Senior Security Engineer

Unissant Bethesda , MD 20813

Posted 2 months ago

Unissant, Inc. is an innovative solutions development and consulting company committed to delivering simplicity through innovation. We meet this commitment by delivering state-of-the-art enterprise computing and processing solutions to both government and commercial clients. Our workforce continually strives to advance y(our) collective intellect through collaborative fortitude, and we are looking for further talent to join that effort! To learn more about our exciting organization, please visit us at www.unissant.comWe are seeking a Senior Security Engineer to join our team and support our client in Bethesda, MD. The position will be responsible on securing the client's infrastructure and environment, improving security processes, and building the future of security for our client.The Senior Security Engineer is responsible for leading technical aspects of the security operations and oversight of key security defenses. The Senior Security Engineer is also responsible for leading the technical security assessments and assurances of the client's environment as well as security monitoring, and acts as the technical lead in the components required to analyze and contain a security incident.When responding to this opportunity, please speak to the relevancy of your work experience in your cover letter.Essential Duties and

Responsibilities:
* Implements and configures IDS and related enterprise security systems to help the organization better identify intrusions, attacks, vulnerabilities and recommends appropriate course of action. * Maintains an expert-level knowledge of the daily security landscape and serves as a security advisor to Program Manager and the Government Client. * Responsible for independent and team-based security audits of all security policies, procedures, and protocols with an emphasis on consistent improvement of controls. * Maintains, establishes, and improves vulnerability management, risk assessment, and incident management processes. * Interacts with IT, Hosting Operations, and development teams to identify areas of risk and solutions for improvement including development, infrastructure, and systems management. * Serves as an escalation point for all security incidents reported by users and/or security tools and drives resolution efforts. * Lead the identification of potential vulnerabilities within systems, networks, DBs, applications and recommend suitable controls and countermeasures to mitigate such vulnerabilities. * Regularly tests and audits systems within the corporate IT and production environment for vulnerabilities and misconfigurations. * Advises IT, Hosting Operations and Development teams on secure configuration, installation, maintenance, and upgrades of infrastructure and applications as well as evaluation of new products as it relates to security. * Creates, provides, and improves upon documentation and training to internal departments to facilitate secure day-to-day operations. * Plays a key role in establishing and maintaining compliance programs as needed * Architects, designs, implements, maintains and operates information system security controls and countermeasures. * Conducts internal penetration testing assessments (e.g., network, web applications, wireless networks). * Perform as the CSIRT Technical Lead in order to properly analyze, contain, eradicate, and recover a security incident.Work Experience: * Minimum 7+ years of experience in the field of security in the following areas: security engineering, incident response, system, application and network security, vulnerability management, threat modelling, penetration testing, intrusion detection, firewalls and encryption technologies. * Minimum 7+ years of experience in the information security field with exposure to audit, risk management, data privacy, and regulatory and compliance practices. * Knowledge and experience of cloud infrastructure security; Azure, AWS, Google Cloud. * Knowledge and experience working with various security frameworks (e.g., ISO/IEC 2700x, NIST CSF, COBIT, OWASP) and audit frameworks (SOC 2). * Knowledge of Security Information and Event Management (SIEM) tools, network and operating system security features (e.g., Windows, Linux, Ubuntu) and network security technologies (e.g. firewalls, filtering routers, authentication mechanisms, IPSEC VPN, server hardening). * Experience in scripting languages such as Python, Ruby, Perl, Bash and/or PowerShell * Have hands-on experience with tools and technologies used throughout secure SDLC* Hands on experience with managing security awareness and training such as online training modules, lunch and learns, periodic security communication, and simulated phishing campaigns. * Demonstrated experience drafting documentation including functional and system requirements, configuration management plans, disaster recovery plans, user guides, system security plans, and production data waivers. * Familiarity with attack vectors and its customer impact. * Demonstrated experience in the following areas of:*
  • Risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies and security attack pathologies* ISO 27001/27002, ITIL and COBIT frameworks * Windows, UNIX and Linux operating systems * Perimeter security controls firewall, IDS/IPS, network access control and network segmentation * Router, switch and VLAN security; wireless security * Security concepts related to DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies * Demonstrated experience working effectively across internal and external organizations.Job

    Skills:
    * Knowledge of practices and methods of IT strategy, enterprise architecture and security architecture * Knowledge of Network security architecture development and definition * Knowledge of third-party auditing and cloud risk assessment methodologies * Security knowledge on current threats, trends and mitigations. * Ability to work in a collaborative team environment as well as independently when required. * Strong time management and prioritization skills and ability to multi-task across various projects in a high-paced work environment to meet deadlines and manage stakeholder expectations.Education: * Bachelor's degree required with a concentration in Computer Science, Information Technology, and Information Systems * Master's Degree is a plusCertificates, Licenses and Registrations:* CISSP, CISM, SANS GIAC PreferredCommunication

    Skills:
    * Ability to write clear and concise creative content in a highly confidential manner * Excellent written and verbal communication skills, including the ability to convey technical information to non-technical individuals.Travel: * Willing to travel (up to 5%)Environmental

    Requirements:
    * Mainly sedentary; in an office environment. May be required to lift up to ten (10) pounds * Flexible in working extended hoursThe above statements are intended to describe the general nature and level of work being performed by the individual(s) assigned to this position. They are not intended to be an exhaustive list of all duties, responsibilities, and skills required. Unissant management reserves the right to modify, add, or remove duties and to assign other duties as necessary. In addition, where applicable and available, reasonable accommodation(s) may be made to enable individuals with disabilities to perform essential functions of this position.Please note: Candidate(s) will be required to go through pre-employment screening.Unissant, Inc. is a proud Equal Opportunity Employer! (EOE; M/F/D/V; AA)
  • icon no score

    See how you match
    to the job

    Find your dream job anywhere
    with the LiveCareer app.
    Mobile App Icon
    Download the
    LiveCareer app and find
    your dream job anywhere
    App Store Icon Google Play Icon
    lc_ad

    Boost your job search productivity with our
    free Chrome Extension!

    lc_apply_tool GET EXTENSION

    Similar Jobs

    Want to see jobs matched to your resume? Upload One Now! Remove
    Senior Principal Network Engineer

    Mantech International Corporation

    Posted 4 days ago

    VIEW JOBS 11/13/2019 12:00:00 AM 2020-02-11T00:00 Secure our Nation, Ignite your Future ManTech is seeking a motivated, career and mission oriented Senior Principal Network Engineer to join our team in the Bethesda, MD area to provide unparalleled support to our customer and to begin an exciting and rewarding career within ManTech. Responsibilities include, but are not limited to: * Devise solutions to complex operational problems within the capacity and operational limitations of installed equipment. * Research, evaluate, and recommend new computer network equipment and technologies. * Develop and execute contingency plans for network software and hardware failures including isolated and major outages. * Utilize monitoring, performance analysis, network management, software and hardware equipment to troubleshoot and isolate problems, gauge network performance, and trace data and protocol activity. * Perform these functions across a wide range of network facilities including physical media, protocol stacks, hubs, routers, bridges, gateways, digital servers, line drivers, telecommunications transport facilities, NCP and related software/hardware, and network management components. Position Requirements: * Bachelor's degree in Science, Technology, Engineering and Mathematics (STEM) discipline preferred and at least eight to ten years of related experience. * Must be Department of Defense (DoD) 8570 Compliant, IAT Level II. * Experience designing, implementing, and maintaining multi-network transport. * Experience configuring and deploying Cisco series LAN/WAN switches, routers, firewalls, optical networks, and Intrusion Prevention/Intrusion Detection devices. * Network and troubleshooting experience with network protocols: VoIP, ATM, SONET, MPLS, L3VPN, L2VPN, QOS, MP-BGP, OSPF, VPLS, GRE and L2/L3 multicast. Security Requirements: * Must possess an active Top Secret / Sensitive Compartmented Information (TS/SCI) clearance and ability to complete a counterintelligence (CI) polygraph. Highly Desired Experience: * Have any of the following certifications: Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Cisco Certified Voice Professional (CCVP), Brocade Certified Network Engineer (BCNE), Network+. #LI-AF1 ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law. If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services. If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information. Mantech International Corporation Bethesda MD

    Senior Security Engineer

    Unissant