Enterprise Security Engineer                   Job ID# JAPOC0077

Location: NW Washington, DC

Clearance: Ability to attain a Public Trust

Salary: 130,000-145,000

Position Responsibilities

  • Secures enterprise information by determining security requirements, evaluating business needs, and adhering to Federal and industry security standards

  • Improves security posture by conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates and developing policies, and procedures.

  • Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions, improving processes and mentoring team members. Working with other client teams to ensure cybersecurity standards, policies, and procedures are incorporated into their design and processes.

  • Contributes to security strategy and overall security posture by identifying security gaps; evaluating and implementing enhancements.

  • Design and engineer security solutions that include PIV integration, HSM/CA/PKI implementation, Virtual Machine hardening, improving Account Management security standards within Active Directory, and hardening Windows desktops, laptops and servers.

  • Assesses technology, process and policy gaps in an existing security program and recommend improvements.

  • Contribute to CDM solution architecture to achieve desired automated continuous monitoring solution, while minimizing risk.

  • Conduct security authorization packages based on NIST standards for general support systems and major applications.

  • Conduct Security Impact Analyses (SIAs)

 

 

Position Requirements

  • 8+ years of experience in an information security, IT/cyber engineering, or risk management role supporting security programs, security architecture, or software and system development projects in complex enterprise environments

  • Experience with providing guidance for data protection based on data sensitivity and associated business risk

  • Experience working with security authorization requirements, enhancing the security risk posture and analysis/reporting of IT security metrics

  • Knowledge of common cyber security vulnerabilities and experience guiding project teams throughout the remediation effort for discovered vulnerabilities

  • Ability to effectively collaborate with senior CIO and CISO executives as a trusted advisor to identify requirements and drive compliance with approved standards

  • Ability to think strategically and act tactically

  • BA or BS degree in CS, Engineering, Information Systems, or a related technical field preferred; MA or MS degree in CS, Information Systems, or a related technical field a plus

  • CISSP, GCIH, GPEN or other industry certifications

 

Candidate must be able to work on-site at client sites located in Washington, D.C. and must be able to obtain a U.S. Federal government client badge and may be required to pass a government background investigation.

 

To apply send resume to Norris@FlexSR.com

Attn ESE (JAPOC0077)

www.CyberSecSource.com