Senior Cyber Security Engineer

Overview:
CSRA is looking for a Sr. Cyber Security Engineer that designs, develops, or recommends integrated security system solutions that will ensure proprietary/confidential data and systems are protected to our federal client located in Arlington, VA. The Sr. Cyber Security Engineer conducts incident/event investigation and analysis. Assesses and detects network vulnerabilities. Maintains security system infrastructure. Provides technical engineering services for the support of integrated security systems and solutions. Participates with the client in the strategic design process to translate security and business requirements into technical designs. Provides technical support to IT team. Supports security posture assessments. Maintains awareness of cyber trends, threats, and vulnerabilities. Develops, integrates and maintains security toolsets. Leads in security engineering, validation testing of system configuration/hardening. Understands current computer technologies and technical security requirements as applied to the design, development, evaluation, and integration of computer systems. Conducts certification test analysis and technical evaluations for vulnerabilities and must possess the ability to recommend and apply security countermeasures to mitigate identified risks. Mentors junior staff.
Responsibilities:
The Sr. Cyber Security Engineer will perform incident detection and analysis to contribute to the customer's overall Computer Network Defense (CND) capability; make containment, eradication, and recovery recommendations for detected incidents; and properly report incidents by following the US-CERT incident reporting guidelines, and participate in other communication and information sharing initiatives as necessary.
Timely mitigate and remediate computer security vulnerabilities, phishing, malware, and forensic investigations.
Preserve and forensically analyze data from electronic data sources, including laptop and desktop computers, servers, and mobile devices.
Analyze and test software applications and enterprise-level security solutions. Support Continuous Diagnostic and Monitoring (CDM) activities.
Provide advice and guidance on the implementation of network/system security in accordance with mandates through the application of information assurance vulnerability alerts (IAVAs), Security Technical Implementation Guides, and other directives; Support the security review of IT systems and architecture as well as security policy development on IT service use, access, refresh, and configuration control, etc.
Implement best-practice security procedures, standards, and guidelines; Mentor and guide junior and midlevel engineers in developing skills.
Produce measurements and metrics and report project status as well as develop and refine standard operating procedures.
Qualifications:
Required Skills:
Bachelor's degree in Computer Science/Engineering/Information Security and 6-9 years of hands-on work experience in Information Technology (IT) security. Desired Education: Masters.
Exposure to computer networking and infrastructure in multi-process platform environment (UNIX, Linux, Mac OS, Microsoft, Solaris) and mobile devices
Understanding of security policy NIST FISMA and other laws, regulations, industry standards, and ethical requirements related to information security and privacy.
Experience with various security tools.
Experience with incident response/detection
Strong oral and written communication skills, able to presenting complex technical matters clearly and concisely with audiences ranging from peers to senior management.
Preferred Skills:
Scripting experience with PowerShell or Python.
Strong organizational and documentation skills
Exposure to a few or of the following security tools:
Tenable Security Center/Nessus Scanner, PVS
Host Intrusion Prevention (HIPS), VirusScan (VSE), Data Loss Prevention (DLP), or Application Control
McAfee/Nitro SIEM
FireEye HX NX
Suricata/Security Onion
Encase - Forensics
Core Insight or Impact ? phishing campaigns
Level one support of ForeScout, RSA Archer, Splunk, Fuse, uCMDB
One or more of the following certifications:
Security+ - CompTIA
GIAC Security Essentials (GSEC )
Certified Ethical Hacker (CEH)
CISSP, CISA or CISM
#Gdjobs
#dicepost
Notice:
CSRA is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Options:

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Senior Cyber Security Engineer - 00354
Norfolk, VA Virginia State Government
Staff/ Senior Cyber Security Engineer
Mc Lean, VA The MITRE Corporation
Staff/ Senior Cyber Security Engineer - Mobile...
Mc Lean, VA The MITRE Corporation
Senior Cyber Security Engineer
Springfield, VA ManTech International Corporation
Senior/Lead Cyber Security Engineer
Mc Lean, VA The MITRE Corporation