DescriptionSr. Cyber Security Engineer
Assist in oversight and the security posture of the Bureau’s OpenNet/ClassNet/Cloud environments, develop the overall security strategy and assist in development of the information system security policy for the Bureau. In this role, you'll monitor security systems, detect and investigate threats, and enhance security solutions. You'll work independently to administer Windows and Active Directory security, manage cloud security features, and deploy SIEM tools for daily monitoring. Your expertise in conducting security assessments, vulnerability testing, and incident response will be crucial in maintaining a secure IT infrastructure. This position will also be responsible for security tool analysis, implementation and operation.
Compensation & Benefits:
- Estimated Starting Salary Range for Sr. Cyber Security Engineer: Pay commensurate with experience.
- Full time benefits include Medical, Dental, Vision, 401K and other possible benefits as provided. Benefits are subject to change with or without notice.
Sr. Cyber Security Engineer Responsibilities Include:
- Implement, maintain, and monitor the security features available in the Bureau’s Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) cloud platforms
- Create dashboards to aggregate security-related data in one SIEM and introduce Security as a Service (SECaaS) program for a holistic security monitoring solution for all cloud environments
- Build, optimize and maintain conceptual and logical database models to support meta-data management, data catalog, data dictionary
- Interface with analysts gather requirements to ensure security controls are addressed
- Monitor cloud infrastructure requirements utilizing DevSecOps tooling and practices
- Report on all cloud instances and changes at the host level and their corresponding impacts to OBO applications.
- Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
- Evaluate security architectures and designs to determine the adequacy of security controls are adhered to by policy
- Ensure overall security requirements for connectivity, cloud infrastructure, information management within cloud infrastructure, and cloud service management are met for all of OBO cloud platforms
- Supports the ISSO to ensure customer security requirements for IT security are met.
- Monitors auditing, and analyzing the OBO OpenNet, Classnet servers as well as the Azure Cloud network using NetIQ, iPost and Splunk in a Windows 2008 and Windows 2012 environment.
- Monitors the daily operations to take necessary actions to proactively address issues to the appropriate problem area in supporting security efforts.
- Collaborates with the IT System POC’s and with other Security staff to identify indicators of security breach and identify vulnerable computers and systems that may be used for computer network exploitation, data ex-filtration, and data compromise.
- Composes and submits summary morning report documenting outstanding security issues.
- Cloud Security Administration; implement, maintain, and monitor the security features available in IaaS, PaaS, and SaaS cloud platforms.
- Create dashboards to aggregate security-related data in one SIEM and introduce SECaaS (Security as a Service) program for a holistic security monitoring solution for all cloud environments.
- Liaisons between OBO Security and other Department of State Bureau’s which require meetings as well as request reviewing future security tools that are used agency wide.
- Works with Security Team to development Plans of Action & Milestones (POA&Ms) resulting from assessment discrepancies or failures. Monitors POA&Ms and works with IT System POCs to resolve. Re-assesses controls upon POA&M resolution. Provides status reports as necessary.
- Supports the efforts with Continuous Monitoring concepts and Risk Management Framework (RMF) methodologies to support FISMA, NIST RMF, and NIST SP 800-series publications.
- Coordinates with IT System POCs to review and remediate any critical/high impact vulnerabilities scan results, including support to reduce Operating Systems, Web Interfaces, Databases, and Application operational vulnerabilities.
- Monitors Change & Configuration Management System for secure baseline compliance with DoS regulations. Assists in compliance reviews and status reporting.
- Monitors Change & Configuration Management System for secure baseline compliance with DoS regulations. Assist in compliance reviews and status reporting.
- Works with the Systems central point of contact for IT security reviews in order to help optimize security for the systems with the designated system boundaries. Prepares and/or edit organizational charts, memos and other general office documents and material as required.
- Performs other job-related duties as assigned
Cyber Security Engineer Experience, Education, Skills, Abilities requested:
- Bachelor's degree in cybersecurity, computer science, informational technology, or related fields and 10 years of Cybersecurity experience
- Ten (10) progressive experience in providing technical engineering services for the support of integrated cloud systems and solutions; configures and validates cloud systems; tests cloud products and systems to detect cloud security weakness; analysis of mission requirements, secure architecture design, organizational and vulnerability assessments, intelligence and threat analysis; system security/network analysis,
- Extensive experience in cybersecurity analysis, incident response, and documentation
- Must have proficiency and understanding of FEDRAMP and the FEDRAMP process.
- Ability to conduct information system audits.
- Ability to produce technical documentation.
- Experience troubleshooting audit reports.
- Working knowledge of NIST Cybersecurity Framework and CIS Critical Security Controls.
- Must have a basic understanding of securing Azure/AWS Cloud environments.
- Must be a US citizen.
- Must have a Cybersecurity/Information Assurance-type certification (CISSP, CISM, or CompTIA Security+).
- Must possess and maintain a TOP SECRET clearance.
- Must pass pre-employment qualifications of Cherokee Federal
Company Information:
Cherokee Nation System Solutions (CNSS) is a part of Cherokee Federal – the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government’s mission with compassion and heart. To learn more about CNSS, visit cherokee-federal.com.
#CherokeeFederal #LI
- Information Security Engineer
- Network Security Engineer
- Security Operations Engineer
- Cyber Defense Engineer
- Systems Security Engineer
- Network Security
- Vulnerability Management
- Intrusion Detection
- Security Architecture
- Penetration Testing
Legal Disclaimer: Cherokee Federal is an equal opportunity employer. Please visit cherokee-federal.com/careers for information regarding our Affirmative Action and Equal Opportunity Employer Statement, Accommodation request, and Presidential EO 14042 Notice.
Please Note: This position is pending a contract award.
If you are interested in a future with Cherokee Federal, APPLY TODAY! Although this is not an approved position, we are accepting applications for this future and anticipated need.