Enterprise Security Systems Engineer III

About The Position

Requirements

• 8+ years of experience in areas like security analysis, security assessment, security design reviews, or threat modeling.
• Ability to effectively communicate technical information both verbally and in writing.
• Ability to analyze complex security issues, identify root causes, and develop solutions.
• Ability to adjust to shifting priorities in accordance with mission support.
• Ability to work effectively with other engineers, developers, and stakeholders.
• Ability to identify and resolve issues independently, with minimal supervision.
• Ability to pay close attention to detail and follow security procedures accurately.
• Ability to adapt to changing security landscapes and technologies.
• Ability to learn new technologies and techniques.
• Current Secret clearance.
• Experience in organizations that handle sensitive data or operate in mission-critical environments.
• Experience with security protocols, computer and network security, and coding in at least one general purpose language (Python, Java, etc.).
• Experience with one or more observability tools (Splunk ES, Dynatrace, Grafana, AWS CloudWatch, DataDog, etc.).
• Familiarity with Infrastructure as Code (IaC).
• Bias toward automation with experience in at least one scripting language or tool (Python, Bash, PowerShell, PowerCLI, Ansible, Chef, Puppet, etc.).
• Experience with vulnerability scanning platforms (Tenable, Remedy, Tychon, etc.).
• Experience with at least one common cyber security platform (Trellix, ForeScout, FortiNet, Crowdstrike, etc.).
• Understanding of security concepts, best practices, and industry standards like NIST and ISO 27001.
• Experience with SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention Systems), firewalls, DLP (Data Loss Prevention), and other security systems.
• Understanding of network protocols, firewalls, intrusion detection/prevention systems, and network security architecture.
• Knowledge of operating systems, hardware, and software security, including vulnerabilities, hardening techniques, and secure coding practices.
• Ability to identify and assess vulnerabilities in systems and applications, as well as perform penetration testing.
• Proficiency in scripting languages like Python or Bash for automating security tasks and building custom security tools.
• Ability to analyze logs and other data to identify security threats and incidents.

Nice To Haves

• Experience in DoD STIG/RMF environments and the DoD ATO process.
• Understanding of security principles involved in Zero Trust Network Architecture and tools required to implement it.
• Experience with cloud infrastructure, cloud security best practices, and cloud security controls (e.g., AWS, Azure, GCP).
• DoD 8570 IAT Level III certification with Computing Environment certificate and higher level cyber security certification (CySA+, CISSP, CEH, etc.).
• Bachelor's degree in field like Computer Science, Information Technology, or a related field, or equivalent practical experience.

Responsibilities

• Organizing computer security architecture and developing detailed cyber security designs.
• Reviewing, developing, and implementing security measures for protecting computer systems, networks, and information.
• Conducting risk assessments, vulnerability analyses, and penetration testing to identify and mitigate security vulnerabilities.
• Responding to complex system and network security incidents, investigating and resolving vulnerabilities.
• Monitoring systems and networks for security threats, responding to alerts, and identifying areas for improvement.
• Contributing to building security tools and infrastructure to analyze, deploy, and manage security controls.
• Providing technical support and mentoring to junior team members.
• Interfacing with vendors to research and implement new security technologies.
• Establishing security operations processes, procedures, and standards.
• Staying up to date on the latest security threats and vulnerabilities.

Benefits

• Full-flex work week to own your priorities at work and at home.
• 401K with company match.
• Comprehensive health and wellness packages.
• Internal mobility team dedicated to helping you own your career.
• Professional growth opportunities including paid education and certifications.
• Cutting-edge technology you can learn from.
• Rest and recharge with paid vacation and holidays.