Security Engineer II
Washington, D.C
Federal / Civilian – Cyber / Security /
Regular /
Hybrid
Job Title: Security Engineer II
Location: 45 L Street NE Washington, District of Columbia 20554
Clearance Level: Activ Public Trust
Required Certification(s):
· CompTIA Security+ or CISSP is required (one or the other)
SUMMARY
The primary objective of the SOC is to protect the government agency’s critical information infrastructure. To do this, the SOC must 1) Reduce Exposure to Cyber Risk; 2) Ensure Priority Response and Recovery to cyber threats/incidents; 3) Maintain Shared Situational Awareness of cyber threats, vulnerabilities, and incidents; and 4) use trustworthy cyber protocols, products, services, configurations, and architectures.
Assessing and identifying gaps in the security stack and providing a gap mitigation roadmap and implementation plan, to include enhancing and tuning existing toolset to maximize investment and reduce redundancy; Reviewing IT security policies and providing technical solutions for enforcement when violations are identified in agency's security tools; Leading and/or collaborating with integrated project team members and other stakeholders on security engineering deployments and/or integrated projects to ensure timely project and task completion; Providing milestones and completion dates for projects to include resource allocation, testing of solutions and coordination with other teams when needed; Providing weekly updates of projects to include any concerns or issues with meeting milestones or completion dates;
JOB DUTIES AND RESPONSIBILITIES:
· Develop Splunk alerts and validate Splunk content
· Develop Splunk dashboards
· Troubleshoot security stack appliance anomalies
QUALIFICATIONS
Required Certifications
· CompTIA Security+ or CISSP is required (one or the other)
Education, Background, and Years of Experience
· Bachelor’s Degree from an accredited college and 5+ years experience in the field of cyber security with demonstrated experience in the following areas: implementation of information engineering projects; systems analysis, design and programming; systems planning; business information planning; and business analysis.
ADDITIONAL SKILLS & QUALIFICATIONS
Required Skills
· Splunk content development
· Provides technical knowledge and analysis of highly specialized applications and operational environments, high-level functional systems analysis, design, integration, documentation and implementation advice on problems that need knowledge of the subject matter for effective implementation.
· Participates as needed in all phases of development with emphasis on the planning, analysis, testing, integration, documentation, and presentation phases.
· Applies principles, methods and knowledge of application architecture, advanced mathematical principles and methods to technical problems to arrive at desired solutions.
Preferred Skills
· Strong Splunk content development
· Splunk Admin cert preferred
WORKING CONDITIONS
Environmental Conditions
· Contractor site with 0%-10% travel possible. Possible off-hours work to support releases and outages. General office environment. Work is generally sedentary in nature, but may require standing and walking for up to 10% of the time. The working environment is generally favorable. Lighting and temperature are adequate, and there are not hazardous or unpleasant conditions caused by noise, dust, etc. Work is generally performed within an office environment, with standard office equipment available.
Strength Demands
· Light – 20 lbs. Maximum lifting with frequent lift/carry up to 10 lbs. A job is light if less lifting is involved but significant walking/standing is done or if done mostly sitting but requires push/pull on arm or leg controls.
Physical Requirements
· Stand or Sit; Walk; Repetitive Motion; Use Hands / Fingers to Handle or Feel; Stoop, Kneel, Crouch, or Crawl; See; Push or Pull; Climb (stairs, ladders) or Balance (ascend / descend, work atop, traverse).
