Sr. Cybersecurity Engineer - Federal (TS/SCI)

POSITION SUMMARY

The Senior Cybersecurity Engineer will perform duties as the Information Systems Security Manager (ISSM) for the Optiv+ClearShark information systems environments and will report directly to the Optiv+ClearShark Legal Department Lead, with a matrix reporting to the Optiv Security Inc. CISO. 

The Senior Cybersecurity Engineer is responsible for operational tasks that apply new and existing technologies and solutions to solve business needs in the cybersecurity space.  The Senior Cybersecurity Engineer works with other engineers, various groups, and operational support staff both within IT and other business units to provide and maintain solutions that meet business and technical requirements.

The Senior Cybersecurity Engineer will assist in the development of procedures and runbooks; act as the subject matter expert in a variety of cybersecurity domains such as Identity and Access Management, Vulnerability Management, End-Point Protection, Incident Response activities, etc.; and will provide tier two production support for responsible solutions.

This position is based out of the Hanover, MD office, and the candidate is expected to go into the office 2-3 days per week, with the other days working remote.

ESSENTIAL FUNCTIONS:

• Assist in the development of security solutions and process improvements.

• Assist with the enhancement of key security solutions in the GRC, SOC, SIEM and IAM space.

• Help manage security vendors to resolve issues and maximize configurations.

• Help with the deployment, monitoring, troubleshooting, and changing of complex environments.

• Partner with IT and business colleagues to ensure proper security controls are included in new solutions.

• Research and evaluate the impact of new vulnerabilities, security alerts and threat intelligence bulletins.

• Participate in threat hunting and incident response events.

• Assist with security tasks such as conducting risk assessments.

• Build and maintain relationships with key customer's technical staff members and with internal stakeholders from IT, customer service and field operations.

• Share experience, knowledge, and ideas with management and co-workers to maintain a kind and respectful team-based environment.

• Promote a corporate culture that is committed to information security best practices.

• Participate in after-hours support as needed to respond to security incidents.

• Function with a high degree of integrity with an ability to keep information confidential.

• Perform as the ISSM for the Optiv+ClearShark environment.

• Assist with the development, administration, and sustainment of a CMMC Certification package for the Optiv+ClearShark environment.

• Ensure NIST 800-171 compliance for the Optiv+ClearShark environment.

• Perform audit log reviews and initiate incident response actions for any anomalous activity.

• Assist with the vulnerability management program; perform vulnerability scans and prioritize and coordinate remediation actions.

• Assess systems and create baselines utilizing the DISA STIGs.

• Help with the development of a Plan of Action and Milestones (POA&M) and work items to remediation.

• Participate in change control board meetings.

• Work in partnership with the Facility Security Officer (FSO) to meet NISPOM and NISP requirements.

OTHER DUTIES:

• This list is not designed to be all inclusive. Other duties and responsibilities may be assigned as needed.

QUALIFICATIONS:

• Top-Secret Security Clearance required.  TS/SCI preferred.

• Bachelor’s degree in computer science or related field.

• Minimum of 10+ years of relevant work experience related to cybersecurity.

• Minimum DoD 8570 IAM Level II certification required.

• Must have experience with several of the following: Microsoft, O365, Active Directory, Splunk, ServiceNow, SailPoint, Qualys, CASB and other endpoint protection tools.

• Proficient across multiple operating systems such as Windows, ESXi, MacOS, and Linux.

• Familiarity with security best practices for cloud architectures (SaaS, IaaS, PaaS).

• Knowledge of securing cloud environments particularly Azure and AWS.

• Fundamental understanding of network protocols and network security.

• Knowledge of industry and Government frameworks such as NIST, CMMC, and RMF.

• Have experience with developing and sustaining Government accreditation packages within different Government frameworks, such as NISPOM, CMMC, JSIG, and ICD.

• Have experience reviewing audit logs and performing cybersecurity incident investigations.

• Experience with the DISA STIGs and performing STIG validations of different technologies.

• Detail-oriented with strong conceptual, analytical, problem solving, decision making and planning skills.

• Must have the ability to utilize application, scripting, and operating system commands to configure, debug, and monitor systems.

• Knowledge of modern software development lifecycles, including Agile and iterative development.

• Excellent written and oral communication skills; and demonstrated ability to interact with technical, non-technical, and business members of the organization.

• Ability to manage multiple tasks.

MUST HAVE:

• A valid Driver’s License.

• Ability to work greater than 40 hours per week as needed.

• Ability to travel up to 10% percent of the time.

What you can expect from Optiv

• A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups.
• Work/life balance
• Professional training resources
• Creative problem-solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
• The ability and technology necessary to productively work remotely/from home (where applicable)

EEO Statement

Optiv + ClearShark is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.  

Optiv + ClearShark respects your privacy. By providing your information through this page or applying for a job at Optiv + ClearShark, you acknowledge that Optiv + ClearShark will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv + ClearShark’s selection and recruitment activities.  For additional details on how Optiv + ClearShark uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.