Cyber Security Project Engineer

About The Position

Requirements

• Active TS/SCI with polygraph.
• Bachelors in Computer Science or a related field and 14 years or more experience; Masters 12 years or more experience. Note: Additional years experience may be substituted in lieu of a degree.
• Demonstrated experience with configuring and tuning hybrid multi-cloud security and compliance tools such as AWS GuardDuty, Azure Defender, or Google Security Command Center.
• Experience generating and managing hybrid multi-cloud security policies, alerts, logging and compliance checks.
• Ability to implement zero-trust security models through least privilege access, segmentations, and continuous verification to manage internal and external threats.
• Experience performing daily security monitoring using cloud logs, alerts, and dashboards with tools like Azure Sentinel, AWS CloudWatch, and Google Cloud Logging.
• Ability to respond to security incidents, including containment, investigation using SIEM and other security tools, and incident root-cause analysis and remediation with cloud engineers and clients.
• Demonstrated experience conducting rapid forensic review and vulnerability assessments using tools like Rapid 7 and NMAP.
• Ability to apply security and compliance controls based on industry standards and frameworks such as NIST, ISO, CIS and Customer-specific guidelines.
• Familiarity with A&A documentation including control narratives, evidence packages and supporting POA&M remediations.
• Ability to communicate complex security concepts to technical and non-technical stakeholders, including clients and partner security offices.

Nice To Haves

• Experience reviewing cloud system designs for security considerations and guiding engineering and development teams toward secure patterns.
• Ability to add security checks to build pipelines using GitHub or GitLab.
• Experience with Python, PowerShell, or cloud functions.
• Working knowledge of EKS/AKS/GKE and native admission controls.
• Certified Cloud Security Professional (CCSP) or Security+.

Responsibilities

• Physical and environmental protection
• Personnel security
• Incident handling
• Security training and awareness in regard to information security
• Support the maintenance, deployment, and security posture of deployed infrastructure and technical solutions
• Working with the ISSM and ISO in monitoring the information system(s) and its environment of operations to include developing and updating the authorization documentation and implementing configuration management across authorization boundaries
• Assessing security impacts of changes and make recommendations to the ISSM