assignment.
  • Represent the organization as the prime technical contact on contracts and projects. Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.

REQUIRED QUALIFICATIONS:

  • Bachelor's degree in Computer/Engineering Science, Information Systems, Cybersecurity, or related field with 10 years cybersecurity experience. May consider a minimum of 10 years of work experience in Cybersecurity engineering in lieu of degree.
  • A minimum of 10 additional years of work experience in Cybersecurity engineering and/or cybersecurity project management.
  • A minimum 2 years of leadership experience managing Cybersecurity engineering teams.
  • Minimum of at least one of the following Cybersecurity Certifications: CISSP, CCSP, CCNA, CISSP-ISSAP, CISSP-ISSEP, GIAC, SSCP, Security+ (or equivalent as approved by the Government).
  • Experience with developing/integrating cybersecurity designs for systems and networks
  • Experience with documenting and addressing organizational information security, cybersecurity architecture, and systems security engineering requirements.
  • Experience with developing system security context, a preliminary system security CONOPS, and define baseline system security requirements in accordance with applicable cybersecurity requirements.
  • Ability to develop a system security context, a preliminary system security CONOPS, and define baseline system security requirements in accordance with applicable cybersecurity requirements.
  • Ability to perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
  • Experience with the following technologies/solutions: - Cyber Threat Intelligence (CTI)
  • Security Orchestration, Automation, and Response (SOAR) - Security Information & Event Management (SIEM)
  • Zero Trust architecture
  • Must posses an active DoD Secret level security clearance. US Citizenship required.

DESIRED QUALIFICATIONS:

  • Experience with developing/integrating cybersecurity designs for systems and networks.
  • Experience implementing Zero Trust architecture principles.
  • Experience with documenting and addressing organizational in formation security, cybersecurity architecture, and systems security engineering requirements.
  • Experience with developing system security context, a preliminary system security CONOPS, and define baseline system security requirements in accordance with applicable cybersecurity requirements.
  • Experience with documenting the protection needs (i.e., security controls) for information system(s) and network(s).
  • Ability to perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
  • Ability to develop a system security context, a preliminary system security CONOPS, and define baseline system security requirements in accordance with applicable cybersecurity requirements.
  • Experience with securing at least one of the following cloud service provider types: Infrastructure as a Service (IaaS), Software a Service (SaaS), and Platforo1m as a Service (PaaS).
  • Experience with vulnerability scanning tools to include those suppo1iing sup porting operation system, web application, database assessments, skill in translating operational requirements into protection needs (i.e. security controls).
  • Work experience with architecting, engineering, deploying, and tuning of Network Inti1s1ion Intrusion Detection Systems (NIDS).
  • Experience with the following technologies/solutions: - Cyber Threat Intelligence (CTI) technologies - Experience or knowledge of Security Orchestration, Automation, and Response (SOAR) solutions
  • Security Information & Event Management (SIEM)
  • Experience or knowledge of implementing Zero Trust architecture principles work experience
  • Mobile security engineering knowledge or experience to include at least one of the following:
  • Mobile Threat Detection (MTD) - Mobile Device Management (MDM) security controls - Mobile Application Management (MAM) security controls.
  • Ability to provide technical security engineering support for secure authentication.
  • Integrate security tools implementing secure authentication / Single Sign On (SSO)
  • Experience with at least one of the following: Lightweight Directro1y Access Protocol (LDAP), Secure Asser 1i ion Assertion Markup Language (SAML), OpenID Connect (OIDC), and Derived credential integrations.
  • Experience with tuning and optimizing Endpoint Protection Platform (EPP) and Endpoint Detection and Response (EDR) tools supporting anti-malware, host intrusion protection, incident response, and Data Loss Protection (DLP) capabilities.
  • Hands on experience with Windows/Linux operations to include configuration, maintenance, and management.
  • At least one of the following Cybersecurity Certifications: CISSP, CCSP, CCNA, CISSP-ISSAP, CISSP-ISSEP, GIAC, SSCP, Security+ (or equivalent as approved by the Government).

CLEARANCE:

  • Secret minimum