We are seeking an experienced and CISSP certified Cybersecurity Engineer for a 6 month contract-to-hire role. This role can work remotely from anywhere within the U.S.
In this role, you will apply Information Technology (IT) security principles, methods and security products to protect and maintain the availability, integrity, confidentiality and accountability of IT resources and physical security access of property and personnel. You will be accountable for executing assigned tasks to implement the goals of the organization's Information Security initiatives, on time and within approved budget.
Essential Duties and Responsibilities:
- Maintains configurations for IT security technologies to optimize protective equipment functions and capabilities.
- Develops, documents and maintains methodology for sensitive and critical application and general support for IT security systems.
- Researches technical and IT security topics; maintains information on industry trends.
- Collaborates with others in the Company (i.e. Information Technology engineers, Network Engineers, etc) to perform design review and analysis of network infrastructure modifications.
- Develops policies, procedures and maintains scripts, routines and software for accomplishing security studies and assessments to provide professional level analysis in recognizing system threats and vulnerabilities; detects malware or malicious activities.
- Periodically reviews firewall and router rules and access control lists.
- Monitors and reviews intrusion detection systems and firewall logs to identify adverse patterns and coordinate mitigation responses.
- Performs security assessments, risk identification and mitigation planning and execution.
- Leads vulnerability management efforts and actively participates in patch management and risk management processes.
- Participates in emergency operations, including the Computer Security Incident Response Team.
- Responsible for PKI Infrastructure management and support - User and Server Authentication
- Draft policy based on NIST, FISMA, PCI, PII and CJIS compliance.
- Ensures processes and procedures are developed, documented, maintained and adhered to for incident identification, investigation and response, analysis and recommendations for risk management, collection of forensic data and regulatory require
- CISM, CISA, CRIS, CISSP, or similar certification required.
- BS in Information Technology or equivalent combination of directly applicable experience and certification
- Minimum 5 years’ direct Cybersecurity Engineer or information assurance experience
- Strong experience working with market standard Vulnerability Assessment tools
- Must have experience with network monitoring, network security, network equipment programming, firewall configurations and DLP solutions, log monitoring and event correlation
- Experience with policy and process documentation
- Understanding of DNS, DHCP and LDAP
- System hardening experience utilizing STIGs, CIS or USGCB
- Security Incident Response experience
- Strong oral and written communication abilities with experience writing policies
- Must possess strong analytical and troubleshooting skills
- Must be able to serve as a technical resource to IT staff
This 6- month contract-to-hire role can work remotely from anywhere within the U.S. and will pay up to $140,0000-$160,000 per year upon conversion to a full-time employee.
