Job Description: Information Systems Security Engineer (ISSE) Location: Arlington, VA Skills: HBSS, ISSE, SIEM, technical, assessments, cybersecurity, incident response, threat hunting, threat intelligence, malware analysis, network security, hands on, cyber risk, AWS, Cloud Computing
We are seeking an experienced Information Systems Security Engineer (ISSE) to join our team in Arlington, VA. The ideal candidate will have a strong technical background in cybersecurity, with hands-on experience in assessments, incident response, threat hunting, threat intelligence, malware analysis, and network security.
Responsibilities
- Design, implement, and maintain security controls to protect information systems and data
- Conduct technical assessments to identify vulnerabilities and recommend remediation strategies
- Develop and implement incident response plans to quickly and effectively respond to security incidents
- Perform threat hunting and intelligence gathering to proactively identify and mitigate cyber risks
- Conduct malware analysis to identify and respond to potential threats
- Ensure compliance with industry standards and regulations
- Collaborate with cross-functional teams to implement security controls in AWS and other cloud computing environments
- Monitor HBSS for intrusions, failures and other issues, repair / re-engineer as needed
- Monitor HBSS software to ensure that the clients/servers are operational and reporting properly; test and provide software fixes as needed
- Ensure the environment is updated according to DoD standards and guidelines
- Follow approved DoD, STIG standards and DoD IAVA requirements; advise / make recommendations of needed updates to HBSS Lead
- Ensure that all systems are operating with valid licenses for all installed software
- Maintain and troubleshoot the management systems
- Monitor and audit configurations to ensure that unintended changes do not occur
- Monitor the health and performance of the security technology systems
- Act as a trusted advisor to clients, understanding cybersecurity or data protection requirements and challenges
- Lead technical discussions, demonstrations, and presentations, effectively communicating the value proposition of our security solutions to both technical and non-technical stakeholders
- Conduct technical assessments of our clients’ existing security infrastructure, identifying gaps and recommending improvements with Trellix or other SIEM tools
- Continuous knowledge of industry trends and emerging threats in cyber security to continuously enhance our solutions and customer value
- Work collaboratively with team members, Information Assurance, Information Security Engineering, and other Subject Matter Experts to resolve security issues
- Solid understanding of cybersecurity principles, including endpoint detection and response, SIEM Solutions knowledge and practices, malware analysis, network security, incident response, threat hunting and threat intelligence
- Hands on experience with 2 or more security technologies such as endpoint detection and response, network detection and response, Extended Detection and Response (XDR) and data loss prevention (DLP)
- Solid understanding of security operations, networking, system administration and security architecture
- A clear understanding of cyber risks and the threat landscape related to cyber attacks
- Maintain thorough documentation of all activities and communications through ticketing systems, operational briefs, and status reports
Requirements:
- Bachelor's degree in Computer Science, Information Systems, or related field
- Minimum of 10 years of experience in cybersecurity
- Active IAT Level II Certification (Sec+, CCNA, CySA+, GICSP, GSEC, CND, SSCP, or equivalent)
- Must have one of the following ACTIVE Computing Environment (CE) certifications: (Linux+, Server+, AZ-104 Azure Administrator, AZ-204 Azure Developer Associate, AWS Solutions Architect - Associate, AWS DevOps Professional, VMWare Certified Professional (VCP), ServiceNow Certified System Administrator)
- Active DoD Secret Clearance or eligibility to obtain
- Strong technical skills in HBSS, ISSE, SIEM, and network security
- Hands-on experience in assessments, incident response, threat hunting, threat intelligence, and malware analysis
- Experience with AWS and other cloud computing environments
- Excellent communication and collaboration skills
- Ability to work independently and as part of a team