Cyber Security Engineer

This positions is onsite

$120,000 - $140,000 a year

Position Overview:

We are seeking a highly skilled IT Infrastructure Engineer to join our dynamic team. The ideal candidate will play a critical role in designing, implementing, and maintaining secure and compliant IT infrastructure solutions. This role focuses on network security, vulnerability management, compliance adherence, and operational efficiency, ensuring the organization's IT environment meets the highest security standards.

Key Responsibilities:

Infrastructure Security & Compliance:

-Provide engineering and administrative support for security components, including firewalls, data loss prevention (DLP) tools, endpoint security solutions (e.g., Qualys, Tenable Nessus, Splunk, CrowdStrike), content filtering, anti-spam software, and multifactor authentication (MFA) technologies.

-Conduct vulnerability management and basic penetration testing to identify and mitigate security risks.

-Ensure network infrastructure devices are configured according to enterprise security standards and industry best practices.

-Perform internal security audits to maintain compliance with established security baselines.

-Monitor network security logs, analyze potential threats, and respond to incidents in accordance with organizational protocols.

-Standardize and centralize cybersecurity reporting and logging initiatives.

-Ensure compliance with OMB, DISA, US-CERT, NIST 800 series standards, and other applicable federal cybersecurity regulations.

-Provide support for FISMA and OIG audits, including data collection and compliance documentation.

Network & Systems Support:

-Manage firmware and software updates for network security devices, assessing risks before implementation.

-Coordinate with vendors and third-party service providers for support, troubleshooting, and system maintenance.

-Maintain up-to-date documentation of standard security configurations for all network and security devices.

-Oversee patch management processes, ensuring timely application of security updates.

-Prepare and present Daily Security Reports on infrastructure performance, vulnerabilities, and incident response actions.

-Develop and maintain Plan of Action and Milestones (POA&M) for identified vulnerabilities that cannot be immediately mitigated.

Incident Response & Risk Mitigation:

-Support the Chief Information Security Officer (CISO) in responding to security incidents and managing incident response teams.

-Detect and investigate unauthorized network activity, collaborating with security teams to remediate threats.

-Troubleshoot and resolve network security issues while ensuring minimal downtime and impact on operations.

-Track and manage an inventory of network security devices, ensuring proper asset lifecycle management.

Qualifications & Requirements:

-Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field (or equivalent experience).

-5 years of experience in IT infrastructure, network security, and vulnerability management.

-Strong knowledge of firewall technologies, intrusion detection/prevention systems (IDS/IPS), and endpoint security solutions.

-Hands-on experience with cybersecurity tools such as Splunk, Tenable Nessus, Qualys, CrowdStrike, Palo Alto, Cisco, or similar platforms.

-In-depth understanding of NIST cybersecurity frameworks, DISA STIGs, FISMA compliance, and risk assessment methodologies.

-Proficiency in security auditing, penetration testing, and threat detection.

-Strong analytical and problem-solving skills with the ability to troubleshoot complex network and security issues.

-Excellent communication, documentation, and collaboration abilities.

Preferred Certifications (Highly Desirable):

-CISSP (Certified Information Systems Security Professional)

-CISM (Certified Information Security Manager)

-CEH (Certified Ethical Hacker)

-Security+ (CompTIA Security+)

-CCNP Security (Cisco Certified Network Professional - Security)