Senior InfoSec Engineer

Sterling, VA
Aug 21, 2019
Aug 23, 2019
Engineer, IT, QA Engineer
Full Time
Senior InfoSec Engineer This person will be responsible to engineer, architect, implement, deploy, maintain, and administer commercial and open source products; Conduct research, evaluate, and make recommendations on emerging technology; Review and interpret Federal guidelines and policies and industry standard best practices; Provide support on all information security activities at the program level including policy development, compliance inspections, audits and reviews; Provide support and work on the development phases of information security systems development life-cycle; Oversee, evaluate, and support the documentation, validation, and accreditation processes; Document incident correlation requirements, select incident correlation engines and recommend configuration guidelines; Conduct assessments of threats and vulnerabilities and determine deviations from acceptable configurations. Assess the level of risk, and develop and/or recommend appropriate mitigation countermeasures; Perform analysis to determine the optimum configuration of network and host sensors. This analysis includes traffic load analysis, performance impacts of monitoring, determination of potential attack characteristics; Analyze and recommend resolution of information security problems based on knowledge of the major information security products and services; Conduct research and develop security policies relevant to client environment and analyze outside security information for relevance to the client; Install and upgrade computer hardware and operating systems (Windows and Unix) on an enterprise environment. Required Experience: 10 years of relevant experience with Masters Degree. 14 years relevant experience with Bachelors Degree. Six (6) years experience in Information System Security, Cyber Security, Computer Forensics, Insider Threat, Penetration Testing, Malware Analysis or Certification and Accreditation. Two (2) years experience architecting, engineering, integrating, developing and/or deploying information technology products in an enterprise environment. Extensive experience and knowledge in network monitoring and intrusion detection using host based and network-based IDS and log management applications. Experience installing, testing, patching and upgrading computer hardware and operating systems (Windows and Unix). Experience using SourceFire, Arcsight, Splunk, NetWitness, Guidance Software, Digital Guardian, Raytheon (SureView), NMAP, Metasploit, Request Tracker, Nagios, Intelliview, Nessus and Foundstone. Intimate knowledge of FISMA, NIST and ASCLD requirements. Security Clearance Required: Active Secret with TS eligibility

Similar jobs