Sr. Cyber Security Engineer

Description

Overview

NTG is currently hiring for a Sr. Cyber Security Engineer to provide operation and integration support for a multi-vendor infrastructure, including various network, systems, and cybersecurity vendor. This position will be located in Tampa, FL and will be a remote position with on-site requirements based on project requirements.

Responsibilities

Correlates threat data from various sources to establish the identity and modus operandi of hackers active in client's networks and posing a potential threat. Provides the customer with assessments and reports facilitating situational awareness and understanding of current cyber threats and adversaries. Develops cyber threat profiles based on geographic region, country, group, or individual actors. Produces cyber threat assessments based on entity threat analysis. May provide computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, forensic analysis, data recovery, and network assessments. Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security, and encryption.

 

• Work      in a fast-paced environment, alongside a team of highly specialized Engineers providing engineering and implementations action for integration, modernization, and/or new installs for partner nations and allies in Eastern Europe and South America.
• Experience supporting US Government, NATO and Foreign military customers.
• Extensive experience in Defensive Network/Cybersecurity Operations.
• Operates across traditional technical boundaries.
• Being the Subject Matter Expert (SME) on cybersecurity tools, appliances, and architecture. Must have an Expert understanding of designing, testing, and implementing/integrating Cybersecurity devices, how they interact with the network, and where best to deploy sensors, nodes, and agents to ensure the maximum effect in the enterprise network.
• Provide  operation and integration support for a multi-vendor infrastructure that includes various network, systems, and cybersecurity vendors.
• Validating traffic flow and paths through the architecture and ensuring proper measures are taken to tap, redirect packet streams, and ensure that the Cybersecurity tools are properly applying defensive interception, inspection, logging and forwarding of packets to the proper destination.
• Core Cybersecurity technologies and architectures involve equipment such as  Gigamon appliances or similar vendors for packet forwarding, deduplication, and stream splitting. Trellix/FireEye/McAfee or similar vendors for security stack applications, HIPS agents, and signature file/heuristic analysis.
• Documented proficiency with physical equipment, cabling, and installation in datacenter environments as well as documented work history in Network Operations Centers (NOCs), Security Operation Centers (SOCs), or Cyber Security Operations Centers (CSOCs) monitoring, maintaining, and life  cycling, medium to large sized, multi branched networks.
• SIEM implementation, integration and perform tuning of the SIEM data sources, e.g. Network Intrusion Detections Systems (NIDS), Firewalls/Proxies, Domain Controllers, etc., to maintain manageable level of security event monitoring.
• Demonstrated subject matter expertise with Email and Web security, Endpoint security management, Data Loss Prevention (DLP), and Vulnerability Management.
• Assist the government/host nation customer with identifying any derived design objectives, technical specifications, performance requirements, and interoperability specifications to ensure the system design will meet stakeholder end-to-end requirements.
• Be a proven leader with the capability to confidently brief stakeholders, lead a team of multi-disciplined engineers, and be able to plan and execute large scale engineering efforts.
• Document all network, system, and cybersecurity changes as well as develop required checklists, engineering and installation plans, and other required documentation for use within the configuration baseline.
• Proficiency  with network drawing and productivity tools (Visio, Lucid, AutoCAD, etc.) a must.
• Must have a valid US Passport and be prepared for international travel up to 40% at customer locations internationally.

Qualifications

High School with 9+ years

 

CLEARANCE:  SECRET

Required Skills and Experience

• Must possess an Active Secret or NATO Secret Clearance
• Must have a valid US Passport and be prepared for international travel up to 40% at customer locations in Eastern Europe and South America.
• Proficiency with network drawing and productivity tools (Visio, Lucid, AutoCAD, etc.) is necessary.
• Current DoD 8570 IAT Level II Certification (Security+CE, CCNA Security, CySA+, CASP, etc.).
• Extensive experience with Cyber Network Defense (CND), Cybersecurity Operations, or current CCNP Level Certification: CCNP Security/SCORE or CCNP CyberOps/CBRCORE.
• Microsoft Systems MCSA, VMware, Cloud Security, Linux, or other Cybersecurity certifications or measurable experience, a plus.

Preferred Skills and Experience

• Relevant Master Degree in relevant field related to this position. 
• BS Degree and +8 years of prior relevant experience or HS Diploma +12 years of prior experience. Specific expertise, education, and training may be considered in place of a degree.
• A military background within the Signal, Communications, Cyber, or Information Technology MOS will be heavily desired.
• Desired Qualifications JNCIS-SEC/JNCIP-SEC, PCNSA/PCNSE, GIAC/GSEC, GCP.
• Microsoft Systems MCSA, VMware, Cloud Security, Linux, or other Cybersecurity certifications or measurable experience, a plus.