Cyber Security Engineer

The Mitre Corporation Mclean , VA 22107

Posted 1 month ago

Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challenges-and we're committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. We're making a difference every day-working for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities, and a culture of innovation that embraces diversity, inclusion, flexibility, collaboration, and career growth. If this sounds like the choice you want to make, then choose MITRE-and make a difference with us.

Responsibilities include:

Vulnerability Management - Ensure MITRE systems are in patch compliance with identified vulnerabilities

  • Task lead for Continuous Monitoring

  • Monitor and manage compliance for all systems within InfoSec's Continuous Monitoring program

  • Tasks include:

  • Ensure system scan information is provided to system owners on a regular basis.

  • Work with system owners to remediate findings.

  • Coordinate with appropriate internal teams in identifying, reviewing, and mitigating discovered findings/risks.

  • Verify device records are properly set up in RSA Archer GRC tool

  • Create and manage compliance sprints to address vulnerabilities/findings/risks as required

  • Analyze and review CM data and metrics with management.

  • Monitor service accounts for feedback or correspondence with customers

  • Troubleshoot and triage CM related issues.

  • Project team member

  • Participate in project efforts to improve CM for all (internal operations, customers, and management)

  • Compliance Sprints Task Lead

  • Work with CE management and Operational teams to identify risks and vulnerabilities that require immediate action

  • Communicate with employees to directly address known risks with appropriate mitigating actions

  • Service Request management support role

  • Provide back up support for creation and escalation of all InfoSec related service requests

  • Customer Engagement responsibilities

  • To support team initiatives and help accomplish tasks and goals within the CE work program

  • Work with a customer service mentality in all interactions with customers and team member

Required Qualifications:

  • General knowledge of industry security frameworks

  • Some technical knowledge of networks, operating systems, and/or applications

  • Good time management skills and ability to handle multiple tasks

  • Strong writing & communication skills, with attention to details

Preferred Qualifications:

  • Analytical Thinking and Decisive Judgment - analyzing issues and problems systematically, gathering broad and balanced input, drawing sound conclusions and translating conclusions into timely decisions and actions.

MITRE is proud to be an equal opportunity employer. MITRE recruits, employs, trains, compensates, and promotes regardless of race, religion, color, national origin, gender, gender expression, sexual identity, disability, age, veteran status, and other protected status.

MITRE intends to maintain a website that is fully accessible to all individuals. If you are unable to search or apply for jobs and would like to request a reasonable accommodation for any part of MITRE's employment process, please contact MITRE's Recruiting Help Line at 703-983-8226 or email at recruitinghelp@mitre.org.

Copyright 1997-2020, The MITRE Corporation. All rights reserved. MITRE is a registered trademark of The MITRE Corporation. Material on this site may be copied and distributed with permission only.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Lead Cyber Security Engineer (Remote/Flexible US Locations)

Hilton Worldwide

Posted 2 weeks ago

VIEW JOBS 9/2/2020 12:00:00 AM 2020-12-01T00:00 From smartphone capabilities like Digital Key to connected rooms that allow for integrated entertainment, temperature and lighting controls, Hilton's Global Technology team is building the hospitality experience of the future - for our guests, owners and Team Members. Through innovative technology development and deployment, this team ensures Hilton has the technology needed to support our continued global growth while remaining at the forefront of hospitality technology innovation. What will I be doing? As a Lead Cyber Security Engineer, you will develop, maintain, and enhance Hilton's enterprise logging and security information and event management (SIEM) services, which are built on Splunk. You will craft and implement integrated data feeds into an enterprise Splunk environment, in support of cybersecurity and the operational and data science analytics. You are proactive and are a problem solver and troubleshooter at heart, you are intellectually curious with exposure to numerous technologies. More specifically, you will: * Manage a Logging-as-a-Service solution and related hardware infrastructure, lead all aspects of production support, design the logging (i.e., Splunk) system to meet growth, while maintaining a balance between performance, stability, and agility. * Develop sophisticated scripts to manipulate multiple data repositories to support analyst requirements. * Build sophisticated detection and alerting logic, as well as log source onboarding for our SplunkCloud deployment. Ingest sources include: Networking (Load-Balances, IPS, Firewalls), Operating Systems (Linux, Windows, UNIX), APIs, security tools, infrastructure, and applications. * Build and optimize Big Data correlations, using Splunk search language (SPL). * Optimize and Tune logging source streams. * Provide mentorship and support for our co-managed Enterprise Security search environment. * Maintain and enhance the role-based access control models that carry out privilege access for users and data. * Work directly with Splunk teams to gather functional requirements, develop solutions that meet or exceed the requirements, and support the system. * Demonstrate knowledge on a number of security technologies to operate and maintain the Splunk log management infrastructure. * Develop sophisticated reports to meet the requirements of key partners and scalable security management tools and processes. * Lead workflows and common practices (e.g., communications) involved in delivering a change or upgrade. Direct Reports: You will mentor and supervise contractors and consultants based on demand and project needs. What are we looking for? We are looking for a dynamic, creative leader who is passionate about serving others. Success in this role will demonstrate itself through the following attributes and skills: * Technical expertise with Exceptional attention to detail and aptitude for understanding our overall technology environment and security tools. Demonstrated understanding of the technical implementation details required to support and lead our security tools * Proactive attitude. Operates autonomously with minimal direction. Possesses personal pride and commitment to quality * Effective and creative problem-solving skills while maintaining a high level of flexibility, professionalism, and integrity * Experience managing vendor relationships, including vendor Technical Account Managers to address Hilton needs and resolve support issues * Effective partnership across technology engineering teams, including communication of requirements, quality assurance/risk management practices, and deployment validation * Knowledge in base concepts across all layers of the OSI, with solid understanding of base technology services (e.g., DNS, DHCP, TCP/IP) * Knowledge of different enterprise logging methods (e.g., agent based, syslog, HEC), with a focus on security event logging To fulfill this role successfully, you should demonstrate the following minimum qualifications: * Education: High School Diploma/GED * Seven (7) years of Technology Security experience * Three (3) years of hands-on administrative experience with Splunk * Two (2) years of Splunk Enterprise Security experience * Experience creating and executing Splunk language (SPL) searches and commands. Experience building Splunk Dashboards to display time series and other views to diverse audiences. * Deep expertise in leading a complex Splunk Deployment Server environment. Experience with deploying Splunk Forwarders in a large multi OS enterprise environment. * Building Splunk apps that align to Common Information Model (CIM) * Experience with Splunk AppInspect and App certification process * Experience with using scripting languages to automate tasks and manipulate data in both Windows and Linux environments. * Experience with cloud service providers such as Amazon Web Services (AWS) and Microsoft Azure and their associated log collection methods; scripted, Kinesis Firehose, Event Hub, API, etc. * Experience with virtualization and container environments such as Kubernetes and Docker * Experience using Windows CLIs to perform basic functions such as directory traversal, view network configuration, force a restart and listing running processes * Experience with Linux administration It would be helpful in this position for you to demonstrate the following capabilities and distinctions: * Education: Bachelor's Degree * Nine (9) years of Technology Security experience * Five (5) years of hands-on administrative experience with Splunk * Four (4) years of Splunk Enterprise Security experience * Knowledge of hotel technologies such as PMS, in-room and point-of-sale / payments technologies. * Experience in assessing and identifying security and operational issues present in large-scale LAN, WAN, and cloud networks. * Technical knowledge and understanding of endpoint protection tools and techniques, including enterprise governance and control practices for solutions with >100K deployed agents. What is it like working for Hilton? Hilton is the world's leading global hospitality company, spanning the lodging sector from luxurious full-service hotels and resorts to extended-stay suites and mid-priced hotels. For a century, Hilton has offered business and leisure travelers the finest in accommodations, service, amenities, and value. Hilton is dedicated to continuing its tradition of providing exceptional guest experiences across its global brands. Our vision to fill the earth with the light and warmth of hospitality unites us as a team to create remarkable hospitality experiences around the world every day. And, our amazing Team Members are at the heart of it all! EOE/AA/DISABLED/VETERANS Hilton Worldwide Mclean VA

Cyber Security Engineer

The Mitre Corporation