Logo
SkyePoint Decisions

Senior Systems Security Engineer

SkyePoint Decisions, Beltsville, Maryland, United States, 20705


Senior Systems Security Engineer

Job Location

US-MD-Beltsville

ID

2024-2844

Job Type

Immediate Hire

Category

Information Technology

Overview

SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Our focus is on enabling our clients to deliver their mission most efficiently and effectively - anytime, anywhere, securely. We combine technical expertise, mission awareness, and an empowered workforce to produce meaningful results.

As a SkyePoint employee you will be given the opportunity to support some of our nation's most critical information systems by utilizing not only your existing cybersecurity skills and talents, but those that you will learn in your new role. In your new role as a cyber security professional, you will protect our customer's most sensitive data and complex systems from all forms of threats including cyber-attacks, insider threats, rogue network devices, and malicious software and applications. You will work with a team of like-minded professionals to share and collaborate upon your ideas to improve the cybersecurity infrastructure, architecture, and configuration deployments. Your ideas and contributions will matter. This is a contingent position based upon customer approval. Responsibilities

Skyepoint Decisions is seeking a Senior Systems Security Engineer to support the Vanguard 2.2.1 Cybersecurity Integrity Center (CIC) office within the DOS. This person will provide technical leadership, guidance and management oversight for the CIC, especially in the area of Microsoft products and security systems, but also including other enterprise server & desktop operating systems enterprise applications. The position directly supports DOS on-site to provide security protection to over 100,000 customers globally.

This position is located in Beltsville, MD. It is hybrid and requires at least 2-3 days per week onsite. Responsibilities include: Develop, Identify and resolve security vulnerabilities related to deployment and testing processes

Streamline and optimize processes and procedures in order to rapidly remediate vulnerabilities from cybersecurity threats Identify and remediate cybersecurity vulnerabilities Provide detailed assessments of potential risks to Microsoft-based systems, including both operating systems and applications, in accordance with NIST SP 800-30 Revision 1 Collaborate with Department and external cyber stakeholders on cybersecurity technology implementations to meet specific operational needs. Perform technical evaluations of recommended vulnerability mitigation actions and make recommendations based on impact and/or other countermeasures. Develop strategies for CIC cyber defense technologies, ensuring integration and alignment for continued operation. Perform operation and maintenance activities in support of existing CIC cyber tools and technologies (MSV, Qualys, Tenable Nessus and others). Identify, diagnose and prioritize anomalies in cyber defense infrastructure and resources. Document, request and maintain ports, protocols and services for CIC infrastructure Perform cybersecurity testing of developed applications and/or systems. Identify and direct the remediation of technical problems encountered during testing and implementation of new systems. Develop reports and dashboards and make tuning request to SIEM system owner(s) in support of enhancing CIC cyber monitoring. Perform security reviews and identify security gaps in architecture. Make recommendations based on trend analysis to enhance CIC monitoring and hygiene activities. Properly document all systems security implementation, operations, and maintenance activities and update as necessary. Apply sound technical and management principles to identify and remediate cybersecurity --vulnerabilities across the State Department global IT enterprise infrastructure Apply organizational and process change principals Provide technical leadership and guidance to security and operational personnel Evaluate system performance results, lead teams in response to incidents/problems, perform risk assessments, and evaluate performance metrics

Qualifications

Required Qualifications: Bachelors and ten (10) years or more experience; Masters and eight (8) years or more experience; PhD or JD and seven (7) years or more experience. 10+ years Microsoft Operating Systems (OS) engineering and support experience focusing on Active Directory (AD), System Center Configuration Manager (SCCM), System Center Operations Manager (SCOM) In-depth experience in planning, implementing, and managing large/global enterprise infrastructures Familiarity of various analytical tools (Splunk, USBDeview, Netwitness, MimiKatz) Understanding of Security Information and Event Management (SIEM) tools (Splunk, McAfee) Familiarity with OMB, NIST, DHS, and related security guidelines and directives Interpersonal skills including the ability to collaborate effectively, and excellent written and oral communications Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth). Server/endpoint OS (Microsoft, Linux, IOS) along with mobile and cloud technologies. Cloud application security, Vulnerability Management and Security Information, and Event Management capabilities. Knowledge of identity and access management solutions (MFA, PKI, SAML, etc..) Countermeasures / mitigations to identified cybersecurity risks. Information protection technologies (e.g., firewalls, antivirus, threat protection, servers, routers, and others as appropriate). Network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools. Cyber defense technologies, including but not limited to: Vulnerability Scanning & Management, Endpoint detection and response, threat protection, and network defenses. Must be a U.S. citizen with an active Secret clearance.

Desired Certifications: Microsoft Certifications (MCSE, MCSA, MCSD); CISSP or CISM; or IAT/IAM/IASAE level III equivalent. ISACA Certified Information Systems Auditor (CISA) GIAC Security Expert (GSE) SCP Security Certified Network Architect (SCNA) ISACA Certified Information Security Manager (CISM) Certified Network Defense Architect (CNDA) or Certified Ethical Hacker (CEH) Cisco Certified Network Professional (CCNP) What We Can Offer You: At SkyePoint, we go B.I.G. (beginning in GRATITUDE) by recognizing all we have and giving back to our employees, families, and communities. It instills a positive mindset that permeates all we do. By beginning in gratitude, SkyePoint can continue to spread living in gratitude each day. Great Benefits: Several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, ST/LT Disability, Life Insurance, floating federal holiday options, and 401k matched Certificate Incentive Program: To promote professional development, we recognize and reward employees who obtain new certifications aligned with business needs. SkyePoint DoD SkillBridge Industry Partner Fellowship Program

Flexible Work Environment Compensation: Salary Range: $130,000-$163,000 The SkyePoint Decisions salary range for this position is a general guideline only. It represents an estimated range for this position and is just one piece of our total compensation package. Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations. In addition to a competitive salary, SkyePoint offers benefits including a certification incentive program, PTO, floating federal holiday options, several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, Vision, ST/LT Disability, Life Insurance, and 401k matched. SkyePoint Decisions is an established ISO 9001:2015 and ISO/IEC 27001:2013 certified small business and appraised at CMMI Level 3 for Services and Development. We possess a common vision of excellence and foster a collaborative team culture built upon individual performance and accountability. We invest in our people and systems to create value for our clients. It is the SkyePoint Way. We are grateful for the opportunity to work with exceptional people and give back to the communities we serve. Our employees value the flexibility at SkyePoint that allows them to balance quality work and their personal lives. Please be aware of recruiting scams and people claiming to be from SkyePoint Decisions. For more information, please see the Welcome Page of our Careers site. Skyepoint Decisions is a participating E-Verify Employer. U.S. Citizenship is required for most positions. Equal Opportunity Employer/Veterans/Disabled.