Information System Security Engineer

Description:

Required:

Client is searching for talented and experienced Security Engineering professionals to join the Mission Networks Enterprise Security Team as a Level 3 Information Security Systems Engineer (ISSE).

• This role may require weekend, after-hours, or on-call rotations to meet program requirements and/or ongoing program support.

• This position may require limited travel in an emergency

• This position requires the ability to obtain FAA Public Trust Suitability

Key Responsibilities:

• Develop and enforce security policies, procedures, and measures in alignment with the program's cybersecurity strategies.

• Design, implement, and manage security solutions, including but not limited to firewalls, intrusion detection systems, endpoint protection, and encryption tools.

• Develop, maintain and publish technical documentation in accordance with Systems Engineering processes.

• Act as a Security Support Engineer for State, Federal and commercial customers.

• Provide technical guidance and support to less experienced team members.

• Stay abreast of the latest security trends, threats, and control technologies.

• This position will require weekend, after hours, and on-call support to meet program requirements.

Qualifications & Education:

• BS/BA (or equivalent) degree in Computer Science, IT Security or STEM related field.

o Five or more years of experience in Information Security, Network Engineering, or System Administration

• In lieu of a bachelor’s degree, a candidate must have ten plus years of Security network or system engineering experience.

• Strong understanding of system administration including Windows and Linux operating systems.

• Strong knowledge of Cisco network infrastructure, including LAN/WAN, VPNs, routers, and switches.

• Strong project engineering experience in security-related environments.

• Excellent analytical and problem-solving skills.

• Effective communication and interpersonal skills.

• Experience with security frameworks (NIST SP800-53, NIST SP800-171, ISO 27001, or FISMA) and risk management methodologies.

PREFERRED TECHNICAL SKILLS

• Experience administering Next Generation Firewalls (NGFW) (Fortinet, Cisco, or Palo Alto).

• Experience mitigating DDoS floods with on-premise and cloud-based solutions.

• Experience deploying Intrusion Detection/Prevention System configurations and providing technical support.

• Experience administering Security Information and Event Management (SIEM) infrastructure.

• Data Loss Prevention systems configuration, deployment and technical support (Varonis and Manage Engine Audit Plus).

• Experience with deployment and administration of Enterprise host intrusion and detections systems (Carbon Black or Sentinel One preferred)

Preferred Certifications:

• CISSP (Certified Information Systems Security Professional)

• CCNA (Cisco Certified Network Associate)