Systems Security Analyst / Cybersecurity Engineer / Mostly Remote
at Global Engineering Technology Inc GET
Washington, DC 20001, USA -
Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
---|---|---|---|---|---|---|---|
Immediate | 01 Jun, 2024 | USD 170000 Annual | 01 Mar, 2024 | 5 year(s) or above | Systems Engineering Process,Bulletins,Models,Systems Engineering,Components,Industrial Control,Regulations,Encryption,Defense,Rest,Information Technology,Security Management,Authentication,Integration,Confidentiality,Scanning,Software Solutions | No | No |
Required Visa Status:
Citizen | GC |
US Citizen | Student Visa |
H1B | CPT |
OPT | H4 Spouse of H1B |
GC Green Card |
Employment Type:
Full Time | Part Time |
Permanent | Independent - 1099 |
Contract – W2 | C2H Independent |
C2H W2 | Contract – Corp 2 Corp |
Contract to Hire – Corp 2 Corp |
Description:
THIS IS A HYBRID-REMOTE POSITION.
Global Engineering and Technology (GET) is seeking qualified applicants for Senior Systems Security Analyst / Security Engineer in support of the United States Department of Energy’s cybersecurity program. This is a highly compensated, high-responsibility technical security position that is central to our mission’s success.
- This senior position is responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security within our team’s highly dynamic operating environment
- Candidates will have senior-level experience in Security Information and Event Management (SIEM) and senior-level experience as an Information System Security Manager (ISSM)
REQUIRED KNOWLEDGE, SKILLSET, AND ABILITIES (KSAS):
- Knowledge of computer networking concepts and protocols, and network security methodologies.
- Knowledge of Industrial Control System/Supervisory Control and Data Acquisition System threats, vulnerabilities, security controls and methods.
- Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
- Knowledge of cybersecurity and privacy principles.
- Knowledge of cyber threats and vulnerabilities.
- Knowledge of specific operational impacts of cybersecurity lapses.
- Knowledge of encryption algorithms
- Knowledge of cryptography and cryptographic key management concepts
- Knowledge of installation, integration, and optimization of system components.
- Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
- Knowledge of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, nonrepudiation).
- Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
- Knowledge of security system design tools, methods, and techniques.
- Knowledge of software engineering.
- Knowledge of the systems engineering process.
- Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
- Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
- Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).
- Knowledge of Personally Identifiable Information (PII) data security standards.
- Knowledge of information technology (IT) risk management policies, requirements, and procedures.
- Knowledge of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures.
- Knowledge of configuration management techniques.
- Knowledge of security management.
- Knowledge of developing and applying user credential management system.
- Knowledge of implementing enterprise key escrow systems to support data-at-rest encryption.
- Knowledge of an organization’s information classification program and procedures for information compromise.
- Knowledge of countermeasure design for identified security risks.
- Knowledge of network design processes, to include understanding of security objectives, operational objectives, and trade-offs.
- Knowledge of how to use network analysis tools to identify vulnerabilities.
- Skill in designing the integration of hardware and software solutions.
- Skill in developing and applying security system access controls.
- Skill in evaluating the adequacy of security designs.
- Skill in assessing security systems designs.
- Skill in assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.).
- Skill in recognizing vulnerabilities in security systems. (e.g., vulnerability and compliance scanning).
- Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, nonrepudiation)
How To Apply:
Incase you would like to apply to this job directly from the source, please click here
Responsibilities:
Please refer the Job description for details
REQUIREMENT SUMMARY
Min:5.0Max:15.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Other
Graduate
Engineering
Proficient
1
Washington, DC 20001, USA