*** Very long term project Long term usually goes for 3+ years***Webcam interview initial remote due to covid then onsite ***
***This position is fully remote however, the individual is required to pick up commonwealth issued equipment at Harrisburg PA; reasonable expenses will be paid for this
Cyber Security Engineer with minimum 6 years experience with at least 2 years in a large enterprise environment.
Qualifications:
- Minimum 6 years experience with at least 2 years in a large enterprise environment
- Strong analytical skills with high attention to detail
- Strong knowledge of malware techniques and behavior
- Solid understanding of risk management
- Threat hunting knowledge and experience
- Advanced problem solving skills
- Self directed with strong time management skills
- Comfortable working independently as well as in a team setting
- Effective communication skills
- Understanding of security and threats relevant to cloud technologies.
- Experience with scripting languages PowerShell, Python, etc.
- Experience with forensic tools, such as:
- Network security monitoring: FireEye NX, AX, PX Endpoint, Splunk ES
- Firewalls: AlgoSec, Checkpoint, CISCO ASA, SilverPeak, VMWare NSX
- Web vulnerability scanning: Tenable.IO, Rapid7 AppSpider
- Encryption: Globalscape Secure FTP, PGP
- Penetration testing: Metasploit, Kali Linux, Netsparker, and Wireshark
Responsibilities:
- Expert oversight and implementation of Security and Risk Management, Asset Security, Security Architecture and Engineering, Communication and Network Security, Identity and Access Management, Security Assessment and Testing, Security Operations, and Software Development Security.
- Performing cyber security functions for three Commonwealth of PA agencies in collaboration with the Enterprise Information Security Office in a team lead capacity.
- Maintain deep understanding of information technology networking and infrastructure, particularly as they pertain to network and cyber security.
- Maintain and have operational familiarity with security infrastructure and tools, including IPS/IDS, log management (Splunk), firewalls (Checkpoint), endpoint protection (FireEye), etc.
Desired Qualifications:
- Experience with Network intrusion detection tools such as Snort, Security Onion, SolarWinds Security Event Manager,
- Experience with Packet sniffers such as Tcpdump and Windump
- Familiarity with SAST and DAST tools such as Veracode, AppSpider and AppScan
Desired Certifications (one or more)
- CISSP
- GSEC
- GCIH
- GCFA
- CISM
- Or other relevant certifications
Required Skills:
- Minimum 6 years experience with at least 2 years in a large enterprise environment 6 Years
- Strong analytical skills with high attention to detail
- Strong knowledge of malware techniques and behavior
- Solid understanding of risk management
- Threat hunting knowledge and experience
- Advanced problem solving skills
- Self directed with strong time management skills
- Comfortable working independently as well as in a team setting
- Effective communication skills
- Understanding of security and threats relevant to cloud technologies.
- Experience with scripting languages PowerShell, Python, etc.
- Experience with forensic tools, such as Network security monitoring: FireEye NX, AX, PX Endpoint, Splunk ES
- Experience with Firewalls: AlgoSec, Checkpoint, CISCO ASA, SilverPeak, VMWare NSX
- Experience with Web vulnerability scanning: Tenable.IO, Rapid7 AppSpider
- Experience with Encryption: Globalscape Secure FTP, PGP
- Experience with Penetration testing: Metasploit, Kali Linux, Netsparker, and Wireshark
Desired Skills:
- Experience with Network intrusion detection tools such as Snort, Security Onion, SolarWinds Security Event Manager
- Experience with Packet sniffers such as Tcpdump and Windump
- Familiarity with SAST and DAST tools such as Veracode, AppSpider and AppScan
- Desired Certifications (one or more) CISSP, GSEC, GCIH, GCFA, CISM or other relevant certification(s)