Senior Cyber Security Engineer

Overview

Cayuse Government Operations Senior Cyber Security Engineer will provide cybersecurity and Federal cyber compliance regulation support to the Cayuse IT network infrastructure consisting of onsite networking and network security devices and endpoints in the Azure/ Office 365 GCC High cloud environments. Serves as the Subject Matter Expert for Microsoft Azure and Office 365 GCC-High products, networking, and services. Assists the IT department with Tier III helpdesk support and addresses critical helpdesk issues for the US Eastern time zone employees. Implement & maintain networking hardware, firmware, and software to ensure federal cybersecurity compliance standards for the Washington, DC office (Eastern Time Zone).

The Senior Cyber Security Engineer maintains and safeguards all network elements, including computer networks, local area networks (LANs), wide area networks (WANs), internet connections, intranet, and other data communication systems. Creates security related reports, setting of network monitor thresholds and general oversight of the network security and health to ensure Confidentiality, Integrity, Availability of data. Works closely with Security and IT to review new technologies and standards and assist with forecasts and planning projects to improve and support a growing company seeking CMMC. Develops SOPs, runbooks, policies, and other operational resources for the security and IT teams. Conducts audits and reports regular status of projects, security and operational issues to Security and IT leadership.

The network security engineer also must possess excellent communication skills and regularly communicate with the Security and IT leadership about network strategies and new measures that can be adopted to enhance security. All duties and responsibilities performed in accordance with the Core Values of Cayuse.

Responsibilities

Supports Operations and Contracts in the preparation of proposals, plans, specifications, and financial conditions of contracts.

Documentation—contributing to a variety of security policy domains associated with compliance, governance, risk management, incident management, HR management, and additional domains.

Analyze business needs and evaluate technical options to facilitate planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization’s data, systems, and networks

Assist with workstation deployment for employees in the US Eastern time zone

Implement & maintain onboarding procedures for US Eastern time zone employees and projects

Troubleshooting security and network problems and define network security policies.

Work with SOC provider for investigating Security Incidents reported through SIEM

Handle tickets from employees that relate to Information Security issues/questions for individual users or projects

Responding to all system and/or network security breaches

Ensuring that the organization’s data and infrastructure are protected by enabling the appropriate security controls

Participating in the change management process

Testing and identifying network and system vulnerabilities

Daily administrative tasks, reporting, and communication with the relevant departments in the organization

Evaluating the organization’s security needs and establish best practices and standards accordingly

Designing, implementing, maintaining, overseeing, and upgrading all security measures needed to protect organizations’ data, systems, and networks

Responding to all security breaches to the network and associated systems

Be aware of the latest threats in the cybersecurity domain to guide and advise the organization regarding potential upgrades of systems.

Review and create identity and access management (IAM) policies in place to prevent unauthorized access to company data.

Ensure that systems are restored in case of a security attack.

Ensure security policies are updated.

Maintain servers, routers, and switches as required.

Maintain firewalls, VPNs, VLANs, VoIP, and web and email security programs and protocols regularly.

Serves as Information Systems Security Officer (ISSO) for Cleared Defense Contractor Systems

Design and architect cloud solutions that meet the specific Federal Cyber requirements

Create architectural designs that leverage Azure services and technologies.

Plan and implement the infrastructure required to support Azure cloud solutions.

Configure storage solutions and computer resources like virtual machines, containers, and serverless computing options.

Evaluate various Azure offerings and design and implement strategies for migrating existing applications, data, and workloads to Azure.

Configure monitoring and logging solutions to ensure the confidentiality, integrity, and availability of data and applications.

Optimize the performance and scalability of Azure solutions.

Document the architectural designs, configuration details, and deployment procedures for Azure solutions.

Work with SOC provider for investigating Security Incidents reported through SIEM

Handle tickets from employees that relate to Information Security issues/questions for individual users or projects.

Other duties as assigned.

Qualifications

Minimum Qualifications:

10-15 years Federal IT/ Security experience

5 – 10 years’ experience with Azure and Cloud Solutions

Proficiency in conducting regular vulnerability assessments of the systems to prevent any security incident.

Capability to manage risk and ensure disaster recovery in case of a security event.

Knowledge of cyber laws and compliance requirements with a focus on US Federal Departments and Agencies.

Ability to conduct an in-depth analysis of computer networks and identify any vulnerabilities or gaps in the system.

Top Secret Security Clearance or the ability to obtain one.

Must be able to pass a background check. May require additional background checks as required by projects and/or clients at any time during employment.

Minimum Skills:

Attention to detail

Quick decision-making to ensure faster recovery in case of a security event

Self-starter with the ability to learn new tasks and skills.

Strong organization and communications skills.

Ability to multitask and have practical time management skills.

Team Player

Proficient in Microsoft Office Suite, Word, Excel, PowerPoint, Teams, and SharePoint.

Preferred Qualifications:

Degree in computer science or business administration would provide greater understanding of the organizational structure and gain understanding of the specific cybersecurity needs of different departments and industry verticals. A thorough grasp of business and operational processes allows security professionals to look for problems in not-so-obvious areas and plug any security gaps.

Experience with Azure Sentinel is preferred.

Reports to : Information Systems Security Manager and works closely with Security and IT leadership.

Working Conditions

Must be physically and mentally able to perform duties for extended periods of time.

Ability to use a computer and other office productivity tools with sufficient speed to meet the demands of this position.

General office environment and remote with at least 2 days per week in the DC office

Must be able to establish a productive and professional remote workspace.

Must be able to sit for long periods of time looking at computer screen

May be asked to work a flexible schedule which may include holidays

May be asked to travel for business or professional development purposes

May be asked to work hours outside of normal business hours

Other Duties: Please note this job description is not designed to cover or contain a comprehensive list of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

Affirmative Action/EEO Statement: Cayuse embraces diversity and equal opportunity in a serious way. We celebrate diversity and are committed to creating and building a team that represents a variety of backgrounds, perspectives, and skills. Cayuse, and all of its subsidiaries, are proud to be an equal opportunity workplace and are an affirmative action employer.

Pay Range

USD $150,000.00 – USD $170,000.00 /Yr.

Submit a Referral (https://careers-cayuseholdings.icims.com/jobs/1711/senior-cyber-security-engineer/job?mode=apply&apply=yes&iniframe=1&hashed=-1834356743)

Location US-VA-Rosslyn

ID 102608

Category Security

Position Type Full-Time Salary Exempt

Remote No

Clearance Required Top Secret