IT Security Engineer ( Private Sector)

  • MCGlobalTech
  • Washington, DC, United States
  • Oct 04, 2017
Full time Risk Management Systems Architecture Test and Evaluation Systems Administration Cyber Defense Infrastructure Support Incident Response Vulnerability Assessment and Management

Job Description

Description:
Will monitor, maintain, administer, and support IT Security systems and processes to ensure that organizational assets and data are secure and available.

Responsibilities:

  • Serves as a Tier-II and sometime as Tier III support resource, engaging other team resources as necessary and as defined by support processes.
  • Functions as a coordination point for issues related to infrastructure security systems between all IT teams. Act as an escalation point for issues with assigned infrastructure systems that cannot be resolved in the Service Desk or by the lower escalation points.
  • Maintain support for all infrastructure security systems, making sure logs are being received on the security incident and event monitoring system. Monitor health of all infrastructure security systems to make sure they are running, functional, and generating security events.
  • Maintains documentation on the infrastructure security systems technical configuration, contacts and functionality. Contributes and maintains common troubleshooting tips in the designated knowledge base. Keeps current vendor and system data owner’s contact information in the designated location. Maintains relevant training materials for the infrastructure security systems.
  • Responsibilities include planning and scheduling system patches, upgrades, and updates. This also includes coordination with team members, Identity and Access Management Analyst/Engineers, other IT teams, vendors, users, interfaces, and other systems that feed or accept information from the infrastructure security system. This would include all IAM servers. Follows department change request processes.
  • Protects organization assets and information by maintaining secure systems. Follows organizational policies and processes surrounding access management, regulatory compliance, systems architecture, disaster recovery, vendor management, and others to support security and integrity of organizational data.
  • Verifies that the Infrastructure Security systems are completing a normally scheduled and approved backup methodology. Verifies that systems/data can be restored in the event of a failure or disaster. This will include the completion of disaster recovery plans (DRP) and other documentation related to disaster recovery (DR) and high availability (HA). Assist and mentor the Enterprise Cybersecurity Engineer I when needed.
  • Other duties as assigned.

Requirements:

  • Bachelor’s Degree in Computer Science (Any Discipline) or minimum of 5-6 years Information Security experience required.
  • Experience with firewalls, IPS, access control, monitoring, design tools, encryption denial of service prevention mechanisms required.
  • Experience supporting mobile technologies required.
  • Experience with encryption and key management technologies required.
  • Experience with malware protection required.
  • Experience with Data Loss Protection technologies required.
  • Experience with peripheral component interconnect and other security audit processes, evidence gathering and development/management of remediation plans used in resolution of findings required.
  • Knowledge of risk management processes, including steps and methods for assessing risk required.
  • Ability to translate technical concepts into business and capability terminology required.
  • Exceptional collaboration ability; substantial experience as a senior-level negotiator required.
  • Ability to interact effectively with Leadership when needed
  • Information Security Certification preferred (CISSP, CEH, GISP, GCFE, CPPA, GCIA, CPEN, ECNA, CISA) preferred.