Cybersecurity Engineer

Reliance Test & Technology

Job Title: CYBERSECURITY ENGINEER

Security

Clearance Required:

Secret

Location: Eglin AFB, FL, US 32542

Job Type: Full-time

Education: Vocational / Trade School / Military Education

Career Level: Experienced (Non-Manager)

Category: Engineering

Cybersecurity Engineer

Building 955, Eglin AFB, FL

Open Position Request Number R-DD-25

CLASSIFICATION:
Cybersecurity Engineer

GRADE:
Exempt;
Regular, Full-Time

REPORTS TO:

Supervisor

Cybersecurity engineer with System or Network Administration Experience in system hardening techniques for Linux, Windows, Active Directory, and virtualized environments. Understanding of network security principles, including firewalls, intrusion detection/prevention systems (IDS/IPS), and VPNs. Experience managing and troubleshooting VPN infrastructure is required. Experience with vulnerability assessment tools such as ACAS/Nessus, Security Information and Event Management (SIEM) systems, and experience with scripting languages (e.g., Power Shell, Python, Bash) for automating system administration and security tasks.

Strong analytical and problem-solving skills. Excellent communication and collaboration skills.

• System Hardening Lead:
  Spearhead the systematic hardening of all enterprise systems, including Linux servers, Active Directory/Domain Controllers (AD/DCs), Windows servers and workstations, Virtual Machine (VM) imaging processes, Docker containers, and Windows Server Update Services (WSUS). This includes establishing baseline security configurations and continuously enforcing compliance.
• Vulnerability Management:
  Conduct comprehensive vulnerability assessments using tools such as ACAS/Nessus to identify security weaknesses across the infrastructure. Develop and execute remediation plans to address identified vulnerabilities in a timely and effective manner.
• Security Configuration Management:
  Implement and maintain secure configurations across all systems and network devices, adhering to DoD security technical implementation guides (STIGs) and best practices.
• Automate configuration management tasks using scripting and automation tools to ensure consistency and scalability.
• Security Monitoring and Incident Response:
  Monitor security logs and alerts using a Security Information and Event Management (SIEM) system to detect anomalous activity and potential security incidents. Participate in incident response activities, including investigation, containment, eradication, and recovery.
• Network Security Administration:
  Manage and maintain network security infrastructure, including firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and network segmentation.
• Implement and enforce network access controls to restrict unauthorized access to sensitive resources. This includes ongoing maintenance, configuration, and monitoring of our Virtual Private Network (VPN) infrastructure.
• Active Directory Security:
  Implement and maintain robust security controls within Active Directory, including group policy management, user account security, and privileged access management.
• Harden AD/DC servers against common attack vectors and ensure compliance with DoD security requirements.
• VM and Container Security:
  Implement security best practices for virtualized environments, including secure VM imaging, isolation, and access controls. Harden Docker containers and orchestrate container deployments to minimize security risks.
• WSUS Management:
  Configure and maintain WSUS to ensure timely patching of Windows systems and applications.
• Automate patching processes and monitor patch compliance to minimize the window of vulnerability.
• Security Policy Enforcement:
  Develop, implement, and enforce security policies and procedures across the enterprise. Ensure that all systems and users comply with established security standards and regulations.
• Compliance and Reporting:
  Maintain documentation of security configurations, policies, and procedures to demonstrate compliance with DoD security standards and regulations, including Risk Management Framework (RMF).
• Prepare reports on security metrics and compliance status for management review.
• Collaboration:
  
  Work with internal IT staff to recommend improvements to current Security policies, procedures, and practices to ensure a hardened and security focused environment.
• Cloud Security Enclave Architecture:
  Contribute to the design, implementation, and maintenance of our secure cloud security enclave architecture. Implement security controls and best practices to protect sensitive data and applications in the cloud environment.

Cybersecurity engineer with System or Network Administration experience responsible for DoD test network and computers, minimum of 5 years of experience with DoD cybersecurity standards and frameworks, including Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), and NIST cybersecurity standards.

Additional…