OCT Consulting is a business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information Technology.
Responsibilities and Duties
OCT currently has an opening for a Security Engineer - Senior - Lead to work with our federal client, the Federal Communications Commission (FCC). This role will provide comprehensive cybersecurity infrastructure support activities, including engineering, architecture, and technical implementation of security solutions. This position is contingent upon contract award.

Day to day responsibilities include:

• Provide cyber infrastructure support activities in Enterprise Cybersecurity Support
• Lead cybersecurity engineering practices and implementations
• Support security control assessments and continuous monitoring
• Conduct vulnerability scanning and manage incident response processes
• Design and implement security solutions for IT systems
• Provide technical expertise for system integration and security architecture
• Support DevSecOps practices and secure system development lifecycle
• Evaluate and recommend cybersecurity tools and technologies
• Implement and maintain security controls per NIST 800-53
• Support penetration testing and security assessment activities
• Assess and recommend access control systems, application and file security, security practices, intrusion detection/prevention
• Perform system administration, configuration, patching, upgrades, and optimization of SOC tools, devices, applications, and sensors
• Create, maintain, and support compliance content for FCC Continuous Diagnostics and Mitigation (CDM) toolset

REQUIREMENTS

• Must be a U.S. Citizen
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field
• 7+ years of experience performing cyber infrastructure support activities in Enterprise Cybersecurity Support government contracts
• Core competencies in Cybersecurity Engineering practices, system architecture, security implementation
• Knowledge, skills, tasks, and capabilities described in NICE Work Role for Infrastructure Support (PD-WRL-004)
• Required Certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), OR Information Systems Security Engineering Professional (ISSEP), AND Microsoft Certified Cybersecurity Architect Expert or GIAC Security Expert (GSE)
• Clearance Requirements: Top-Secret (TS) clearance;
  Location: On-site at FCC headquarters; some telework may be available

• Provide cyber infrastructure support activities in Enterprise Cybersecurity Support
• Lead cybersecurity engineering practices and implementations
• Support security control assessments and continuous monitoring
• Conduct vulnerability scanning and manage incident response processes
• Design and implement security solutions for IT systems
• Provide technical expertise for system integration and security architecture
• Support DevSecOps practices and secure system development lifecycle
• Evaluate and recommend cybersecurity tools and technologies
• Implement and maintain security controls per NIST 800-53
• Support penetration testing and security assessment activities
• Assess and recommend access control systems, application and file security, security practices, intrusion detection/prevention
• Perform system administration, configuration, patching, upgrades, and optimization of SOC tools, devices, applications, and sensors
• Create, maintain, and support compliance content for FCC Continuous Diagnostics and Mitigation (CDM) toolse