Logo
Universal Service Administrative Company

IT Security Engineer IV

Universal Service Administrative Company, Washington, District of Columbia, us, 20022


USAC's target compensation range for a new hire into this position is $105,000 - $150,000 USD per year. Actual salary may vary depending on job-related factors based on knowledge, skills, and experience, as evaluated throughout the interview process. In addition, this position may be eligible for an annual performance bonus. USAC has a comprehensive benefits package that includes Medical, Dental, Vision, 401 (k), FSA, Life Insurance, Paid Time Off, Commuter Benefits, and Wellness Programs. USAC employees follow a hybrid work schedule, working onsite in D.C. at least two days per week. Why Work Here? Our mission to achieve universal service addresses America's current critical needs to build out broadband capabilities for telehealth, online learning, and keeping families connected. Join us and help USAC accomplish our mission to bridge the digital divide. Through its administration of the $10 billion Universal Service Fund (USF) programs on behalf of the FCC, USAC works to promote the availability of quality services at just, reasonable and affordable rates and to increase access to advanced telecommunications services throughout the nation. Additional information on USF programs can be found at: https://www.usac.org/about/ Benefits USAC supports our employees well beyond their salary with a system of benefits that rivals the top organizations in the country. Simply put: if you are committed to improving the lives of others, we are committed to improving yours. USAC provides low-premium, top-of-the-line medical, dental, and vision insurance in addition to disability and life coverage. Generous 401k contribution, Federal and floating holidays, paid sick leave and vacation time that increases every year. Regular telework schedule and opportunities to take professional development courses and training. A Multicultural Team We have actively built an organization that doesn't just celebrate our diversity; we depend on it. The challenges of achieving universal service require creative and unique perspectives. Our accepting and inclusive community will challenge you to grow and learn from others while always recognizing the value of your contribution. USAC employees are passionate about our mission. Our work contributes to the success of all Americans. We've worked together to build a culture that is collaborative, ambitious, outcome-oriented, and feedback-focused As USAC continues to support universal service impacting health care providers, educators, and consumers, it is critical now more than ever that we hire people equally passionate and committed to helping fulfill our mission. We are currently seeking an experienced, dynamic and collaborative professional to serve as an IT Security Engineer IV with our IT team. Reporting to the Manager IT Security Operations (SOC) you will: Secure and Optimize Datacenter Operations: Design, implement, and maintain security architectures that protect critical business operations. Ensure security measures are seamlessly integrated into all aspects of IT workflows, with particular attention to virtualization, containerization, and other emerging technologies and their impact on security. Support the SOC and Incident Response (IR) efforts, assist the SOC and IR engineer(s)/analyst(s) in investigating security incidents as requested and as needed. Provide direction and leadership on remediation efforts. Security Operations Tools Management: Analyze, build, and maintain Security Operations toolsets, including vulnerability scanning, log collection/SIEM, and endpoint protection. Implement, test, and maintain defined security solutions. Provide guidance to software development and infrastructure teams on IT security best practices. Provide guidance in evaluating new technology including COTS, open source, custom developed software from a IT security perspective. Review and lead necessary technical changes and designs across IT and IT Security including, but not limited to network-based devices. Take all areas of IT security into consideration in engineering, design, and integrations efforts including Compliance, FISMA regulations. Lead documentation efforts to update policies, procedures, and diagrams for all implemented security tools. Vulnerability Remediation Support: Analyze and support the remediation efforts related to vulnerabilities and system configurations. Collaborate with IT teams to ensure vulnerabilities are addressed promptly and effectively. Gap Assessments and Security Initiatives: Perform security initiative gap assessments, identifying areas for improvement and driving the implementation, testing, and maintenance of defined security solutions. Project and Application Security Leadership: Lead security support for project development and existing applications, working closely with IT Operations and program support groups to ensure security is integrated into all phases of the project lifecycle. Technology Evaluation and Integration: Evaluate and integrate emerging technologies, ensuring that they meet the organization's security requirements and are compatible with existing systems. Focus on principles and foundations rather than specific tools, allowing flexibility in the technology stack. Policy and Procedure Development: Develop and maintain security policies and procedures that reflect best practices in datacenter and IT security. Ensure these policies account for the cascading effects of security measures across interconnected systems. Security Roadmap Development: Collaborate with the Security Operations team to create a strategic security roadmap that aligns with the organization's goals, particularly in the areas of datacenter operations and virtualization. Leadership and Mentorship: Provide technical leadership and mentorship to the Security Operations team, fostering a culture of continuous learning and professional development. About You Bachelor's degree and/or relevant technical training and certifications and/or equivalent experience will be considered. Seven (7) + years of directly related experience. Three (3) + years of operational and/or technical leadership experience. Five (5) + years of experience in compliance requirements (NIST 800-53 v4) and FISMA. Five (5) + years of experience in Operating System configuration (Red Hat Linux, and Windows Server). Five (5) + years of experience with security automation, log analysis, intrusion detection/prevention, and malware analysis. Five (5) + years of experience in developing network architecture, firewall management, and security tool configuration. Five (5) + years of experience in system baseline configurations, IT security policy and standards development, and POA&M tracking and remediation. Three (3) + years of experience in cloud security with Amazon web services (EC2, S3, Route53, RDS, VPC, IAM, and cloud watch). Expert knowledge of networking concepts and virtualized environments (VMWare), desired. Strong project management experience, desired. Licenses and Certifications Preferred: Professional level or higher certifications desired including, but not limited to, CISSP, CASP, CCNP, or equivalents to Certified Cloud Security Professional (CCSP). USAC is committed to providing a safe and healthy workplace for all employees. All offers of employment with USAC are conditioned on completing and passing a background and reference check. USAC is an Equal Opportunity Employer. No agencies, please.

#J-18808-Ljbffr