27 Feb
Operations Security Engineer
Virginia, Fairfaxva , 22038 Fairfaxva USA

Vacancy expired!

Operations Security EngineerASM Research is seeking a highly motivated individual with strong analytical skills to support our Vulnerability and Risk Mitigation Team. The Candidate will deploy cyber security solutions to perform vulnerability and threat analysis on various environments utilizing scanning tools such as McAfee ePO, Nessus, SCAP, and other tools as required. In addition to analysis the candidate must present and provide IAVM and security compliance reporting. Candidate will work closely with team members to define security best practices. The various cyber security functions the candidate will perform will include but not be limited to identification, interpretation, and remediation of vulnerabilities across a variety of applications, operating systems, and platforms. Previous experience deploying and maintaining McAfee EPO (HBSS/ESS) and SIEM solutions such as Splunk, etc. is preferred.

Job Responsibilities
  • Develops security procedures and methods to ensure the safety of information systems.
  • Engineers, implements, and monitors security measures for the protection of computer systems, networks, and information utilizing but not limited to DISA STIG.
  • Documents and implements Standard Operating Procedures (SOPs).
  • Administer McAfee ePO as well as all McAfee products via ePO.
  • Manage and maintain the tuning of HBSS alerts, Firewall, and VSE on all managed endpoints.
  • Monitor security compliance of Windows and Red Hat for Enterprise Linux systems via the ePO server.
  • Provide McAfee product support and troubleshooting across environment systems.
  • Provide support to System Administrators for various server platforms managed by the ePO.
  • Conduct threat modeling on application system and recommend vulnerability mitigations.
  • Conducts network vulnerability scanning utilizing NessACAS as needed and report on IAVM, Pentagon SAR, ARCYBER OPORD and TASKORDS.
  • Assists in security engineering of web, database, system, and network architecture.
  • Identifies opportunities for process improvements and leads efforts to implement.
  • Writes comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement.
  • Identifies additional application security related tools, conducts tool analysis, and provides recommendations on what tools will enhance security protocols.
  • Interpret and apply Federal and DoD laws and regulations including but not limited to DoD directives, NIST and AR publications.

Minimum Qualifications
  • Bachelor's Degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience. Master's Degree preferred.
  • 10-15 years of experience as an Application Security Developer, Application Security Analyst, or equivalent.
  • Active Security+ certification
  • Active Secret security clearance

Other Job Specific Skills
  • Proven experience deploying and engineering Endpoint security products, vulnerability scanners and SIEM solutions.
  • Certifications/Licensures: CCNA, CAP, CEH, CASP, CISM, CISSP, CISSP-ISSEP, CISSP-ISSAP, CCNA Security, CySA+, GICSP, GSEC, MS Azure Certifications
#CJpost

Vacancy expired!

Subscribe for new vacancies
Report job