Cybersecurity Engineer – Position

Contract Length: 6 months with the potential of converting to FTE.

Local Richmond, VA candidates required.

* Candidates must be able to be hired directly by the agency without sponsorship. USC or Green Card holders only.

* ON SITE:
Monthly meetings and on site as requested by manager.

* This role has the POTENTIAL to go perm after 6 mo. For this reason, candidates must be able to be considered (by the agency) and not need sponsorship. US Citizen or Green Card holders only (no EADS). The contractor will still be required to go thru the client’s hiring process if they are interested in being considered for the FTE role.

No guarantees the contractor will be selected for the FTE role.

We are seeking an experienced Cybersecurity Engineer to support Security Products for Local Governments. The ideal candidate will possess in-depth knowledge of configuring and administering Security Tools and Products.

• 40% Administer and Maintain EDR Tools
  • Tune detection rules to reduce false positives and improve threat visibility for each covered locality.
  • Ensure asset inventory is accurate and up to date for each covered locality.
  • Regularly update the EDR platform and agents to the latest versions.
  • Review and adjust security policies.
  • Conduct health checks to ensure the EDR system is functioning properly.
  • Investigate and remediate unexpected agent behavior.
  • Ensure that integrations are working as required and troubleshoot when issues are identified.
• 40% Administer and Maintain Vulnerability Management System
  • Maintain and update the vulnerability management platform and agents.
  • Conduct health checks to ensure the VMS system is functioning properly.
  • Tune scan policies to reduce false positives and improve accuracy for each covered locality.
  • Ensure asset inventory is accurate and up to date for each covered locality.
  • Configure and schedule scans for each covered locality.
  • Investigate and remediate unexpected agent behavior.
  • Ensure that integrations are working as required and troubleshoot when issues are identified.
• 20% General Support
  • Respond to and resolve customer inquiries and issues submitted through the ticketing system and SOC.
  • Maintain and update the Remote Monitoring and Management platform and agents.
  • Accurately document customer interactions, troubleshooting steps, and resolutions.
  • Escalate complex or unresolved issues as needed.
  • Monitor ticket queues to ensure service level agreements (SLAs) are met and follow up with customers as needed.

• Security+
• Crowd Strike Certified Falcon Administrator (CCFA)
• Tenable Certified
• Additional Cybersecurity Related Certifications

• Administer and Maintain EDR Tools – Required (4 Years)
• Administer and Maintain Vulnerability Management System – Required (4 Years)
• Experience in information security, with a focus on security technologies – Required.
• Excellent verbal and written communication skills; ability to convey complex security concepts in a clear and relatable manner – Required.
• Ability to work independently and as part of a team – Highly desired.
• Excellent organizational skills and attention to detail – Highly desired.
• Relevant certifications preferred – Highly desired.