Vacancy expired!
Supporting the Most Exciting and Meaningful Missions in the World
Cybersecurity EngineerThe Cybersecurity Engineer will have a lead role in performing various information security tasks involving GRC, architecture, and incident response with PAE.The Cybersecurity Engineer's responsibilities include:- Provide support to planning, designing and implementing security controls which safeguard and monitor events for information systems, enterprise applications and data.
- Assess current and planned information systems, identifying security architecture issues, and designing solutions for gaps.
- Analyze, troubleshoot, and investigate security-related, information systems' anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts
- Maintain, configure, and analyze network and host-based security platforms.
- Participates in incident management activities.
- Conduct log analysis using designated Security Information & Event Management (SIEM) platform.
- Vulnerability analysis and remediation.
- Performs Information System Security Manager (ISSO) duties on assigned government-authorized systems;
- Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, and other needed artifacts for assessment and authorization tasks.
- Supports security authorization activities in compliance with Risk Management Framework (RMF)
- Implement Security Technical Implementation Guides (STIG), Security Requirements Guide (SRG), and Security Content Augmentation Protocol (SCAP) scans as required on designated systems
- Maintain and update relevant system and process documentation and develop ad-hoc reports as needed
- Assist the development of security tool requirements, trials, and evaluations, as well as security operation procedures and processes
- Establish and maintain a strong working relationship with all team members
- Provide off-hours support on an infrequent, but as needed basis
- Bachelor's in Computer Science or Information Systems and 4+ years of demonstrated results, or equivalent experience.
- A certification in one of the following: Security +, GSEC or CISA
- Must be able to maintain an active DoD Secret Clearance
- Experience with the NIST/FISMA regulatory and compliance requirements
- Be able to effectively manage multiple tasks simultaneously; coordinating and ensuring scheduled goals are met
- Well versed in IT government security accreditation's and certification IAW NISPOM, NIST, RMF and other approved government IT security standards, policies and directives
- Experience using vulnerability scanning tools.
- Experience with Network-based Intrusion Detection/Prevention Systems (IDS/IPS) and Host-based Intrusion Detection/Prevention Systems (HIDS/HIPS)
- Must have experience in Security Risk Assessment/analysis support.
- Must have excellent communication and customer interface skills.
- Candidates must be able to travel 10% of the time.
Vacancy expired!