Cyber Security Engineer – Mid Level
Tyto Athene, LLC
full-time
Posted on:
Location Type: Remote
Location: Virginia • United States
Visit company websiteExplore more
About the role
- Administer, configure, manage, patch, upgrade, design, and optimize network and host-based security tools and systems
- Evaluate, install, configure, test, and update network and host-based security systems and hardware
- Develop network and host-based security systems and security operation center knowledge base articles, how-to documents, standard operating procedures, and policies
- Develop scripts or code to automate operations, administration, maintenance, or analysis of data and systems
- Develop, document, and review secure baseline configurations for each technology used within the environment
- Assist in determining authorization boundaries and placement of new systems within the Agency’s enterprise architecture
- Support the development of new systems, and modernization of legacy systems that are in line with Security and Enterprise Architecture requirements
- Design, develop, and maintain detailed security drawings
- Develop alternative system designs and architectures
- Develop and document Solution Architecture Models, Threat Models, and CONOPS
- Perform security impact analyses for proposed changes to assigned systems
- Review IT system plans to ensure designs meet governmental standards and provide an appropriate level of protection for client systems and data
- Conduct gap analysis of system requirements and components
- Mentor teammates
Requirements
- Minimum 5 years general experience and 3 years of Security Engineering OR Cyber Ops experience
- High initiative, independence, and ability to produce clear plans in unclear operating environments; articulate, concise, and precise communication ability
- Bachelor's degree in a technical field from an accredited college/university or equivalent experience
- Familiarity and/or real-world experience using Forescout to design, implement and deploy enterprise level solutions on the platform.
- Familiarity with the use and application of enterprise level Data Loss Prevention (DLP) platforms to monitor, detect and prevent unauthorized data usage or movement across systems and networks.
- Experience with Windows Servers and Linux variants (RedHat/CentOS/Ubuntu)
- Experience with at least one of the following: Syslog (rsyslog, syslog-ng, etc), Event log collection, scripting (Python, Perl, Bash, PowerShell), and/or VMWare
- Familiar with the use and application of an enterprise level SIEM for analysis and data collection.
- Familiar with the use and application of FireEye or other enterprise level network malware detection platforms.
- Familiar with multi-tiered network applications, common ports, and protocols used in those communications.
- Ability to perform online research and comprehend attack signatures while comparing them to network traffic to perform a proper analysis of detections
- Strong analytical and organizational skills
- Familiarity or real-world experience with web application firewall (WAF) technology.
- Familiarity or real-world experience with intrusion detection and prevention (IDPS) technology.
- Thorough understanding and knowledge of TCP/IP networking
- Experience in translating daily Cyber Ops activities into standard operating procedures (SOPs) and maintaining accurate records for compliance and future reference.
- Using artificial intelligence (AI) in producing business and security solutions
Benefits
- Health/Dental/Vision
- 401(k) match
- Paid Time Off
- STD/LTD/Life Insurance
- Referral Bonuses
- Professional development reimbursement
- Parental leave
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
network securityhost-based securitysecurity engineeringCyber OpsscriptingWindows ServersLinuxData Loss Prevention (DLP)SIEMTCP/IP networking
Soft Skills
independencecommunicationanalytical skillsorganizational skillsmentoring