Title: Security Engineer-Software Defined Perimeter

Location: Reston, VA

Clearance: Current TS/SCI with the ability to obtain and maintain CI Poly

Responsibilities:

• Performs security engineering, develops security architecture artifacts, oversees penetration testing and security exercises, supports hybrid cloud and network security, and automates security compliance for LAN/WAN solutions deployed in a hybrid cloud environment
• Responsible for engineering security into LAN and WAN system design, performing internal cyber hunt activities, and tailoring Zeek-based security sensors to feed SIEM and SOAR Splunk components
• Responsible for engineering security into WAN/LAN Monitoring Fabric tools such as Arista, Cisco, and Extreme Networks
• Responsible for collaborating in engineering and modeling security using networking tools such as Forward Networks
• Responsible for engineering network TAP solutions such as Netscout, cPacket, Gigamon, etc., in support of WAN/LAN hosted in a Hybrid-cloud environment
• Identifies, assesses, and presents options for meeting the functional and technical requirements, including hardware and software updates or upgrades
• Deploys and operates cybersecurity tools
• Uses software-defined tooling such as Terraform and Ansible to implement DevSecOps pipelines to deliver security tooling
• Leads performance of penetration testing and security exercises using tools such as CounterStrike, CoreImpact and Mandiant Security Validation tool
• Secures network systems and participates in vulnerability scans using Tenable Nessus
• Utilizes tools such as Zeek and ELSA to perform network security monitoring
• Implements solutions to automate security compliance of systems
• Collects and reviews security analytic measures and oversees security incident detection activities
• Responsible for developing high-level system design diagrams
• Ensures that the operating environment is security compliant
• Evaluates IT enclave systems and assess risk posture and system security findings and recommend mitigation
• Evaluates analytical and systematic problems of workflows, organization, and planning and develop appropriate corrective action

Requirements:

• Bachelor's Degree and 8 years of relevant experience an additional 4 years' experience can be substituted in lieu of a degree
• Must possess current DoD 8570 IASAE Level II certification
• Experience working in a DoD or Intelligence Community Environment desired
• Current active TS/SCI clearance, with the ability to obtain and maintain a CI polygraph

Equal Opportunity Employer/Veteran/Disabled