Enterprise Security Engineer Job ID# JAPOC0077
Location: NW Washington, DC
Clearance: Ability to attain a Public Trust
Salary: 130,000-145,000
Position Responsibilities
-
Secures enterprise information by determining security requirements, evaluating business needs, and adhering to Federal and industry security standards
-
Improves security posture by conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates and developing policies, and procedures.
-
Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions, improving processes and mentoring team members. Working with other client teams to ensure cybersecurity standards, policies, and procedures are incorporated into their design and processes.
-
Contributes to security strategy and overall security posture by identifying security gaps; evaluating and implementing enhancements.
-
Design and engineer security solutions that include PIV integration, HSM/CA/PKI implementation, Virtual Machine hardening, improving Account Management security standards within Active Directory, and hardening Windows desktops, laptops and servers.
-
Assesses technology, process and policy gaps in an existing security program and recommend improvements.
-
Contribute to CDM solution architecture to achieve desired automated continuous monitoring solution, while minimizing risk.
-
Conduct security authorization packages based on NIST standards for general support systems and major applications.
-
Conduct Security Impact Analyses (SIAs)
Position Requirements
-
8+ years of experience in an information security, IT/cyber engineering, or risk management role supporting security programs, security architecture, or software and system development projects in complex enterprise environments
-
Experience with providing guidance for data protection based on data sensitivity and associated business risk
-
Experience working with security authorization requirements, enhancing the security risk posture and analysis/reporting of IT security metrics
-
Knowledge of common cyber security vulnerabilities and experience guiding project teams throughout the remediation effort for discovered vulnerabilities
-
Ability to effectively collaborate with senior CIO and CISO executives as a trusted advisor to identify requirements and drive compliance with approved standards
-
Ability to think strategically and act tactically
-
BA or BS degree in CS, Engineering, Information Systems, or a related technical field preferred; MA or MS degree in CS, Information Systems, or a related technical field a plus
-
CISSP, GCIH, GPEN or other industry certifications
Candidate must be able to work on-site at client sites located in Washington, D.C. and must be able to obtain a U.S. Federal government client badge and may be required to pass a government background investigation.
To apply send resume to Norris@FlexSR.com
Attn ESE (JAPOC0077)