Principal Technician (Cybersecurity)

Principal Technician (Cybersecurity)

Norfolk, VA

DEFTEC delivers mission critical solutions through skillfully delivered services and innovative products. We are inspired by the critical missions of our clients, and we are driven to provide the most effective solutions to execute their missions, operational challenges, and requirements. Our dedicated, experienced, and talented employees work closely with our clients to ensure the delivery of exceptional services and products.

POSITION OVERVIEW

DEFTEC Corporation is seeking a Principal Technician who assists with maintaining the ongoing confidentiality, integrity and availability of Agency systems and services. This is achieved with a focus on cyber security awareness and compliance, accreditation support and cyber incident response.

The Technician serves as the primary point of contact for endpoint security management, firewall and network management monitoring solutions, and vulnerability scan operations. This role supports cyber event investigations and events.

Job Responsibilities:

• Applies and maintains specific security measures as required by organizational policy and local risk assessments.
• Contributes to the identification of risks that arise from potential technical solution architectures.
• Suggests alternate solutions or countermeasures to mitigate risks.
• Defines secure systems configurations in compliance with intended architectures.
• Supports investigation of suspected attacks and security breaches.
• Follows standard approaches for the technical assessment of information systems against information assurance policies and business objectives.
• Makes routine accreditation decisions.
• Recognizes decisions that are beyond their scope and responsibility level and escalates according.
• Reviews and performs risk assessments and risk treatment plans.
• Identifies typical risk indicators and explains prevention measures.
• Maintains integrity of records to support and justify decisions.
• Carries out routine operational procedures, including the execution of specified automation tools/scripts.
• Contributes to maintenance and installation.
• Monitors and reports on infrastructure performance to enable service delivery.
• Resolves issues or refers to others for assistance.
• Undertakes low-complexity routine vulnerability assessments using automated and semi-automated tools.
• Escalates issues where appropriate.
• Contributes to documenting the scope and evaluating the results of vulnerability assessments.
• Works with access controls for firewalls and endpoint security solutions.
• Assists in the operation of day-to-day administrative transactions and systems.
• Performs periodic system backups and produces standard monitoring reports.
• Coordinates user access and maintains security checklists and authorization tables.
• Tests the effectiveness of new or revised information security procedures and tools.
• Performs information gathering and research on key elements of IT security policies.
• Assists senior colleagues in identifying and analysing critical issues in IT security policies.
• Executes IT security policies and standards within a specific region in organization.
• Conducts performance reviews on implementation of IT security policies.
• Generates status reports for senior management to ensure the implementation of IT security policies.

Required Qualifications:

• Active NATO SECRET security clearance
• Secondary educational qualification with 3 years post-related experience.
• At least 4 years practical experience of implementation and maintenance of cyber security systems within a large organization.
• Working experience administrating and monitoring cyber security software.
• Good understanding of cyber security systems and the ability to work independently to solve problems.
• Working experience troubleshooting technical issues and providing technical support to end-users.
• Detailed knowledge and working experience of security and networking technologies including IPv4, Firewalls, Virtual Private Networks, Proxy Servers, Intrusion Detection and Forensic tools;
• Training/Certifications (Desirable): Security Professional certification (CEH, GIAC, ISC2, or other relevant certification)

DEFTEC offers a comprehensive whole life benefits package that includes medical, dental, vision, holiday, paid time off, life insurance, short/long term disability, and educational reimbursement. DEFTEC also matches 401k contributions dollar for dollar up to 3% of employee's income and an additional $0.50 for every dollar between 4-5% of employee's income. The DEFTEC team is comprised of professionals who make a difference every day in crucial missions related to national security. Our leadership knows that this happens by employing a diverse team who is well taken care of. Our employees are our top priority making DEFTEC an ideal place to work.

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Please contact HR@deftec.com if you require reasonable accommodations.

DEFTEC is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP and alcohol when criteria is met as outlined in our policies.

AAP/EEO Statement

DEFTEC Corp is an Equal Opportunity and Affirmative Action Employer and prohibits discrimination and harassment of any type on the basis of actual or perceived race, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), gender, gender identity, and gender expression, religious creed, disability (mental and physical) including HIV and AIDS, medical condition (cancer and genetic characteristics ), genetic information, age, marital status, civil union status, sexual orientation, military and veteran status, denial of family and medical care leave, arrest record and/or any other characteristic(s) protected by federal, state or local law.

This policy applies to all terms of employment including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, training, compensation, benefits, employee activities and general treatment during employment.

Other Duties

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.