About the position
At Agile Defense we know that action defines the outcome and new challenges require new solutions. That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next. Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility—leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation's vital interests. The Senior Security Engineer will support a government agency in the achievement of strategic goals and objectives related to the ongoing execution and maturity of its cybersecurity and security operations center programs. Agile Defense is currently seeking a talented Security Engineer to support an Agency-level enterprise cyber program. To support this vital mission, Agile Defense employees are on the forefront of providing Advanced CND Operations, and Security Engineering support to include the development of advanced analytics and countermeasures to protect critical assets from hostile adversaries. To support the integrity, security, and resiliency of critical operations, we are seeking candidates with diverse backgrounds in security engineering and systems administration. The ideal candidate will have a solid understanding of complexities related to network and cloud security, Operations and Maintenance (O&M), and Endpoint Detection and Response (EDR).
Responsibilities
- Support the Security Operations Center (SOC) as a technical subject matter expert for all network security functions
- Respond to and resolve ServiceNow tickets that come into the team's queue
- Perform after-hours maintenance of security tools on an as-needed basis both remote and onsite (typically a few times per month)
- Mentor and direct a team of engineers
- Use Microsoft Visio to create/update network diagrams of security tools
Requirements
- Bachelor's Degree in Computer Science, Engineering, Information Systems, or related field
- 7+ years of experience in cybersecurity, of those, at least 4+ years in cyber security engineering
- CISSP certification
- Two of the following certifications: CEH, GIAC (GCIH, GPEN, GWAPT, GCFA or GNFA) or CCNA
- Demonstrated experience with at least three of the following technologies: CrowdStrike, Microsoft Defender for Endpoint, Cisco Umbrella, ExtraHop, ForeScout, Zscaler
- Ability to troubleshoot complex systems issues within a Systems-of-Systems environment
- Understanding of NIST 800-53 r4 / r5 to support IA/Compliance efforts from a mitigation perspective
- Functional understanding of scripting languages (i.e., Python, PowerShell)
Nice-to-haves
- Experience with Cisco Routing & Switching (LAN/WAN), Cisco Firepower IPS/Firewall and Web Security Appliance (WSA)
- Familiarity with SIEM tools, data lakes and the design, development of security analytics
- Motivation and desire to learn advanced concepts in cyber and ability to work within a formal engineering life cycle
- Strong attention to detail in working with other project staff in managing complex changes to US-CERTs environment
- Experienced with monitoring of new or emerging security technologies to assist in identification of most effective approach or methodology to be applied in securing D/A infrastructures
- Relevant Security Certifications: Security +, CISSP, SANS Certifications, Network +, Palo Alto PCNSA, Microsoft AZ-900
