cyber security engineer (DevOps) | TO 2 CMPE

About the Role

Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure.

Conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications.

Develop and implement incident response plans to effectively address security breaches, incidents, and breaches.

Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures.

Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents.

Analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks.

Work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity.

Maintain thorough and accurate documentation of security processes, procedures, and configurations. Prepare detailed reports on security findings, incidents, and actions taken.

What you’ll need to succeed:

• 7+ years of experience as a cybersecurity engineer with a specialization in designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.
• Strong skills in specifying and implementing log collection into tools such as Splunk, and performing querying and analysis of aggregated logs to identify security-relevant anomalies or risks
• Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP).
• Experience with implementing controls for cloud, container, and DevSecOps services and solutions within IL5 to IL6+ environments.
• Strong understanding of network protocols, operating systems, and infrastructure components.
• Proficiency in incident response, security incident handling, and forensic analysis techniques.
• Experience with security tools such as Fortify, Acunetix, and Prisma Cloud
• Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
• CISSP or equivalent certification to support DoD 8140 requirements
• Active TS/SCI clearance with CI poly

Benefits

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)