Cybersecurity Engineer, Senior (CS)

About The Position

Requirements

• 8+ years’ experience as a cybersecurity engineer and familiarity with cybersecurity principles, concepts, and technologies
• Experience with pen testing, process and scan scripting, and advanced troubleshooting of cyber related tools and functions
• Experience with industry standard tools for functions like SIEM, IAM, firewalls, IDS/IPS, etc.
• Solid understanding of cybersecurity principles and best practices for a multi-cloud enterprise environment.
• Experience with cybersecurity assessments and frameworks
• Experience with vulnerability management
• Ability to identify security gaps and vulnerabilities and create remediation plans.
• Ability to manage time and priorities effectively to achieve optimal results.
• Strong critical thinking, problem solving and root cause analysis skills
• Ability to create effective procedure documents and workflow diagrams
• Excellent verbal and written communication
• Experience with Cybersecurity tools like Splunk, ePO, Carbon Black
• Must be a US Citizen or Permanent Resident. (Authorized to work in the US without current or future visa sponsorship.)
• Must be able to pass a Federal background check
• Must be determined suitable for federal employment.

Nice To Haves

• Scripting and automation experience (e.g. PowerShell)
• Experience implementing cloud security and compliance standards, frameworks, and controls (e.g., SOC 2, FedRAMP, NIST SP 800-53r4, HIPAA) for cloud service delivery models (IaaS, PaaS, SaaS)
• Windows and Linux exploitation tools and techniques
• Experience with both AWS and Azure clouds
• Incident response (IR) and digital forensic experience
• Healthcare IT background
• Experience conducting or participating in security audits
• Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) or other advanced Cybersecurity certifications
• 10 + years experience as a cybersecurity engineer and familiarity with cybersecurity principles, concepts, and technologies

Responsibilities

• Deploys advanced knowledge of Cyber tools and the ability to teach, mentor, and lead teams and individuals on the use of those tools, best practices, and remediations resulting from that use.
• Uses pen testing, process and scan scripting, and advanced troubleshooting of cyber related tools and functions
• Uses industry standard tools for functions like SIEM, IAM, firewalls, IDS/IPS, etc.
• Provides subject matter expertise on the architecture, information security solutions and countermeasures, policies and procedures related to enterprise information security.
• Deploys and leverages security tools and technology to monitor infrastructure and operations
• Manages incidents related to the cybersecurity tools and operations
• Conducts systems analysis and evaluations
• Collaborates with internal teams to update and maintain the System Security Plans and Security Assessment Reports and ensure that the changes are reviewed and approved where required.
• Partners with engineers to interpret and map compliance requirements to control implementation and across our products.
• Works with internal teams to manage FedRAMP authorized environments while educating them about the FedRAMP controls that impact their work.
• Supports internal and third-party audits for compliance with FedRAMP, SOC2, HIPAA, and other applicable frameworks