Cybersecurity and Network Security Engineer

Cybersecurity and Network Security Engineer

Astor & Sanders Corporation (Astor) is a prestigious IT solutions provider headquartered in McLean, VA, currently seeking a talented Cybersecurity and Network Security Engineer. This position is full-time and based in Bethesda, MD.

Key Responsibilities:

• Industrial Control Systems/Operational Technology/Internet of Things (ICS/OT/IoT) Cybersecurity and Network Security Engineer support in assessing, improving, and maintaining the cybersecurity posture of NIH ICS/OT/IoT environments to mitigate cyber security risks (e.g., insider and external threats, intentional and accidental).
• This position’s responsibilities include the audit of ICS/OT environments and performing risk/vulnerability assessments.
• This role also includes developing NIH specific cybersecurity roadmaps that prioritize the remediation of cyber threats, based on the likelihood of occurrence and magnitude of cost/consequence of a security incident.
• This position will create mitigation plans for clients to remediate vulnerabilities and will provide support during the remediation efforts.
• The ICS/OT/IoT Cybersecurity and Network Security Engineer shall assist in reviewing and developing Industrial Cybersecurity programs, security policies, plans, and provide guidance and industry best practices related to cybersecurity to help NIH improve their existing OT cyber security programs.
• Taking inventory of client’s hardware & software assets and assessing those assets for security vulnerabilities, obsolescence, and other risks
• Reviewing network architectures and determining if good practices are being followed (e.g., the “zones & conduits” concept, proper network segmentation, use of Industrial DMZ, etc.); and providing recommendations to comply with applicable cybersecurity framework
• Reviewing security products utilized (e.g., firewalls, IDS, IPS) and determining if they are configured properly
• Deploying network infrastructure devices (e.g., switches, routers, etc.), security appliances (e.g., firewalls, IDS, etc.), and virtualization solutions
• Reviewing US government cyber security policies, plans, and procedures; assessing network monitoring capabilities; analyzing system logs, security events, and packet captures to identify security threats; and providing recommendations to comply with applicable cybersecurity framework
• Reviewing administrative, technical, and cybersecurity controls and providing recommendations to mitigate the identified cyber security risks
• Performing cyber security vulnerability and risk assessments within manufacturing and critical infrastructure environments to identify security risks and threats (e.g., unsecure remote access points, suspicious remote connections, unauthorized devices on the network, etc.) and providing recommendations to remediate the identified issues
• Creating detailed diagrams (e.g., network, cabling, server, rack, logical architecture, etc.), procedures, and plans (e.g., implementation, SAT, mitigation, etc.) as needed to support projects
• Additional duties as assigned.

Requirements

• Certified Information Systems Security Professional (CISSP)
• Degree in Engineering (Electrical, Mechanical, Chemical, or similar), Computer Science, or similar scientific / technical field
• Strong understanding of cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, CIS, Perdue Reference Model etc.)
• Strong understanding of OT network communication protocols (e.g., Ethernet/IP, CIP, Modbus, OPC, etc.) and industrial networking topologies (e.g., ring, star, etc.)
• A minimum of Five (5) years “hands on” experience assessing, designing, and implementing ICS/OT network architectures
• Demonstrated technical skills to analyze, design, and deploy complex Ethernet/IP architecture and communication technologies
• Experience with Nazomi Cyber-Physical System (CPS)

Benefits

Astor & Sanders Corporation (www.astor-sanders.com) offers a unique, stimulating and challenging environment that fosters individual growth and rewards performance. Astor & Sanders Corporation ( #Astor ) is an Equal Opportunity Employer.  

Some of our competitive benefits include: 

• Generous Paid Time Off (PTO) and all Federal Holidays off
• Comprehensive Health and Dental Insurance Coverage
• Retirement Savings Plan
• Pre-Tax Benefit Programs
• Wellness and Work-Life Support
• Professional Development
• Performance and Referral Bonuses
• Life and Disability Insurance