We are seeking a highly skilled and motivated Cybersecurity Engineer to help ensure the security and integrity of our client’s network and systems. This role requires a deep understanding of network segmentation, administration, and various cybersecurity tools and technologies. The ideal candidate will have hands-on experience in protecting OT environments and managing cybersecurity incidents.
This is a long-term contract position and requires full-time onsite presence in the New York City office.
Responsibilities
- Implement and manage network segmentation and isolation strategies.
- Administer and harden Active Directory and Windows Server environments.
- Utilize Cisco ISE/Stealthwatch for network visibility and control.
- Manage Authentication, Authorization, and Accounting (AAA) protocols.
- Conduct vulnerability and patch management.
- Deploy and manage containment/protection tools for OT environments, such as Forescout.
- Oversee BGP, OSPF, and switching (Cisco) configurations.
- Manage physical access control systems and video management systems.
- Handle virtualization and infrastructure tasks, including VMware and virtual switches.
- Implement and maintain endpoint credential management and privileged access management systems.
- Develop and manage cybersecurity incident response plans and programs.
- Conduct threat detection and vulnerability assessments.
- Implement deception technologies (honeypots/honeynets) for threat detection.
- Perform data analysis to identify and mitigate cybersecurity risks.
- Maintain and manage DWDM and SONET systems.
- Oversee Nozomi maintenance and management.
- Administer and manage TDI systems.
- Manage Gigamon maintenance and configurations.
Qualifications
- At least 10 years of Cybersecurity experience.
- Proven experience in network segmentation and isolation.
- Strong skills in Active Directory and Windows Server administration and hardening.
- Proficiency with Cisco ISE/Stealthwatch.
- Experience with AAA protocols.
- Expertise in vulnerability and patch management.
- Knowledge of containment/protection tools for OT environments, such as Forescout.
- Familiarity with BGP, OSPF, and Cisco switching.
- Experience with physical access control and video management systems.
- Proficiency in virtualization technologies, including VMware and virtual switches.
- Experience with endpoint credential management and privileged access management.
- Strong understanding of cybersecurity incident response plans and programs.
- Skills in threat detection, vulnerability assessments, and deception technology implementation.
- Proficiency in data analysis.
- Knowledge of DWDM and SONET systems.
- Experience with Nozomi, TDI, and Gigamon systems.