Tenable Information Security Engineer, Senior
About The Position
Tenable Information Security Engineer, Senior The Opportunity: Warnings about cyber threats are everywhere and the constantly evolving nature of these threats can make understanding them seem overwhelming to government agencies. In all of this “cyber noise”, how can these organizations understand their risks and how to mitigate them? The answer is you – an information security risk specialist who will break down complex threats into manageable plans of action. As an information security risk specialist on our team, you’ll use your experience to work with civilian regulatory government agencies to discover their cyber risks, understand applicable policies, and develop a mitigation plan. You’ll review technical, environmental, and personnel details from SMEs and engineers to assess the entire threat landscape. Then, you’ll guide your client through a plan of action with presentations, white papers, and milestones. You’ll work with your client to translate security concepts, so they can make the best decisions to secure their critical infrastructure and mission critical systems. This is your opportunity to act as an information security subject matter expert while broadening your skills in developing and maintaining security tools in an enterprise environment. Join us as we protect our nation's cyber infrastructure. Join us. The world can't wait.
Requirements
- Experience with maintaining, optimizing, and troubleshooting a Tenable solution deployed in a UNIX environment, including Tenable.sc, Tenable.io, NNM, LCE, Nessus Manager, Agents, and Scanner
- Experience with deploying, configuring, and maintaining Nessus agents in an enterprise environment, including the application of best practices for schedules and integration with Tenable.sc
- Experience with supporting upgrades of Tenable.sc, Nessus Manager, Nessus scanners, LCE, and PVS
- Experience with performing security compliance and vulnerability assessments, including developing and applying STIG or CIS baselines for various operating systems, including Windows or RHEL and CentOS
- Experience with configuring authentication methods, including PIV, SAML and LDAP, and development of role-based access controls (RBAC)
- Experience with performing enterprise-wide networking scanning, agent scan, container, including credential scan of UNIX, Windows, Network devices, and VMware
- Ability to provide design and architectural guidance for tool capabilities during technical stakeholder meetings
- Ability to prepare and maintain solution documentation, including security, configuration, and CONOPS
- Ability to obtain a Secret clearance
- Bachelor's degree
Nice To Haves
- Experience with using Tenable APIs, integrating tenable products, and automating daily activities
- Experience with creating dynamic asset, dashboards, and reports
- Experience with administering Windows and UNIX in an enterprise environment
- Experience with using security tools and technologies, including Domain Naming Service (DNS), Active Directory (AD), Windows PowerShell, Windows credential stores, Microsoft Certificate Authority, Python, REST, JSON, SOAP, Shell Scripting, TCP stack, and Wireshark
- SANS GIAC or CISSP Certification
Benefits
- At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care.
- Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values.
- Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs.
- Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
