Security Engineer

Location: Washington, DC
Date Posted: 04-02-2018
We are seeking a candidate for a full time Security Engineer opening in Washington, DC. All applicants must have an active Public Trust clearance.. 
 
Skills and Experience Required:
  • Previous work and/or other hands-on experience in a large engineering and cyber-security operations environment
  • Previous hands–on experience, for a bare minimum of two years, in the design, configuration, administration, tuning and optimization in the following capacities:
    • SIEM tools, IBM QRadar or Splunk experience strongly preferred
    • Vulnerability Scanning and enterprise Asset Discovery products – Tenable Security Center, ForeScout CounterAct strongly preferred
    • Network and Host-based Intrusion Detection/Prevention (IDS/IPS) products –Symantec SEP or IBM BigFix strongly preferred
    • Enterprise Firewalls, State-full Inspection and Applications aware based – Cisco ASA, Palo Alto/others strongly preferred
    • Servers: Windows, Linux – build, configure, administer, maintain
    • Packet Analysis, Network sniffers and other test and discovery equipment and products
  • Must have a solid understanding of common operating systems, network devices (routers, switches, etc.), applications and routing and switching protocols
  • Must have understanding of ports, protocols, and services, how they are used and how they can be exploited
  • Understanding of malware is required and malware reverse engineering skills are highly desirable
  • Understanding of the OSI Seven-Layer model
  • Understanding of and experience with packet analysis is desirable
  • Practice in documenting practical procedural and architectural aspects of complex systems is preferred
  • Work knowledge evaluating contingency plans, configuration management plans, security configuration checklists, STIGs and IAVAs, and other direction and guidance
  • Strong interactive skills with peers, management and government personnel
  • Good written and oral communication required
Certifications:
Certifications and/or training are desirable to the  client, such as:
  • MCSE/MCITP/MCSA or RHCE/RHCSA/Linux+/LPIC-1
  • Cisco CCENT, CCNA Security, CCNA Cyber Ops
  • SANS GIAC Certified Incident Handler (GCIH), Certified Intrusion Analyst (GCIA), Certified Enterprise Defender (GCED)
  • Vendor specific training and certifications from IBM, Tenable, Symantec, Cisco, Checkpoint
or
this job portal is powered by CATS