Cyber Security Engineer (SSB)

Location: Arlington, VA. This is a full-time, working on-site role.

Program Overview

The DSCM program encompasses cyber security, data analytics, engineering, technical, managerial, operational, logistical and administrative support to aid and advise DOS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting the DSCM program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges.

About the Role

• Support the Security Standards & Baselines (SSB) section within the Technology, Innovation, and Engineering
  (TIE) Office.
• Identify and provide solutions to enhance and/or streamline processes and automate work flow.
• Need to have a strong technical background and expertise in various areas of cybersecurity.
• Promote awareness of security issues among management and ensure sound security principles are reflected
  in organizations’ visions and goals.
• Communicate complex security concepts to both technical and non-technical stakeholders, including senior
  management.
• Possess strong problem-solving and decision-making abilities to guide the organization in making informed
  security decisions.
• Perform extensive research and documentation of security threat vectors.
• Provide guidance and coaching to team members.
• Create bulletins, alerts, and/or advisories related to published or developmental standards and/or security
  principal documents.
• Ensure that rigorous application of information security/information assurance policies, principles, and practices
  are implemented in the delivery of all IT services.
• Evaluate a wide array of existing, new, modified, and/or emerging technologies and develop recommended
  security configuration baselines documents that implement Departmental policy, technical security solutions,
  and industry best practices in alignment with Defense Information Systems Agency (DISA) Security Technical
  Implementation Guide (STIG) as much as possible.
• Respond to various technical and policy questions from a wide range of customers/users with guidance and
  clarifications.
• Promote awareness of cybersecurity standards and principles among the customer stakeholders, coworkers,
  and the Department users.
• Collaborate with fellow team members and various internal and external stakeholders to share information and
  knowledge to establish and maintain a productive line of communication.
• Streamline processes to improve efficiency of Mission goals.
• Manage information and updates in SharePoint repositories.
• Keep awareness of items involving fellow team members to provide back up support and coverage as needed.

Qualifications:

• Bachelor’s degree and a minimum of 5 years’ of relevant experience. An additional 4 years of experience will be considered in lieu of degree/education.
• Either possess or obtain prior to start date ONEof the following certifications:
  • CAP, CASP+ CE, CCISO, CCNA-Security, CISM, CISSP (or Associate), CISSP (or Associate), CND, CSSLP, CySA+, GICSP, GSEC, GSLC, Security+ CE, SSCP, PPDA, Agile IC, SNOW App Dev.
• Experience with DISA STIG - Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG).
• Experience developing and executing research plans.
• Experience working with Windows Server on an enterprise level.
• Experience managing Active Directory in a multi-domain environment.
• Experience working with server/application virtualization on an enterprise.
• Demonstrated excellence in business acumen, team orientation and strong customer service skills.
• U.S. citizenship required.
• Active Secret security clearance.
  • Ability to obtain a final Top Secret security clearance.

Highly Desired:

• Experience with process automation.
• Technical writing skills.
• Engineering/maintaining database infrastructure including SQL and Oracle experience.
• Active Directory Federation Services (ADFS), Azure, Active Directory experience.
• Experience developing and managing virtualized IT systems.
• Networking technologies experience.
• Configuration and/or administrating enterprise mobile device deployments experience.
• Experience working with Red Hat Enterprise Linux servers on an enterprise level.