Sr. Security Engineer - Team Lead

About The Position

Requirements

• A bachelor's degree in information technology, cybersecurity, data science, information systems, or computer science, from an ABET accredited or CAE designated institution.
• Minimum experience: six (6) years of experience (YOE) in Information Technology (IT) / Information Security (IS).
• All personnel must have at least one (1) DoD 8140 certification for their respective area or the ability to obtain certification within six (6) months of onboarding.
• Must be able to successfully complete a DEA background investigation in conjunction with being an active Secret or higher clearance holder and must be eligible for a Top-Secret clearance if requested.
• Technical experience in-depth knowledge of various SIEM platforms, scripting languages (e.g., Python, SPL, KQL), and understanding of network security and threat intelligence.
• Familiarity with Information Security requirements of Compliance audits.
• Hands-on experience with Splunk, Elastic Search, and ServiceNow.
• Python programming experience.
• Experience working with APIs, webhooks and custom queries to ingest data.

Nice To Haves

• Certifications such as CEH, SSCP, or CASP +CE.
• CSSLP, CISSP-ISSAP, CISSP-ISSEP, CCSP, or CISSP (Associate).
• CompTIA: Cloud+, PenTest+, Security+, or CySA+.
• SANS certs: GCIA, GCLD, GDSA, GFACT, GICSP, or GSEC.

Responsibilities

• Set team goals, define priorities, and oversee delivery of security engineering initiatives and requirements.
• Provide clear guidance, mentorship, performance feedback, and professional development planning.
• Assist enterprise architect & client with architecture, design, and integration of security solutions.
• Guide & test the integration of secure architectures for infrastructure, applications, and cloud services.
• Ensure designs meet enterprise security requirements, including baseline configurations and quality standards.
• Participate in system design planning.
• Provide requirements recommendations and execute approved project system procurements/project plans to ensure all implementation requirements are met.
• Advise on technology acquisition, supply chain risk management, and procurement strategies.
• Participate in the configuration management, change control process, and the Change Control Board - (CCB) to provide technical/cybersecurity related advice.
• Ensure oversight of governance, compliance, and risk management activities associated with engineering team projects, tasks, and efforts.
• Ensure application of NIST, FedRAMP, and other federal cybersecurity standards.
• Provide recommendations for policy updates, security standards, and operational procedures.
• Provide recommendations and assist the SOC team with incident response readiness and threat mitigation strategies.
• Work with the SOC, DevOps, and IT teams on incident containment, recovery, and lessons learned.
• Work alongside of the SOC's root cause analysis of security events to drive long-term mitigations.
• Participate in the lifecycle management evaluation of security tools and technologies.
• Evaluate technology performance, cost/benefit analysis, and capability assessments (Overlap/gaps).
• Provide tuning, test and initiate updates/patches for the optimization of deployed tools.
• Facilitate alignment between security engineering, development, and infrastructure teams.
• Develop and oversee delivery of security training for team and any identified external entities.
• Ensure documentation of designs, processes, and configurations in secure repositories.