Sonsoft Inc
Network Security Engineer (Public Trust Clearance)
Sonsoft Inc, Washington, District of Columbia, us, 20022
Network Security Engineer (Public Trust Clearance)
ContractSonsoft , Inc. is a USA based corporation duly organized under the laws of the Commonwealth of Georgia. Sonsoft Inc. is growing at a steady pace specializing in the fields of Software Development, Software Consultancy and Information Technology Enabled Services.
The essential functions/responsibilities for this role:Provide hands-on configuration, operation and monitoring of all IT network
security
devices to include firewalls, remote access appliances, and anti-virus solutions.Develop and implement proactive IT
security
measures and practices to protect customer systems from exploit – specifically focused on firewalls, external access control points, and vulnerability assessment/mitigation.Be prepared to offer
security -related guidance on business processes, emerging technologies and acquisitions, and vulnerability assessment/mitigation approaches.Conduct risk and vulnerability assessment at the network, system and application level.Conduct reviews of each system's audits and monitors corrective actions until all actions are closed.Analyze, troubleshoot, and investigate
security -related, information systems anomalies based on
security
platform reporting, network traffic, log files, host-based and automated
security
alerts.Prepare investigative reports to be submitted to US-CERT.Identify and manage projects related to IT
security
and overall enterprise operations and maintenance, to include the task delegation and status reporting while coordinating activities within the Network and Systems teams and across the IMT department.Develop and document detailed processes and procedures related to the analysis of
security
vulnerabilities, auditing of key
security
factors, and notification/mitigation of
security
findings.Produce detailed reports of auditing activities that demonstrate proactive management of enterprise
security .Maintain and update relevant system and process documentation and develop ad-hoc reports as needed.The person must possess most of the following Knowledge, Skills and Abilities, and perform some of the following duties:Possesses familiarity with various aspects and components of information
security
(encryption methods standards, real-time intruder detection, perimeter
security , event correlation, authentication services, vulnerability analysis, and incident handling and forensics, Public Key Infrastructure (PKI) and two-factor authentication solutions.)Analyzes and reviews IT and physical
security
events, and traffic flows escalated from automated detection systems utilizing commercial
Security
Incident and Event Management (SIEM [Tripwire software]), Intrusion Detection and Prevention Systems (IDS/IPS [Palo Alto, Cisco ASA, McAfee, Ironport software]) and log management and database activity monitoring.Exhibits knowledge and experience with common attack methodologies; common types of
security
vulnerabilities, and malware analysis, and evaluates, plans and recommends long and short term changes to the
security
architecture designed to improve
security
posture.Possesses recent (within 1 year) and relevant practical experience using Retina, Gold Disk, Wireshark, Snort, Logger, Nessus, NeXpose, Metasploit, and other
security
and web assessment tools.Possesses experience building and maintaining System
Security
Plans, Incident Response Plans, Contingency Plans and Exercises, Continuity of Operations Plans and exercises, Risk Management Plans and Vulnerability Management Plans in accordance with FISMA, and NIST guidelines.Possesses experience directing remediation efforts, building Residual Risk Reports and tracking and executing an IT
security
Plan of Action and Milestones (POA&M).Possesses experience performing Privacy Impact Assessments (PIA) and enacting best practices protecting Personally Identifiable Information (PII).Public Trust Clearance required for the job.
#J-18808-Ljbffr
ContractSonsoft , Inc. is a USA based corporation duly organized under the laws of the Commonwealth of Georgia. Sonsoft Inc. is growing at a steady pace specializing in the fields of Software Development, Software Consultancy and Information Technology Enabled Services.
The essential functions/responsibilities for this role:Provide hands-on configuration, operation and monitoring of all IT network
security
devices to include firewalls, remote access appliances, and anti-virus solutions.Develop and implement proactive IT
security
measures and practices to protect customer systems from exploit – specifically focused on firewalls, external access control points, and vulnerability assessment/mitigation.Be prepared to offer
security -related guidance on business processes, emerging technologies and acquisitions, and vulnerability assessment/mitigation approaches.Conduct risk and vulnerability assessment at the network, system and application level.Conduct reviews of each system's audits and monitors corrective actions until all actions are closed.Analyze, troubleshoot, and investigate
security -related, information systems anomalies based on
security
platform reporting, network traffic, log files, host-based and automated
security
alerts.Prepare investigative reports to be submitted to US-CERT.Identify and manage projects related to IT
security
and overall enterprise operations and maintenance, to include the task delegation and status reporting while coordinating activities within the Network and Systems teams and across the IMT department.Develop and document detailed processes and procedures related to the analysis of
security
vulnerabilities, auditing of key
security
factors, and notification/mitigation of
security
findings.Produce detailed reports of auditing activities that demonstrate proactive management of enterprise
security .Maintain and update relevant system and process documentation and develop ad-hoc reports as needed.The person must possess most of the following Knowledge, Skills and Abilities, and perform some of the following duties:Possesses familiarity with various aspects and components of information
security
(encryption methods standards, real-time intruder detection, perimeter
security , event correlation, authentication services, vulnerability analysis, and incident handling and forensics, Public Key Infrastructure (PKI) and two-factor authentication solutions.)Analyzes and reviews IT and physical
security
events, and traffic flows escalated from automated detection systems utilizing commercial
Security
Incident and Event Management (SIEM [Tripwire software]), Intrusion Detection and Prevention Systems (IDS/IPS [Palo Alto, Cisco ASA, McAfee, Ironport software]) and log management and database activity monitoring.Exhibits knowledge and experience with common attack methodologies; common types of
security
vulnerabilities, and malware analysis, and evaluates, plans and recommends long and short term changes to the
security
architecture designed to improve
security
posture.Possesses recent (within 1 year) and relevant practical experience using Retina, Gold Disk, Wireshark, Snort, Logger, Nessus, NeXpose, Metasploit, and other
security
and web assessment tools.Possesses experience building and maintaining System
Security
Plans, Incident Response Plans, Contingency Plans and Exercises, Continuity of Operations Plans and exercises, Risk Management Plans and Vulnerability Management Plans in accordance with FISMA, and NIST guidelines.Possesses experience directing remediation efforts, building Residual Risk Reports and tracking and executing an IT
security
Plan of Action and Milestones (POA&M).Possesses experience performing Privacy Impact Assessments (PIA) and enacting best practices protecting Personally Identifiable Information (PII).Public Trust Clearance required for the job.
#J-18808-Ljbffr