IT Security Engineer

The IT Security Engineer is responsible for testing, evaluating, and supporting cybersecurity platforms, tools, and system integrations across the enterprise environment. This role ensures reliable operation, maintenance, and troubleshooting of hardware and software within distributed network infrastructures.

The engineer will analyze and remediate network vulnerabilities based on security assessments, scan results, and findings provided by internal teams. This position requires close collaboration with cross-functional stakeholders to strengthen the organization’s overall security posture and ensure the effectiveness of implemented security controls.

• Validate that system security controls are correctly implemented and remain effective throughout the system lifecycle. Design or advise on technical solutions to complex problems that require extensive technical expertise and ingenuity.
• Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
• Lead all information system stakeholders by ensuring their assessment readiness, effective continuous monitoring, and ongoing adherence to risk management activities, while providing technical oversight and cybersecurity consultation.
• Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
• Perform security analysis of classified environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted government standards and regulations.
• Advise senior management, such as Authorizing Officials, Chief Information Officer (CIO), and Chief Information Security Officer (CISO) on cybersecurity risk levels and security posture.
• Develop methods to monitor and measure risk, compliance, and assurance efforts. Ensure selected security controls operate as intended in every phase of the information system lifecycle.
• Coordinate with program security, cybersecurity management, stakeholders, and other relevant parties to clarify requirements and resolve issues while balancing mission needs against compliance mandates.

• Bachelor's degree in information systems security, computer science, or related field preferred or equivalent combination of education and experience.
• Six or more years of experience in information systems security and/or network operations/support.
• Must possess a solid understanding of IT Security including network and host security products such as intrusion detection systems, firewalls, VPNs, anti-virus and anti-spyware systems and security tools such as vulnerability scanners, wireless network scanners, and packet analyzers.
• Experience with Nessus, Big Fix, Fire Eye HX, and/or Splunk is a plus.
• Possess a solid understanding of FISMA, NIST and other guidance applicable to Federal information systems.
• Experience with evaluating system, network, or infrastructure security controls against FISMA and NIST guidelines.
• Working knowledge of typical LAN/WAN technologies and protocols.
• Possess active security clearance or have the ability to acquire same at the ‘secret’ level.
• Experience working with Microsoft Office suite.
• Experience working with computer programming.
• Just possess strong written and oral communication skills, strong customer service qualities, and the ability to work in a team environment.

• Must be task and detail oriented and be able to work with limited supervision.
• Analytical and problem-solving skills.
• Interpersonal skills to interact with customers and team members.
• Organizational skills to balance and prioritize work.

Pay Range $ - $