Computer Security Engineer

Syneren is currently seeking a Computer Security Engineer.

Key Responsibilities:

• Manage and maintain the Cybersecurity infrastructure (ACAS, Trellix, Sentinel, Defender for Cloud, Fore Scout), including policy configuration, deployment, and monitoring.
• Administer and configure ACAS (Nessus) to perform vulnerability scanning, compliance assessments, and reporting across the enterprise.
• Monitor, analyze, and respond to cybersecurity threats and incidents using HBSS, ACAS, SIEM and WAF tools.
• Develop Cyber Operations SOPs for security tools appliances and capabilities in use within the IT Enterprise to levels and standards required by DoD.
• Develop and implement policies and procedures to enhance the security posture of systems and networks.
• Generate and deliver compliance and vulnerability reports to stakeholders, providing recommendations for remediation.
• Collaborate with IT, network, and development teams to address identified vulnerabilities and implement security improvements.
• Stay up to date with emerging cybersecurity threats and trends, ensuring that HBSS and ACAS environments are optimized and secure.
• Support security audits and assessments, ensuring systems are compliant with organizational and regulatory standards (e.g., DoD STIGs, RMF).

Required experience:

• Must have 5 or more years of experience managing and administering HBSS (Trellix/ePolicy Orchestrator), including policy management and monitoring.
• 5 or more years of hands-on experience with ACAS (Nessus) for vulnerability scanning and compliance reporting.
• At least 2 years of experience with other security tools and technologies, such as SIEM platforms Azure Sentinel, Defender for Cloud and/or F5 Big-IP AMS.
• Experience with Windows and Linux operating systems.
• Strong understanding of cybersecurity frameworks and compliance requirements, such as DoD RMF, STIGs, and FISMA.
• Experience troubleshooting and resolving security-related issues in enterprise environments.
• Proficiency in creating and delivering reports that translate technical findings into actionable recommendations.
• Experience with Security Content Automation Protocol (SCAP) Compliance Checker (SCC), Public Key Infrastructure (PKI), antivirus software, and securing IaaS/PaaS/SaaS Cloud environments.
• Must have 5 or more years with RMF including roles such as the security control assessor.
• Must have 2 or more years with Cross Domain Solutions (CDS) in the last five years.

Required Qualifications:

• Experience working in DoD environments or with organizations requiring high-security standards.
• IAT Level II - CompTIA Security+ or SSCP (Systems Security Certified Practitioner). Other security-related certs that are accepted (in addition to the above two certs) for the DoD IAT Level 2 include the following: CCNA Security;
  CySA+; GICSP; GSEC.