Cybersecurity Engineer; Continuous Network Defense

Overview

We are seeking a senior-level Cybersecurity Engineer to serve as the Subject Matter Expert (SME) for our Continuous Network Defense (CND) tools. You will oversee vulnerability management, endpoint security, and network defense in strict accordance with DoD instructions and policies.

Suffolk, VA (100% On-Site)

Active TS/SCI

• Vulnerability &
  
  Risk Management:
  
  Conduct scheduled discovery and vulnerability scans using Tenable/Nessus; analyze results and develop mitigation strategies.
• Endpoint Security:
  Manage Trellix ePO and deploy endpoint products (ENS, PA, DLP) to enforce security policies.
• Network & Compliance Defense:
  Implement Fore Scout policies for Comply-To-Connect (C2C) and configure Cisco Firepower Management Console (FMC) for network intrusion prevention.
• Continuous Monitoring:
  Ensure active data flow for the DoD CMRS system (integrating Trellix, Tenable, and Fore Scout data) and monitor external assets via Cortex Xpanse.
• Threat Hunting & Infrastructure:
  Utilize AD Audit Engine to detect Active Directory anomalies, validate Infoblox DNS/DHCP data, and leverage big data tools (Splunk/Elasticsearch) to hunt for advanced persistent threats (APTs).

• Certifications & Clearance:
• Clearance:
  Active TS/SCI is strictly required.
• DoD 8570 Baseline:
  Must hold an IAT Level III certification (e.g., CISSP, CISA, GCIH, GSE, or SCNA).
• Functional Training:
  Must possess a functional area training certificate prior to start date.

• Education/
  
  Experience:
  
  Master’s degree in Cybersecurity (or related field) OR 10 years of focused government cybersecurity engineering experience.
• DoD Frameworks: 5+ years of experience with DoD vulnerability detection, response, and FISMA compliance.
• Tools:
  Proven hands-on experience with big data tools like Splunk and Elasticsearch.