Security Engineer

Position Summary: The Security Engineer will be responsible for handling analysis, reporting, and mitigation of security controls and vulnerability findings in accordance with company and government customer security standards. Responsibilities include collaborating in the development of configuration management controls and best practices for security hardening, role-based access, system administration and configuration across multiple platforms and appliances.

Essential Duties and Responsibilities: To perform this job successfully, an individual must be able to perform the following satisfactorily; other duties may be assigned. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

• Analyzes and administers security policies to control physical and virtual system access.
• Design and automate security scanning to continuously assess and remediate code vulnerabilities early in the development lifecycle.
• Maintain complete Risk Management Framework (RMF) controls for successful Authority to Operate (ATO).
• Evaluate and onboard company and government approved security tools into the Security DevOps lifecycle.
• Define best practices in security hardening, patching, role-based access, system administration, and configuration.
• Collaborate with operations team to ensure adherence to relevant standards
• Provide expertise in identifying and mitigating security vulnerabilities.
• Ensure balanced security requirements, designs, testing, and risk management.
• Lead cross-disciplined teams in system security analysis.
• Manage system access and resources to minimize exposure to vulnerabilities.
• Monitor, detect, and respond to security anomalies.
• Build and maintain security systems and provide high-level service to the program.

Competencies: To perform the job successfully, an individual should demonstrate the following.

Continuous Learning - Assesses own strengths and weaknesses. Pursues training and development opportunities. Seeks feedback to improve performance. Shares expertise with others. Strives to continuously build knowledge and skills.

Customer Service - Displays courtesy and sensitivity. Manages difficult or emotional customer situations. Meets commitments. Responds promptly to customer needs. Solicits customer feedback to improve service.

Planning & Organization: Smoothly integrates changes, plans for additional resources, prioritizes and plans work activities, sets goals and objectives, uses time efficiently, and works in an organized manner.

Problem Solving: Develop alternative solutions. Gather and analyze information skillfully. Identify problems in a timely manner. Resolve problems in the early stages. Work well in group problem-solving situations.

Teamwork - Balances team and individual responsibilities. Contributes to building a positive team spirit. Exhibits objectivity and openness to others' views. Gives and welcomes feedback. Puts success of team above own interests.

Use of Technology - Adapts to new technologies. Demonstrates required skills. Keeps technical skills up to date. Troubleshoots technological problems. Uses technology to increase productivity.

Qualifications: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

Education/Experience:

• Bachelor's degree in cyber security, computer science, system engineering, or equivalent combination of education and experience. 
• Six years of experience in IT architecture, security, infrastructure, and cloud development.
• Four years of experience in network administration or IT systems.
• Experience with security systems to include firewalls, IDS, antivirus, authentication systems, log management and content filtering.
• Strong understanding of government security principles, techniques, and protocols.
• Experience integrating security checks in CI/CD pipelines
• Proficiency in secure coding practices and threat modeling.

Language Ability:

• Read, analyze, and interpret business, professional, technical, or governmental documents. Write reports, business correspondence, and procedure manuals. Effectively present information and respond to questions from managers and customers.

Mathematical Ability:

• Work with mathematical concepts such as probability and statistical inference. Apply concepts such as fractions, percentages, ratios, and proportions to practical situations.

Reasoning Ability:

• Define problems, collect data, establish facts, and draw valid conclusions. Interpret an extensive variety of technical instructions in written or diagram form and deal with several abstract and concrete variables.

Computer Skills:

• Proficient in Microsoft Office 365 applications, with excellent MS Excel knowledge.
• Strong scripting skills (Shell, Python, Ruby).
• Experience with Windows Server.
• Experience with RedHat Linux Preferred
• Experience with server virtualization (VMware, Citrix, Hyper-V) preferred.

Certificates and Licenses:

• Security+ Certification
• Microsoft or other Vendor IT certifications such as Cloud (AWS and/or AZURE) certifications.
• CISSP or CCSP preferred

Supervisory Responsibilities:

Supervises assigned projects and tasks. Provides team resources direction.

Work Environment: The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

The noise level is usually moderate.

An employee will be expected to work-from-home with minimal distraction and with the occasional need to commute to an office environment or meeting location.

An employee will be expected to be a motivated self-starter with an ability to work effectively and collaboratively in a demanding work environment and works under the close direction of senior personnel in the functional area.

An employee will be expected to keep up with constant shifting of daily priorities in a dynamic environment, exhibiting adaptability with a positive attitude.

Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

While performing the duties of this job, the employee is regularly required to sit, stand, use hands or fingers, reach with hands and arms, talk and hear.

Vision requirements for this position include close vision.

The employee must occasionally lift and/or move up to 30 pounds.

The employee must be able to travel 10% of the time.

The above job description is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow any other instructions and perform any other related duties as assigned by their supervisor.

Sentrillion is an EEO Employer / Protected Vet / Disabled