CDM Tools Engineer
Join a technical team that focuses on supporting the integration of cyber security technologies for a strategic federal customer. The ForeScout Engineer will enhance the cyber security posture of government agencies through improved implementation and enhancement of network monitoring and access control. This individual will lead the configuration, integration and maintenance of Forescout CounterACT in a lab and Agency environment. Requirements: Due to the nature of the government contract requirements and/or clearance requirements, US citizenship is required as well as successful passing of CGI background check prior to beginning work. In addition, candidates must have ability to obtain and maintain a DHS EOD/Public Trust clearance; Bachelor s degree and 10+ years of related experience. Four additional years of relevant work experience may substitute for a degree; Experience developing, configuring, and delivering COTS software in support of enterprise security solutions; Experience configuring Forescout CounterACT to operate, discover and control devices connecting to client networks; Experience in configuring Forescout CounterACT to report and alert thru external systems (like ServiceNow); Deep understanding of network architecture; Experience and understanding of network infrastructure such as routers, switches, VPN aggregators; Must be able to analyze and clarify customer technical inquiries; Must be able to analyze vulnerability scan results, system audits, log events and troubleshoot software issues; Attention to detail coupled with effective analytical and problem-solving aptitude; and Ability to establish working relations at all organizational levels and demonstrate ability to diplomatically and effectively deal with government officials and program office stakeholders. Job Requirements: Duties/ Responsibilities: Analyze client network topologies and infrastructure Configure and deploy CounterACT Configure Forescout Enterprise Manager to manage agency appliances Develop NAC and audit policies the be applied for the agency Work with network engineers to investigate connectivity issues and recommend corrective action Prepare and maintain solution documentation, including security, configuration and CONOPS Work closely with engineering and test teams and participate in technical and meetings with Agency technical specialists Work with Service Delivery team in developing agency-specific designs and policies, to include working directly with agency technical and security SMEs Document, publish and maintain a knowledge base of information pertaining to the functionality, processes and procedures related to the tool Apply technical expertise in implementing efficiencies and creating strategies to better detect and respond to cyber incidents by prioritizing mitigation actions Desired Skills: Security relevant certifications: CISSP, CISM, CISA, Security+, CEH. Must have strong communication skills and a solid understanding of IT Security concepts to include vulnerability & patch management, security operations, Incident Management and Incident response. The candidate must be able to work with other team members and groups, work with competing priorities, and possess strong customer focus. Understanding of federal cybersecurity guidance such as NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems: a Security Life Cycle Approach and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations. Exposure to or general knowledge of the DHS Continuous Diagnostics and Mitigation Program (CDM).