GameStop
Cyber Security Engineer
GameStop, Mc Lean, Virginia, us, 22107
OverviewSteampunk
is the explosive collision of human-centered design and traditional government contracting. An employee-owned company with a startup mindset and time-tested approaches tailored for the federal government, we’re passionate about creating solutions that are impactful, practical, scalable, and most importantly, that meet our clients’ ever-changing needs.
At Steampunk, we believe in disrupting the status quo and setting the pace in the ecosystem of government contractors, while repurposing tried-and-true methodologies. We believe in empowering our people to find creative solutions to intractable problems. We believe the best environment in which to grow and thrive is outside our comfort zone.
While good design makes for a good product, we believe human-centered design makes for an excellent one. We also believe effective teams are powered by diverse perspectives, backgrounds, and experiences. To that end, Steampunk is an equal opportunity employer committed to promoting diversity of race, gender, sexual orientation, religion, ethnicity, national origin, disability status, and protected veteran status, amongst our ranks. Additionally, we participate in the E-Verify program.
ContributionsAs a
Cloud Security Engineer , you will work within our growing DevSecOps practice delivering features to support developing, testing, and monitoring secure cloud architectures for cloud migration, cloud optimization, and cloud deployment. We are looking for candidates with 3+ years of experience with cloud platform services, cybersecurity, and DevOps practices such as infrastructure as code and configuration management automation. Responsibilities include:
Identify and implement the most secure cloud-based solutions for the customer including components for zero-trust architectures, identity and access management policy, and data privacy.
Understanding the needs of stakeholders and optimizing solutions that marry security with usability.
Monitor cloud environments for suspicious activities with cloud native monitoring or SIEM solutions and investigate security incidents where appropriate.
Examining infrastructure as code written by others and analyzing risk.
Ensuring that systems are safe and secure against cybersecurity threats through risk assessment, threat modeling, and compliance with industry standards (e.g. NIST, ISO 27011, HIPAA, FISMA, etc.).
Identifying technical problems, performing root cause analysis, and developing updates and ‘fixes’.
Automate security processes such as vulnerability management and patch management.
Working with software developers and DevSecOps engineers to ensure that development follows established security processes and works as intended.
Support enterprise cloud security through infrastructure as code including any activities around automated server or network configurations, large-scale software deployments, and monitoring and testing.
Ensure effective design and implementation of data protection and encryption mechanisms for data at rest and in transit.
Document as-is state of the environment, perform a gap analysis, and produce artifacts that articulate options and recommendations.
Identify, analyze, and resolve infrastructure vulnerabilities and application deployment issues.
Act as an individual contributor and mentor more junior team members.
Engineer and implement solutions and provide recommendations for continuous improvement for the services provided.
Present regular status updates and provide cross training to other team members.
QualificationsRequired:
Ability to obtain a U.S. government Security Clearance
BS Degree in an IT field OR BS in a non-IT field and 2 years related IT experience
3 Years of Experience architecting, designing, developing, and implementing cloud solutions
3 Years of Experience with one or more clouds (i.e. AWS, Azure, or GCP)
3 Years of Experience with Git SCM providers such as GitHub, GitLab, Bitbucket
3 Years of Experience with systems development in an Agile environment
3 Years of Experience implementing infrastructure as code and orchestration
3 Years of Experience providing conducting monitoring, risk assessment, threat modeling and security testing in cloud environments
3 Years of Experience documenting POAMs, SSPs, and A&A support documentation
Experience with Azure
Preferred:
Certifications:
AWS Certified Security Specialty
AWS Certified Solution Architect Associate
Microsoft Certified Azure Administrator Associate
Certified Information Systems Security Professional (CISSP)
Excellent written and verbal communication skills, interpersonal and collaborative skills
Experience with documenting an as-is state of the environment, perform a gap analysis, and produce artifacts that articulate options and recommendations preferred
Experience with scripting in Concourse, Bash, PowerShell, Python, Groovy, or Ruby
Experience with automation tools, including Pivotal, Chef, Terraform, CloudFormation, or Ansible
About
SteampunkSteampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $125,000 to $165,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunk’s total compensation package for employees. Learn more about additional Steampunk benefits here.
Steampunk is a
Change Agent
in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our
Human-Centered delivery methodology , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an
employee-owned company , we focus on investing in our employees to enable them to do the greatest work of their careers – and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit
http://www.steampunk.com .
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program.
#J-18808-Ljbffr
is the explosive collision of human-centered design and traditional government contracting. An employee-owned company with a startup mindset and time-tested approaches tailored for the federal government, we’re passionate about creating solutions that are impactful, practical, scalable, and most importantly, that meet our clients’ ever-changing needs.
At Steampunk, we believe in disrupting the status quo and setting the pace in the ecosystem of government contractors, while repurposing tried-and-true methodologies. We believe in empowering our people to find creative solutions to intractable problems. We believe the best environment in which to grow and thrive is outside our comfort zone.
While good design makes for a good product, we believe human-centered design makes for an excellent one. We also believe effective teams are powered by diverse perspectives, backgrounds, and experiences. To that end, Steampunk is an equal opportunity employer committed to promoting diversity of race, gender, sexual orientation, religion, ethnicity, national origin, disability status, and protected veteran status, amongst our ranks. Additionally, we participate in the E-Verify program.
ContributionsAs a
Cloud Security Engineer , you will work within our growing DevSecOps practice delivering features to support developing, testing, and monitoring secure cloud architectures for cloud migration, cloud optimization, and cloud deployment. We are looking for candidates with 3+ years of experience with cloud platform services, cybersecurity, and DevOps practices such as infrastructure as code and configuration management automation. Responsibilities include:
Identify and implement the most secure cloud-based solutions for the customer including components for zero-trust architectures, identity and access management policy, and data privacy.
Understanding the needs of stakeholders and optimizing solutions that marry security with usability.
Monitor cloud environments for suspicious activities with cloud native monitoring or SIEM solutions and investigate security incidents where appropriate.
Examining infrastructure as code written by others and analyzing risk.
Ensuring that systems are safe and secure against cybersecurity threats through risk assessment, threat modeling, and compliance with industry standards (e.g. NIST, ISO 27011, HIPAA, FISMA, etc.).
Identifying technical problems, performing root cause analysis, and developing updates and ‘fixes’.
Automate security processes such as vulnerability management and patch management.
Working with software developers and DevSecOps engineers to ensure that development follows established security processes and works as intended.
Support enterprise cloud security through infrastructure as code including any activities around automated server or network configurations, large-scale software deployments, and monitoring and testing.
Ensure effective design and implementation of data protection and encryption mechanisms for data at rest and in transit.
Document as-is state of the environment, perform a gap analysis, and produce artifacts that articulate options and recommendations.
Identify, analyze, and resolve infrastructure vulnerabilities and application deployment issues.
Act as an individual contributor and mentor more junior team members.
Engineer and implement solutions and provide recommendations for continuous improvement for the services provided.
Present regular status updates and provide cross training to other team members.
QualificationsRequired:
Ability to obtain a U.S. government Security Clearance
BS Degree in an IT field OR BS in a non-IT field and 2 years related IT experience
3 Years of Experience architecting, designing, developing, and implementing cloud solutions
3 Years of Experience with one or more clouds (i.e. AWS, Azure, or GCP)
3 Years of Experience with Git SCM providers such as GitHub, GitLab, Bitbucket
3 Years of Experience with systems development in an Agile environment
3 Years of Experience implementing infrastructure as code and orchestration
3 Years of Experience providing conducting monitoring, risk assessment, threat modeling and security testing in cloud environments
3 Years of Experience documenting POAMs, SSPs, and A&A support documentation
Experience with Azure
Preferred:
Certifications:
AWS Certified Security Specialty
AWS Certified Solution Architect Associate
Microsoft Certified Azure Administrator Associate
Certified Information Systems Security Professional (CISSP)
Excellent written and verbal communication skills, interpersonal and collaborative skills
Experience with documenting an as-is state of the environment, perform a gap analysis, and produce artifacts that articulate options and recommendations preferred
Experience with scripting in Concourse, Bash, PowerShell, Python, Groovy, or Ruby
Experience with automation tools, including Pivotal, Chef, Terraform, CloudFormation, or Ansible
About
SteampunkSteampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $125,000 to $165,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunk’s total compensation package for employees. Learn more about additional Steampunk benefits here.
Steampunk is a
Change Agent
in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our
Human-Centered delivery methodology , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an
employee-owned company , we focus on investing in our employees to enable them to do the greatest work of their careers – and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit
http://www.steampunk.com .
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program.
#J-18808-Ljbffr