Obsidian Global

Cyber Security Engineer

Security Engineer in Sterling, VA

Posted 2019-06-17
Description

Active Top Secret Clearance Required

The Cyber Engineer designs, develops, documents, analyzes, tests, integrates, debugs, conducts research and/or discovers and analyzes security flaws or vulnerabilities in software, networks, systems, applications and/or provide mitigation strategies. The Cyber Engineer ensures system security needs are established and maintained for various objects/matters. Integrates new architectural features into existing infrastructures, design cyber security architectural artifacts, provide architectural analysis of cyber security features and relate existing system to future needs and trends. Evaluates computer software and network for threats and/or malware Collects data from a variety of network security tools, including intrusion detection system alerts, firewall and network traffic logs, and host system logs to analyze events that occur within their environment. Employs and provides computer advanced forensic tools, techniques, and intrusion support for attack reconstruction and high technology investigations, while reviewing threat data from various sources. This position may also identify network computer intrusion evidence and perpetrators.

Cyber Engineer tasks include:

Analyze output from various security devices and malware and incident reports to improve detection of and to minimize future incidents.

Assess and analyze system security to identify and mitigate risks and vulnerabilities.

Recommend countermeasures to mitigate risks and vulnerabilities.

Prepare documentation, including incident reports, security recommendations, etc.

Required skills may include the following:

Experience in intrusion detection and prevention systems (IDS/IPS), log analysis, malware analysis, network traffic flow and packet analysis.

Experience with standard security principles, policies, standards and industry best practices.

Experience with software development

Understanding of windows and UNIX operating systems

Understanding of security technologies and concepts, experience in design and implementation of secure network solutions including DMZs and web portals

Knowledge of Information Assurance and Information Operations technologies and development activities.

Understanding of the processes and guidelines for Certifying & Accrediting (DCID, ICD, NIST 800-53, SANS 20) information systems based upon experience on a large-scale development program.

Practical experience hardening IT systems in compliance with STE/STIG guidelines

Possesses or quickly develop a comprehensive understanding of Government Information Security policies, regulations, and guidelines.

Experience and knowledge of networking (TCP/IP, topology, sockets and security), operating systems (Windows/UNIX/Linux), and web technologies (Internet security)

Active Top Secret/Sensitive Compartmented Information (TS/SCI) security clearance required.

U.S. Citizenship required.

Desired skills include:

Experience with Security Event Incident Management, Log Correlation and Network Behavior Anomaly detection systems (ArcSight, QRadar , Splunk, Mazu, Arbor, etc.)

Experience and/or familiarity with one of more of the following: Java, Swing, Hibernate, Struts, JUnit, Perl, Ruby, Python, HTML, C, C++, .NET, ColdFusion, Adobe, Assembly language, etc.

Demonstrated experience and/or familiarity with VMWare and virtual machines.

Ability to write custom tools and modify existing intrusion detection tools.

Experience with Agile development methodology.

Experience with automated testing tools (e.g., RSpec, Cucumber, etc.)

Experience with one or more of the following:

Security COTS integration

Security Incident Event Management

Insider Threat Monitoring

Operating System Hardening

Vulnerability Assessment testing

Identification and Authentication schemes

Public Key Infrastructure and Identity Management

Cross Domain Solutions

Computer Network Exploitation (CNE)

Computer Network Operations (CNO)

Malware Analysis

Reverse Software Engineering

Security engineering

Active Top Secret Clearance Required

Ready to be seen?

Apply now to have the opportunity to be considered for similar jobs at leading companies in the Seen network for FREE.

Company summary

Obsidian Global is a small federal IT Services firm experienced at developing solutions for government clients. We are headquartered in Washington, DC with offices in Bethesda and Colorado. We have 120+ employees nationwide and are ISO and CMMI certified.

Perks

In addition to traditional small business healthcare benefits and 401K, we offer an online training platform to increase your skills and certifications for growth. We believe in personal development and good work/life balance. We host happy hours, sporting events, and holiday parties throughout the year. We also partner with event sites, gyms, and other perks to pass along corporate savings to our employees.

Interview process

Most candidates go through an initial phone screening with the recruiter, then either a phone interview or in-person interview followed by an offer.

Be seen in a new Security Engineer job

Skip the search

Zero stress and one profile that can connect you directly to 1000s of companies.

Best-fit jobs—for you

We’ll take it from there. After you tell us what you’re looking for, we’ll show you off to matches.

Free Career Coaching

Boost your interview skills, map your tech career and seal the deal with 1:1 career coaching.

You get tech. We get you.

Join now and be seen.