Cyber Security Engineer III

About The Position

Requirements

• Must be a US citizen, possess a DoD Secret clearance. Minimum vetting Tier 5(T5)-Single Scope Background Investigation (SSBI)
• Active DoD 8570 IAT Level 2 or Level 3 certification for compliance, including at least one of the following certifications in good standing: CompTIA CISA+, CompTIA Security, EC-Council CND, CCNA Security, CISSP, GSEC, SSCP
• Computing Environment Certification
• Bachelor’s degree and 8+ years of Information Technology or Cybersecurity related experience
• Subject matter expertise in the Tanium suite of tools, with proven experience designing, configuring, deploying, monitoring, and optimizing Tanium in a distributed, complex enterprise
• Experience maintaining, administering, and troubleshooting Tanium servers and services
• Experience delivering Tier-3 cybersecurity support, including resolving critical issues, mentoring junior personnel, and performing post mortem analysis to identify, document, and implement lessons learned within a continuing quality improvement framework
• Comprehensive awareness of IT operations business requirements, with the ability to deliver cyberhardening and cybersecurity requirements while not degrading system availability, functionality, or performance
• Ability to communicate effectively with government and contract leadership, while conveying highly technical concepts to both technical and nontechnical stakeholders
• Capacity to thrive in a complex, fast paced environment with competing demands while delivering consistent, high-quality commitment to mission-critical systems and solutions
• Excellent analytic skills, including qualitative and quantitative data analysis to support and defend data-driven decision-making regarding system threats, vulnerabilities, and risk
• Knowledge of DoD cybersecurity policies, practices, and requirements
• Strong organizational skills

Responsibilities

• Serve as the ACEM (Automated Continuous Endpoint Monitoring) /Tanium Engineer
• Lead and manage the continued deployment, expansion, and day-to-day maintenance and administration of automated continuous endpoint monitoring (ACEM) operations
• Maintain operational proficiency of ACEM servers, modules, and content
• Build, configure, and maintain ACEM systems according to DISA STIGs, Security Requirements Guides (SRG), and applicable DoD orders and directives
• Implement DCDC-required and/or new DHRA-acquired Tanium modules to extend monitoring and mitigation capabilities
• Engineer, implement and maintain user identity and access solutions into Tanium architecture.
• Create and maintain standard operating procedures (SOP) and tactics, techniques, and procedures (TTP) that comprise step-by-step guidelines for recurring operations
• Create change order tickets to ensure work is approved, performed, tested, and documented, in support of systems development life cycle (SDLC) and ITIL best practices
• Track, measure and evaluate end point security posture across the enterprise
• Mentor other analysts and engineers in the Information Protection Division
• Candidate may also provide general technical cybersecurity support in the areas of vulnerability assessment, risk assessment, network security, and security implementation. Additional general duties include implementation and support for protecting the confidentiality, integrity and availability of sensitive information; providing input into the design of IS contingency plans; and conducting testing and audit log reviews to evaluate the effectiveness of current security measures.