Job title: Cyber Security Engineer
Location: Sacramento, CA (Remote now,On-site later)
Duration: 1 year contract (Possibility ofextension/permanency)
Education/Experience:
- Bachelor's degree in computer programming or relevant field required.
- Experience defining, deploying, and managing security in AWS EC2 required.
- Experience defining, deploying, and managing security in VMWare Cloud (VMC) preferred.
- Current CEH, GPEN, CISSP, and GCIA certifications preferred.
- Experience with SIEM (i.e. Arcsight, QRadar) Sourcefire, FireEye, Snort, or an equivalent tool required.
- 5-7 years’ experience required.
Summary:
- The DHMS Cloud Security Officer will monitor, analyze, and detect security events and incidents within the DHMS AWS cloud environment.
- They will coordinate and maintain security toolsets to support the projects continuous monitoring and ongoing authorization programs and establish a framework by which security risks can be measured and mitigated.
Job Responsibilities:
- Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates.
- Implements security systems by specifying intrusion detection methodologies and equipment.
- Directing equipment and software installation and calibration.
- Preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation.
- Verifies security systems by developing and implementing test scripts.
- Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs.
- Responsible for the design, development, implementation, and integration of a DoD IA architectures, systems, or system components for use within computing, network, and enclave environments.
- Ensure that the architecture and design of development and operational systems are functional and secure.
- This includes designs for program of record systems and special purpose processing nodes with platform IT interconnectivity.
Skills:
- Significant experience with classes of vulnerabilities, appropriate remediation, and industry standard classification schemes (CVE, CVSS, CPE).
- Significant, demonstrated knowledge regarding security vulnerabilities, application analysis, and protocol analysis.
- Experience devising methods to automate testing activities and streamline testing processes.
- Knowledge of methods for on-going evaluation of the effectiveness and applicability of information security controls (e.g., vulnerability testing, and assessment tools).
- Significant experience with Linux and Windows operating systems. Practiced experience with common programming or scripting languages. Exploit development experience a plus.
- Knowledge of circuit boards, processors, electronic equipment and computer hardware and software.
- Knowledge of the practical application of engineering science and technology.
- Knowledge of laws, legal codes, government regulations, agency rules and the democratic political process.
- Knowledge of patching programs of major hardware/software manufacturers. Knowledge of secure configuration and hardening of systems.