Senior Systems and Cybersecurity Engineer

Hannon Armstrong
Annapolis, MD
Nov 29, 2022
Dec 01, 2022
Full Time
Position SummaryResponsible for architecting, implementing, managing, maintaining, and securing a mission-critical enterprise network following standards and frameworks. Developing and executing security controls, defenses, and countermeasures. Minimize vulnerabilities and prevent internal or external attacks or attempts to infiltrate company information assets. Leads efforts to minimize service vulnerability and interruption by remediating assessments and reports. Identify gaps in capabilities and services and identify and implement solutions to meet the needs of a maturing security program.ResponsibilitiesLead network infrastructure design, implementation, and support (Office 365, IP networking, DNS, routing, performance management, WAN services, ESXi, Azure & AWS clouds, Meraki stack, S2S VPN, client VPN, RADIUS, MFA, SSO, endpoint solutions, Linux servers, Windows servers, Windows and Mac clients, disaster recovery)Guide development of the internal cybersecurity program (threat management, log management, email protection, antivirus, SIEM, IDS/IPS, client and servers risk management, patching, remediation's, certificate services, certificate management, IAM solutions, end-user training programs, vendor selections, audit, annual assessments, incident response, compliance)Ensure appropriate response to operational interruptions and threats in progress, providing direction to the operations teamServe as a mentor and escalation point for Infrastructure and Operations teamsDelegate network maintenance tasks and projects to junior staff as appropriateMonitoring and reporting on key performance indicators Recommend, design, and implement technology using best practices and guidelines such that implementations are efficient, manageable, understandable, reliable, and well documentedIdentify issues that are not detected by monitoring systems through manual methodsCreate new SOPs, documentation, and processes to further support all teamsPrepare accurate system design and architecture diagrams, risk summaries, and reportingDesign, implement and oversee the migration from legacy solutions to new solutionsEnsure configuration management and change controls are executed to policy Perform internal threat analysis, including log analysis, responding to alarms, assessing the severity of potential threats, acting to remediate threats, and escalating to appropriate stakeholders Contribute to the ongoing development of incident response plans, ensuring emerging risks and threats are considered and incorporatedCoordinate and analyze vulnerability assessments, and remediate risks Perform maintenance, engage in incident response, and provide support with minimal notice and/or outside of traditional business hours on occasion when needed to support team operations QualificationsBachelor's degree in Computer Science, Cybersecurity, MIS, or equivalent experience5+ years' work experience as a Network Engineer or similar responsibilities5+ years' experience managing and securing on-prem, Azure & AWS networks5+ years' experience patching, hardening, and remediating risk on production servers, endpoints, appliances, and systems3+ years' experience analyzing organization threats, including email, malware, and remediation3+ years' experience training colleagues on risk mitigation and preventions2+ years' experience performing network traffic analysis Advanced knowledge of the network operating systemsStrong leadership and team mentoring skillsProficiency with coding and scripting languages (ex. PowerShell, Python, batch, shell)Excellent interpersonal (verbal and written) English language communication skills are required to support working in project environments that includes internal, external, and customer teamsStrong analytical, conceptual, and problem-solving abilities requiredMust be able to quickly learn and adapt to new technologiesAbility to manage multiple priorities, and assess and adjust quickly to changing priorities