The Jr. Cybersecurity Engineer position is responsible for the internal IT infrastructure and device security. This position will assist IT Technicians, System Administrators and other administrators with the delivery of cloud and on-prem infrastructure solutions. This position will bridge the gap between internal and external IT efforts including communicating with customers on select projects. Responsible for implementing NIST 800-171 controls in a small business environment.
Essential Duties and Responsibilities TECHNICAL WRITING
Document system design, configuration changes, IT-related SOPs, and administrative policies and procedures
Create clear and detailed guides for end users and system deployment strategies
Create and revise internal security policies. Explain necessity of policies to leadership
Create technical documentation for systems and applications designed for customers
RESEARCH
Support the research and troubleshooting of IT-related issues
Assist in implementation of IT process improvements
Investigate new technologies and techniques to enhance system performance
Find cost-effective ways to implement organization's IT requirements
CONFIGURE/EVALUATE
Evaluate and complete daily IT tasks and ensure task completion
Configure backup, storage, and recovery procedures
Configure Azure, AWS, O365, Nessus Tenable, Veeam, & Sentinel One security configurations
Perform server/device health checks and proactive issue remediation
Troubleshoot and configure Certificate Authority for the organization's network.
Implement security controls in compliance with NIST 800-171
Configure and deploy new technologies to meet business needs
MONITOR
Perform system monitoring and oversee system monitoring protocols daily
Verify the integrity and availability of hardware, network, and server resources/systems
Analyze system logs and identify potential issues with computer systems
- Review Microsoft Sentinel incidents and respond according to severity
- Evaluate issues and provide custom infrastructure solutions to best resolve the issue
- Potential on-call schedule and off-hours work
SUPPORT
Research, troubleshoot, and recommend solutions to reported or discovered IT issues
Provide end user training where necessary
Respond appropriately to system alerts
Ensure end users can perform tasks required of them
INCIDENT RESPONSE AND MANAGEMENT
Incident Handling: Assist in responding to and managing security incidents, including data breaches, malware infections, and unauthorized access.
Investigation: Help in investigating security incidents to determine the cause, impact, and remediation steps.
Documentation: Maintain detailed records of incidents, responses, and resolutions for future reference and compliance.
CONFIGURATION AND MAINTENANCE OF SECURITY TOOLS
Tool Management: Assist with the configuration and maintenance of security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and antivirus solutions.
Updates and Patches: Support the application of security patches and updates to keep systems secure.
System Hardening: Contribute to system hardening efforts by applying security best practices and configurations.
SECURITY POLICY AND PROCEDURE SUPPORT
Policy Compliance: Assist in implementing and enforcing security policies, standards, and procedures.
Documentation: Help maintain and update security documentation, including system security plans, risk assessments, and compliance reports.
Audit Preparation: Support preparation for internal and external security audits by providing required documentation and evidence.
TECHNICAL SUPPORT AND TROUBLESHOOTING
Support: Provide technical support for security-related issues, including troubleshooting security incidents and system issues.
End-User Assistance: Assist end-users with security-related inquiries and issues, ensuring adherence to security policies.
TECHNOLOGIES
Windows Server (including Hyper-V, Active Directory, Group Policy)
Microsoft Cloud Services (Office 365, Azure, Microsoft Sentinel)
Cisco Networking (including AnyConnect, Umbrella, site-to-site VPN, and Firepower Threat Defense)
Windows, macOS, and Linux workstation troubleshooting and configuration
Endpoint/patch management: Intune, Group Policy, Ansible, Docker
Veeam Backup management
Antivirus management
Sentinel One Management
Tenable Vulnerability Management
Zabbix Insight Monitor
Education: Bachelor's degree in a relevant field, such as Computer Science, IT, or Systems Engineer
Minimum Qualifications (Knowledge, Skills, and Abilities) Completed BSc Cybersecurity
CySA+ Certification, Security +
Active Directory: 2 years (Required)
OS Administration: Windows 10, Windows Server, Linux (Ubuntu, Debian), MacOS: 2 years (Required)
Network Administration: 2 years (Required)
Cisco ASA configuration & maintenance: 2 Years (preferred)
Azure & O365 Administration: 2 years (preferred)
Microsoft Sentinel / SIEM: 2 years (preferred)
Hyper-V Management
Intune MDM
Backup & Recovery: 2 years (preferred)
Scripting Languages: Python, PowerShell
Familiarity with regulatory compliance (CMMC 2.0/NIST 800-171)
Resourcefulness and problem-solving attitude
Passion for Cybersecurity: Demonstrated interest in cybersecurity and a commitment to ongoing professional development.
Adaptability: Ability to adapt to new technologies and changing security threats
Office environment: On-site
Work Hours: 9 - 5 Monday to Friday
Weekend work and overtime may be required. Candidate should be prepared to perform weekend work and/or overtime to meet the needs of the company.
Physical Demands and Work Environment Able to lift up to 50 lbs
Work in a business office space that includes a lab and production environment
Adhere to all safety and regulatory protocols
Integrity Requirement This role involves handling sensitive information and making critical decisions. We expect the highest standards of honesty, responsibility, and ethical behavior. Candidates must demonstrate unwavering integrity in all interactions, as it is essential for success in this position and foundational to our company's culture and reputation.
Benefits 401(K) plus matching
- Health Insurance
- Dental Insurance
- Vision Insurance
- Short-term / Long-term Disability
- Life Insurance
- Unlimited PTO
- Overtime Pay
CTG is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.