Senior Cyber Security Engineer - Government Sector

Location: Oakton, VA
Date Posted: 01-13-2017
Skilled in security requirements, design, planning, selection, implementation and testing of security systems and controls and network.
 

Essential Skills and Responsibilities

  • Wide area network (WAN) and Local Area Network (LAN) security design
  • Security architecture exposure
  • Firewalls (Next Generation Firewalls, application inspection firewalls, host based firewalls, etc.)
  • Deep understanding of DMZs/Enclaves
  • Virtual Private Networks (VPN)
  • Intrusion Detection Systems/Intrusion Prevention Systems/Host Intrusion Prevention System (IDS/IPS/HIPS)
  • Network Access Control systems (NAC)
  • Two Factor Authentication (2FA)
  • Security Information and Event Monitoring Systems (SIEM)
  • Compliance and vulnerability scanning tools (such as Nessus and McAfee Vulnerability Manger)
  • Threat Detection and Prevention Devices (such as FireEye HX)
  • VMWare security enhancements
  • Disaster recovery planning
  • Incident Response
  • Encryption of data at rest and in transit
  • Public Key Infrastructure (PKI)
  • Security impact analysis of hardware/software change requests
  • Understanding of addressing security and privacy controls as outline in NIST 800-53
 

Essential Requirements and Qualifications

  • US Citizenship and the ability to obtain a secret security clearance
  • 10+ years in the IT security architecture and implementation and/or the IT security field
  • 7+ years in the IT security architecture and implementation and/or the IT security field.
  • Knowledge of Department of State’s Foreign Affairs Manual (FAM) and Foreign Affairs Handbook (FAH)
  • Understanding of NIST 800-53 security and privacy controls
  • Hands on-experience on how to configure and operate the latest in security system and devices such as IDS/IPS, SIEM, NAC, next generation firewalls, two-factor authentication, vulnerability scanners, and threat detection appliances
  • Experience and knowledge of comparing and selecting the latest in security system and devices such as IDS/IPS, SIEM, NAC, next generation firewalls, two-factor authentication, vulnerability scanners, and threat detection appliances.
  • Experience with at least 3 of the following sufficient to explain how to configure it: Nessus, McAfee Vulnerability Manager, Cisco SourceFire, Snort, ArcSight, Metasploit, Wireshark, Splunk, Palo Alto, RSA Two-Factor Authentication, Palo Alto Firewalls, Cisco ASA, FireEye, Fortify, threat detection products, and other security related products.
  • Ability to write clear, convincing purchase justifications
Essential Education and Certifications
  • Bachelor’s degree in a technical field
  • CISSP, CISA, or other advanced certification - Relevant certification (CISSP, GIAC, Security+, CEH, etc.)
 
Best Regards,
Tom Allen
Tech-Connect
t.a@tech-connectllc.com
 
or
this job portal is powered by CATS