Cybersecurity Engineer

Description

DESCRIPTION:

The Cybersecurity Engineer III ensures the security for the project's information systems. They ensure effective controls, countermeasures, processes are in place and optimized to maintain a strong organizational and system security posture. 

KEY RESPONSIBILITIES:

• Implement and verify updates, patches, and routine maintenance of project systems
• Perform research and analysis on security solutions to determine the efficacy both as a security tool as well as a data source
• Contribute to the design and implementation of secure architectures for on-premises, cloud, and hybrid environments
• Develop and maintain security standards and guidelines
• Evaluate and recommend new security technologies and solutions
• Conduct security reviews of existing systems and applications
• Implement, configure, and manage advanced security tools and technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint detection and response (EDR), security information and event management (SIEM) systems, vulnerability scanners, and data loss prevention (DLP) solutions
• Lead and participate in security-focused projects, providing technical expertise and guidance
• Develop and maintain comprehensive security documentation
• Conduct threat modeling and risk assessments to identify and evaluate potential security risks
• Develop and implement mitigation strategies to address identified vulnerabilities
• Manage and respond to security incidents, including leading incident response efforts
• Conduct forensic investigations to determine the root cause of security incidents. 
• Take directions from the Cyber Services Team Lead 
• Mentor and direct subordinate Cyber Services Team staff

#qf

#pmf

Requirements

REQUIRED QUALIFICATIONS: 

• BA/BS in IT/Cybersecurity/Computer Science or related field (HS and 4 years of additional experience or AS and 2 years of additional experience may be exchanged in lieu of BA/BS)
• 9 years total experience (Relevant Master’s Degree may be exchanged for 2 years’ experience credit or a relevant PhD may be exchanged for 4 years’ experience credit)
• 5 years relevant position-specific experience
• Deep understanding of security architecture principles and frameworks (e.g., SABSA, NIST Cybersecurity Framework)
• Extensive knowledge of network security, cloud security, endpoint security, data security, and application security
• Hands-on experience with a wide range of security technologies (firewalls, IDS/IPS, SIEM, EDR, etc.)
• Strong understanding of security protocols and standards (e.g., TCP/IP, TLS, OAuth, SAML)
• Experience with scripting and automation (e.g., Python, PowerShell). 
• DoD 8570 IASAE Certification.
• Ability to work independently and in an agile, collaborative team environment  
• Active US Government Clearance at Secret level or higher 
• Effective written and verbal communications skills for collaboration with both customers and fellow team members
• Ability to sit for extended periods of time and regularly lift at least 25 pounds  
• Ability to commute to the designated onsite work location as required

DESIRED ADDITIONAL QUALIFICATIONS: 

• Relevant industry standard certifications such as:
• Cloud platform certifications (AWS, Azure)
• Security certification (Security+, CASP, CISSP)
• Tool certifications (Tenable Security Center Specialist, Tanium Certified Administrator, ServiceNow Certified System Administrator) 
• 5+ years of experience in a cybersecurity role, with a focus on security engineering, operations, or architecture
• Master's degree in Information Technology/Cybersecurity/Computer Science or related field

QBE is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender, gender-identity and/or expression, age, disability, Veteran status, genetic information, pregnancy (including childbirth, lactation, or other related medical conditions), marital-status, neurodivergence, ethnicity, ancestry, caste, military/uniformed service-member status, or any other characteristic protected by applicable federal, state, local, or international law.