Information Systems Security Engineer

About The Position

Requirements

• 12+ Years of relevant experience (bachelor’s degree in applicable field may be substituted for 5 years of experience).
• Required DoD 8140 IAT level II compliant certification such as CompTIA Security+.
• Proven experience as a Security Engineer or in a similar role, with expertise in information security practices and technologies.
• Strong knowledge of network security, operating systems, databases, and application security principles.
• Familiarity with industry security standards and frameworks such as NIST or DoD Controls.
• Experience with vulnerability scanning and penetration testing tools.
• Ability to analyze security incidents, perform root cause analysis, and propose effective solutions.
• Knowledge of encryption technologies, access controls, and identity and access management (IAM) principles.
• Excellent communication and problem-solving skills to collaborate effectively with cross-functional teams.
• Experience working in secure areas and on configuring classified systems.

Nice To Haves

• Other relevant cybersecurity certifications like Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM), are a plus.
• Understanding of regulatory requirements related to information security (e.g., GDPR, HIPAA) is advantageous.
• Familiarity with cloud security concepts and solutions is a plus.
• Dedication to staying current with emerging cybersecurity trends and threats.

Responsibilities

• Design, deploy, and configure security configurations, such as MFA, centralized logging, encryption mechanisms, and access control systems, to protect the organization's information systems.
• Conduct regular vulnerability assessments and audits to identify weaknesses in the IT infrastructure and applications. Analyze results and collaborate with IT teams to remediate identified security gaps.
• Develop and implement incident response procedures to respond effectively to security incidents. Monitor and analyze security logs and alerts to detect and mitigate potential threats promptly.
• Assist in the creation, review, and enforcement of information security policies, standards, and guidelines. Ensure compliance with industry best practices and regulatory requirements.
• Monitor and track compliance with security policies and procedures, conducting periodic audits and assessments to ensure adherence to established security standards.
• Design and implement secure network architectures, segmenting critical data and systems from less sensitive resources to minimize attack surfaces and potential impact.
• Lead investigations into security breaches, identifying the root cause and recommending preventive measures to enhance security posture.
• Implement data protection measures, encryption techniques, and privacy controls to safeguard sensitive data and comply with relevant data protection regulations.

Benefits

• Healthcare
• Wellness programs
• Financial benefits
• Retirement plans
• Family support
• Continuing education
• Time off benefits