Cyber Security Systems Engineer

The Information Technology Services Division, located in the Enterprise Operations Office of The Applied Research Laboratory (ARL) at Penn State University is seeking a Cyber Security Systems Engineer for our high security Special Program environments. This role will provide advanced systems engineering and administration, computing support, and specialized support services for the enablement of key research and administrative functions by ensuring the security, compliance, functionality, and reliability of systems through hands on configuration and support.

You will:

• Perform system and security engineering including coordinating, designing, recommending, evaluating, and managing new and existing security services, controls, solutions, processes, and procedures

• Monitor all ARL Special Program networks and provide a timely response to all cybersecurity incidents

• Provide systems engineering and systems administration support for ARL Special Programs networks

• Independently respond to alerts, tickets, tasks, user activity and requests, and events, generated by multiple security systems, IT teams, or units within the Special Program environment

• Conduct risk assessments to determine residual level of risk and any required mitigations

• Provide oversight of the installation and configuration of systems to comply with Government regulations and maintain compliance documentation

• Collaborate with IT colleagues on the design of technical infrastructures targeting specific goals

Required skills and experience areas include:

• An active TS/SCI security clearance with Counter-Intelligence poly

• Current Security+ CE or CISSP certification, or other security related certification (CASP+, CySA+, or similar)

• Strong understanding of cyber security, system administration, and networking fundamentals within a heterogeneous network environment

• Operating and providing systems administration and support in a high-security research computing environment

• Operational experience, in a government-regulated environment, with familiarity in security/event log auditing, definition and interpretation of audit requirements

• Security plan development and/or continuous monitoring for compliance with security plans in a government-regulated environment

• Linux endpoint configuration and security in a government-regulated environment

• Windows and Linux operating system administration and secure configuration in a government-regulated environment

• Experience with Cisco network infrastructure (switch, router, firewall) configuration, hardening, and security in a government-regulated environment

• Vulnerability scanning and mitigation utilizing Nessus, ACAS, SCC, and STIG viewer in a government-regulated environment

• Experience with VMWare and management of Virtual Machines in a government-regulated environment

• Demonstrated effective problem solving, communication, and organizational skills. Ability to multitask, work effectively independently, as part of a team, and across multiple teams in various disciplines

• Task and project leadership qualities, to include peer mentoring, progress reporting, ownership of responsibility, etc.

Preferred skills and experience include:

• Bachelor’s Degree in Cyber and Information Security, Information Technology, or Computer Science

• Additional vendor, cloud, or technology certifications

• Assessment and Authorization with experience using RMF in a government-regulated environment

• Knowledge and application of NIST 800-53, ICD 503, Department of Defense Directives, and regulatory
  requirements in a government-regulated environment

• Experience with SEIM management or use for analysis using Splunk in a government-regulated environment

This position will be located in Reston, VA, and will be fully on-site. Remote telework is not supported under the associated contract/s.

MINIMUM EDUCATION, WORK EXPERIENCE & REQUIRED CERTIFICATIONS