Posted in

Sr. Information Systems Engineer III

Sr. Information Systems Engineer III

CompanyMetroStar
LocationWashington, DC, USA
Salary$Not Provided – $Not Provided
TypeFull-Time
Degrees
Experience LevelExpert or higher

Requirements

  • Active TS/SCI clearance with CI poly (REQUIRED)
  • A minimum of 10 years of experience as a cybersecurity engineer with a specialization in designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.
  • A working knowledge with creating SMG’s (Security Management Guides)
  • A working knowledge with AWS services, their usage, APIs, CLI/SDKs and patterns
  • Expert in AWS IAM policy creation, including condition keys and ‘not’ usage
  • Expert-level skills in specifying and implementing log collection into tools such as Splunk, and performing querying and analysis of aggregated logs to identify security-relevant anomalies or risks
  • Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP).
  • Demonstrated and repeat experience implementing controls for cloud, container, and DevSecOps services and solutions from IL5 to IL6+ on NIPR, SIPR, and JWICS.
  • Strong understanding of network protocols, operating systems, and infrastructure components.
  • Expert proficiency in incident response, security incident handling, and forensic analysis techniques.
  • Expertise with security tools such as Fortify, Acunetix, and Prisma Cloud
  • Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
  • CISSP or equivalent certification to support DoD 8140 requirements.

Responsibilities

  • Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization’s networks and systems remain secure.
  • Conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications.
  • Develop and implement incident response plans to effectively address security breaches, incidents, and breaches.
  • Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures.
  • Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents.
  • Analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks.
  • Work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity.
  • Maintain thorough and accurate documentation of security processes, procedures, and configurations. Prepare detailed reports on security findings, incidents, and actions taken.

Preferred Qualifications

    No preferred qualifications provided.