Washington, DC

Sr. Cyber Security Engineer



Job Description

Role: Sr. Cyber Security Engineer
Location: Remote
Duration: 6+ Months

Top skills:
Serves as the lead for day-to-day threat identification and vulnerability/risk analysis. QRadar, Digital Guardian, Netskope, Imperva, FireEYe and Netwitness

Requirement:
The core focus for this consultant will be Cyber Security Engineering. Consultant will be responsible for protecting system boundaries and ensuring that IT systems, applications and network devices are hardened against threats. He/She supports the SOC as an advanced escalation point identifying and addressing potential information security incidents. He/She will utilize exceptional communication skills to interact with both technical and non-technical colleagues, and to provide technical leadership for colleagues and the organization.

Responsibilities:
• Serves as the lead for day-to-day threat identification and vulnerability/risk analysis.
• Perform advanced event and incident analysis, including baseline establishment and trend analysis.
• Remain current on cyber security trends and intelligence in order to guide the security analysis & identification capabilities of the SOC team.
• Perform threat, vulnerability, risk assessments, and investigations.
• Responsible for the engineering, design, implementation, maintenance, analysis, and administration of Client security technologies.
• Participate in and lead projects for security requirements, network design reviews, and security testing for Client network, systems, and other IT teams.
• Coordinate with Client systems, network and development team to ensure network security standards are being followed and implemented correctly.
• Evaluate new security technology & emerging threats and provide recommendations to strengthen Client information security environment.
• Coordinates the handling and resolution of incidents of security breach.
• Provides analytical and technical security recommendations to other team members and other Client users.
• Identifies requirements, based upon need or as the result of a security issue that puts organizations systems at risk.
• Experience with vulnerability scanning, and understands how to analyze discovery scan data and vulnerability data to determine unusual use configurations, discovery of aged software, and proper identification of high-severity vulnerabilities.
• Proactively conduct security threat analysis and recommend solutions to manage network, systems and application vulnerabilities.
• Review and analyze new systems (hardware and software) and provide recommendations concerning their security.
• Install, configure, and maintain Client information security technologies.
• Active member in ODST to recommend effective security configurations and architecture.
• Liaison to the ODST Teams to effectively communicate and architect security solutions.
• Develops documentation to support ongoing security systems operations, maintenance and specific problem resolution.
• Provide support on regular work days to troubleshoot escalated issues and apply production changes where needed.

Qualifications:
• Bachelor's degree in Computer Science, Information Technology or similar field, or equivalent experience.
• Minimum of 5+ years of information security experience with a focus on network, application and architecture.
• Minimum of 5+ years of security operations center experience with security monitoring and incident response.
• Specific Information Security related experience including encryption, IDS/IPS, Firewalls, SEIMs (specifically QRadar) and Log Management, syslog analysis, HTTP and TCP/IP analysis, DLP (specifically Digital Guardian), CASB (specifically Netskope), Web Application Firewall (specifically Imperva), Network Security (specifically FireEye and Netwitness), and vulnerability assessment.
• Knowledge of email security gateway, cloud and virtual technologies.
• In-depth knowledge of mapping business requirements to technology and ability to identify security gaps at the architecture level.
• Knowledge of common security vulnerabilities such as: XSS/CSRF, SQL Injection, Buffer Overflow, and DoS attacks.
• Knowledge of the HTTP protocol, including analyzing the request/response.
• Demonstrated experience with commercial and open source testing and auditing tools such as Paros, BURP, nmap, and Metasploit.
• Proven ability to clearly document and communicate security findings, risk description, risk level, and recommended solutions to stakeholders.
• Understanding of networking, operating systems such as Linux and Windows.
• Demonstrated knowledge of security industry standards and best practices such as OWASP and NIST.
• Excellent interpersonal, analytical and problem-solving skills.
• Proven ability to manage multiple tasks/projects.

Preferred Qualifications:
• GCIA, GNFA, CISSP, CEH, or other relevant certification preferred.
• DLP Technology- Digital Guardian
• SIEM Technology – Qradar
• CASB Technology – Netskope
• Web Application Firewall – Imperva
• Network Security – FireEye and Netwitness

Recommended Skills

  • Administration
  • Application Firewall
  • Architecture
  • Auditing
  • Buffers
  • Business Requirements
Click here to apply
Browse other jobs
« 100% Remote Product Marketing Manager
Front Desk Receptionist »