Junior Cyber Security Engineer

About The Position

Requirements

• Minimum 5 years general experience and 1 years of Security Engineering OR Cyber Ops experience
• High initiative, independence, and ability to produce clear plans in unclear operating environments; articulate, concise, and precise communication ability
• Bachelor's degree in a technical field from an accredited college/university or equivalent experience
• Familiarity and/or real-world experience using Forescout to design, implement and deploy enterprise level solutions on the platform.
• Familiarity with the use and application of enterprise level Data Loss Prevention (DLP) platforms to monitor, detect and prevent unauthorized data usage or movement across systems and networks.
• Experience with Windows Servers and Linux variants (RedHat/CentOS/Ubuntu)
• Experience with at least one of the following: Syslog (rsyslog, syslog-ng, etc), Event log collection, scripting (Python, Perl, Bash, PowerShell), and/or VMWare
• Familiar with the use and application of an enterprise level SIEM for analysis and data collection.
• Familiar with the use and application of FireEye or other enterprise level network malware detection platforms.
• Familiar with multi-tiered network applications, common ports, and protocols used in those communications.
• Ability to perform online research and comprehend attack signatures while comparing them to network traffic to perform a proper analysis of detections
• Strong analytical and organizational skills
• Familiarity or real-world experience with web application firewall (WAF) technology.
• Familiarity or real-world experience with intrusion detection and prevention (IDPS) technology.
• Thorough understanding and knowledge of TCP/IP networking
• Experience in translating daily Cyber Ops activities into standard operating procedures (SOPs) and maintaining accurate records for compliance and future reference.

Nice To Haves

• CISSP-ISSEP, CISSP-ISSAP, GCFW, GSEC, Splunk, or other certifications preferred
• Understanding and experience with virtualization technologies (VMWare) a plus
• Familiarity with implementing DISA STIGs and CIS Benchmarks preferred

Responsibilities

• Administer, configure, manage, patch, upgrade, design, and optimize network and host-based security tools and systems
• Evaluate, install, configure, test, and update network and host-based security systems and hardware
• Develop network and host-based security systems and security operation center knowledge base articles, how-to documents, standard operating procedures, and policies
• Develop scripts or code to automate operations, administration, maintenance, or analysis of data and systems
• Develop, document, and review secure baseline configurations for each technology used within the environment
• Assist in determining authorization boundaries and placement of new systems within the Agency’s enterprise architecture
• Support the development of new systems, and modernization of legacy systems that are in line with Security and Enterprise Architecture requirements
• Design, develop, and maintain detailed security drawings
• Develop alternative system designs and architectures
• Develop and document Solution Architecture Models, Threat Models, and CONOPS Security Operations
• Perform security impact analyses for proposed changes to assigned systems
• Review IT system plans to ensure designs meet governmental standards and provide an appropriate level of protection for client systems and data
• Conduct gap analysis of system requirements and components
• Using artificial intelligence (AI) in producing business and security solutions

Benefits

• Health/Dental/Vision
• 401(k) match
• Paid Time Off
• STD/LTD/Life Insurance
• Referral Bonuses
• professional development reimbursement
• parental leave