Cyber Security Engineer

***This position requires an active top secret clearance.***

The Cyber Security Engineer candidate ensures IT security compliance, monitors OpenNet/Classnet servers and Azure Cloud, analyzes security data with NetIQ, iPost, and Splunk, collaborates on breach indicators, and supports security assessments. Must have 7+ years in cybersecurity, and possess certifications like CISSP or CEH.

Compensation & Benefits:

Estimated Starting Salary Range for Cyber Security Engineer: $120,000 - $135,000

Pay commensurate with experience.

Full time benefits include Medical, Dental, Vision, 401K and other possible benefits as provided. Benefits are subject to change with or without notice.

Cyber Security Engineer Responsibilities Include:

• Supports the ISSO to ensure customer security requirements for IT security are met.
• Monitors auditing, and analyzing the OBO OpenNet, Classnet servers as well as the Azure Cloud network using NetIQ, iPost and Splunk in a Windows 2008 and Windows 2012 environment.
• Monitors the daily operations to take necessary actions to proactively address issues to the appropriate problem area in supporting security efforts.
• Collaborates with the IT System POC's and with other Security staff to identify indicators of security breach and identify vulnerable computers and systems that may be used for computer network exploitation, data ex-filtration, and data compromise.
• Composes and submits summary morning report documenting outstanding security issues.
• Cloud Security Administration; implement, maintain, and monitor the security features available in IaaS, PaaS, and SaaS cloud platforms.
• Create dashboards to aggregate security-related data in one SIEM and introduce SECaaS (Security as a Service) program for a holistic security monitoring solution for all cloud environments.
• Liaisons between OBO Security and other Department of State Bureau's which require meetings as well as request reviewing future security tools that are used agency wide.
• Performs regular network monitoring and intrusion detection analysis using various Computer Network Defense tools, such as Intrusion Detection/Prevention Systems, Firewalls, SIEM, NAC, and Vulnerability Management tools.
• Works with Security Team to development Plans of Action & Milestones (POA&Ms) resulting from assessment discrepancies or failures. Monitors POA&Ms and works with IT System POCs to resolve. Re-assesses controls upon POA&M resolution. Provides status reports as necessary.
• Supports the efforts with Continuous Monitoring concepts and Risk Management Framework (RMF) methodologies to support FISMA, NIST RMF, and NIST SP 800-series publications.
• Coordinates with IT System POCs to review and remediate any critical/high impact vulnerabilities scan results, including support to reduce Operating Systems, Web Interfaces, Databases, and Application operational vulnerabilities.
• Monitors Change & Configuration Management System for secure baseline compliance with DoS regulations. Assists in compliance reviews and status reporting.
• Monitors Change & Configuration Management System for secure baseline compliance with DoS regulations. Assist in compliance reviews and status reporting.
• Works with the Systems central point of contact for IT security reviews in order to help optimize security for the systems with the designated system boundaries. Prepares and/or edit organizational charts, memos and other general office documents and material as required.
• Performs other job-related duties as assigned

Cyber Security Engineer Experience, Education, Skills, Abilities requested:

• Bachelor's degree or equivalent technical training and 7 years of Information Systems Security Administration experience and/or cybersecurity experience.
• Seven (7) years of information technology experience managing security solutions with a business network and Active Directory, mitigating viruses, malware, and spam, and/or reporting on vulnerability and risk via Qualys.
• SPLUNK power user is a plus
• Must have proficiency and understanding of FEDRAMP and the FEDRAMP process.
• Ability to conduct information system audits.
• Ability to produce technical documentation.
• Experience troubleshooting audit reports.
• Experience in cybersecurity and common security tools/platforms.
• Experience with advanced administration and troubleshooting of O365 and associated services.
• Extensive experience in cybersecurity analysis, incident response, and documentation
• Proficiency in conducting security assessments, vulnerability testing, review of technology solutions with experience in documenting findings and recommendations.
• Working knowledge of NIST Cybersecurity Framework and CIS Critical Security Controls.
• Must have a basic understanding of securing Azure/AWS Cloud environments.
• Must be a US citizen.
• Must possess and maintain a TOP SECRET clearance.
• Must have a Cybersecurity/Information Assurance-type certification (CISSP, CISM, or CompTIA Security+).
• Possess Certified Ethical Hacker (CEH) certificate
• Must pass pre-employment qualifications of Cherokee Federal

Company Information:

Cherokee Nation System Solutions (CNSS) is a part of Cherokee Federal - the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government's mission with compassion and heart. To learn more about CNSS, visit cherokee-federal.com.

Cherokee Federal is a military friendly employer. Veterans and active military transitioning to civilian status are encouraged to apply.

#CherokeeFederal #LI-SB1

• Information Security Engineer
• Network Security Engineer
• Security Operations Engineer
• Cyber Defense Engineer
• Systems Security Engineer

Keywords

• Cybersecurity/Information Assurance-type certification (CISSP
• CISM
• CompTIA Security+
• Ethical Hacker (CEH) certificate
• FEDRAMP

Legal Disclaimer: Cherokee Federal is an equal opportunity employer. Please visit cherokee-federal.com/careers for information regarding our Affirmative Action and Equal Opportunity Employer Statement, Accommodation request, and Presidential EO 14042 Notice.