Cybersecurity Operations Engineer

About The Position

Requirements

• Bachelor's degree in Cybersecurity, Management of Information Technology, or a related field.
• 6-9 years of experience in information security or related roles.
• Excellent communication and multi-tasking skills
• Proactive and ability to work both singularly and in a Team environment.
• Knowledge with federal standards such as NIST, FISMA and FIPS

Nice To Haves

• ACTIVE PUBLIC TRUST CLEARANCE (Preferred)

Responsibilities

• Apply knowledge and skills of information systems security principles, NIST guidelines, FISMA, CISA, and federal directives, to conduct ongoing security assessments of installed systems and networks with a view to recommend corrective actions.
• Perform systems engineering and maintenance activities according to established standards.
• Apply knowledge of Networking Technologies including LAN, MS Azure, and Wireless management in security solutions implementation and troubleshooting.
• Develop security operations capabilities by evaluating current strategies and pursuing alignment with best practices.
• Ensure the effective configuration and daily operations of tools that support the cybersecurity strategy. Such tools include SEIM integration, Syslog, Network Detection and Response (NDR), Endpoint Detection and Response (EDR), Firewalls, M365 Cloud security, Defender for Cloud, and Continuous Diagnostics & Mitigation (CDM) capabilities.
• In collaboration with CISO and Privacy Officer develop plans, techniques, and measurable objectives to improve the development of cybersecurity and privacy measures that meet goals for protecting sensitive information.
• Collaborate with other teams on the integration of Applications and IT services to consider security implications and ensure that security requirements are met.
• Maintain threat awareness and monitor information systems for exploits and any suspicious activities.
• Analyze aggregated logs from security tools and perform regular threat hunting activities.
• Develop Security Orchestration and Automation capabilities.
• Adhere to Continuous Monitoring practices to evaluate the effectiveness of implemented security controls and execute proactive threat hunting activities to ensure confidentiality, integrity, and availability of information systems.
• Develop detection and response configuration policies to increase automation.
• Execute Incident Response activities to include all associated actions according to the incident response plan.
• Develop Incident handling procedures.
• Validate that sufficient and relevant information is captured and retained from security tools to support actionable security awareness and incident investigations.
• Collect security operations performance and security posture management metrics and prepare threat reports to inform risk management decisions.
• Develop and maintain accurate security operations documentation including the preparation of standard operating procedures for recurring tasks.

Benefits

• Competitive salary
• Comprehensive benefits
• Flexible paid time off options, for eligible employees
• Medical
• Dental and Vision
• Health Savings Account
• Flexible Spending Account
• STD
• LTD
• Supplemental life insurance and ADD&D
• Comprehensive 401k plan
• Paid Time Off