Cyber Engineer/ISSE
US-FL-Hurlburt Field
Careers (External)
Req #: 6096
Type: Full-Time
|
|
|||||||||||
|
||||||||||||
Overview: GovCIO is currently hiring for a Cyber Security Engineer / Information Systems Security Engineer (ISSE) to support the 39th Information Operations Squadron (39 IOS). This position will be located at Hurburt Field Florida and will be an onsite position. Responsibilities: Activities may include correlation of threat data from various sources to establish the identity and modus operandi of hackers active in client's networks and posing a potential threat. Provides the customer with assessments and reports facilitating situational awareness and understanding of current cyber threats and adversaries. Develops cyber threat profiles based on geographic region, country, group, or individual actors. Produces cyber threat assessments based on entity threat analysis. May provide computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments. Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption. Work Activities * Manage Security Assessment and Authorization (SA&A) package: Create, draft, and maintain SA&A document * Provide assessment support working toward an approved Authority to Operate (ATO) * Comply with USAID, Government and industry Information Assurance (IA) standards, policies, guidelines, and best practices * Responsible for Systems security, testing and system accreditation activities * Apply information technology security principles and configure security settings, complete weekly system audit, apply security patches and conduct reviews * Assist in the development and implementation of government approved information security procedures and plans for the operation of multiple networked and standalone classified computers, and coordinate government agency approvals. * Consult on the design, development, integration, and analysis of classified computing systems with the project design and implementation staff * Assist with self-inspection reviews * Assist in conducting comprehensive investigation of security incidents * Collaborates with intrusion analysts to identify, report on, and coordinate remediation of cyberthreats to the client. * Provides timely and actionable sanitized intelligence to cyber incident response professionals. * Leverages technical knowledge of computer systems and networks with cyber threat information to assess the client's security posture. * Conducts intelligence analysis to assess intrusion signatures, tactics, techniques and procedures associated with preparation for and execution of cyber attacks. * Researches hackers, hacker techniques, vulnerabilities, exploits, and provides detailed briefings and intelligence reports to leadership. Qualifications: High School with 9+ years (or commensurate experience) Required Skills and Experience * Clearance Required: TS/SCI * Minimum Certification Requirements: 8570 Information Assurance Technical (IAT) Level II certification. * Must have a minimum of four (4+) years of experience with all phases of Information Assurance and accreditation processes, securing IT systems and services using Government and industry IA standards, policies, guidelines, and best practices. * Demonstrated experience successfully managing information security risks to include completing the entire A&A process including receiving Authority to Operate (ATO) for the cloud. * Experience supporting vulnerability scanning tools (g. SCAP, ACAS, HBSS) * Experience performing Security Operations in virtual environments with 10K+ endpoints * Working knowledge of network security * 4+ years of experience producing IAT-Related documentation and governance materials * US Citizenship Preferred Skills and Experience * Bachelor's with 4+ years * Understanding of RMF process * CISSP certification preferred * Zero Trust Architecture * NextGen Firewalls, specifically Palo Alto * Encryption and PKI * Dynamic Access Control / Identity Management * Splunk (or other SIEMs including ELK, LogRhythm, or Google Chronicle) * Cisco Network Security (including Cisco Tetration, Cisco ISE) * AWS/Azure/Google cloud security functions (e.g., Azure Security Center) * Endpoint Device Health and Forensics * 3+ years of Identity and Network security design and implementation * Understanding of Trusted Internet Connection version 3 standards and migration path * Other certifications preferred: CCSP, CISM, GSLC, CISA, CASP, or equivalent from issuing bodies: (ISC) , Comp TIA, ISACA, GIAC, CISCO, EC-Council, IAPP, or equivalent. * Kibana and Logstash * DISA STIG Implementation * Microsoft Active Directory and Group Policy Management * VMWare vSphere, vCenter, Aria, and Horizon View * HBSS & ACAS certification/training * Windows Server, Windows Workstation and VMWare #JP #Maverick #NSS
Share this job:
