Logo
ZipRecruiter

ZipRecruiter is hiring: Cybersecurity Project Engineer in Sterling

ZipRecruiter, Sterling, VA, United States, 22170


Job DescriptionJob DescriptionThis position requires an active TS/SCI full scope polygraph clearance.
The Cybersecurity Project Engineer will be responsible for conducting technical risk assessments, providing risk mitigation guidance, and analyzing IT systems and networks for vulnerabilities. The role also involves evaluating system and network operations, analyzing hardware and software, and staying current with emerging technologies to identify associated risks.Scope of Work:1. Perform technical risk assessments and provide risk mitigation guidance on enabling technologies.2. Gather Body of Evidence (BOE) and assess artifacts to inform risk assessors judgement.3. Apply consistent and systematic investigative practices to assess risks, threats, and vulnerabilities.4. Evaluate system or network operations using network management platforms, scanning tools, auditing functions, PCAP captures, and log reviews.5. Analyze system, network, or cloud configurations for mis-configured settings and outdated hardware or software.6. Remain current with existing and future technologies to identify associated risks.7. Provide guidance on potential cyber threats, attacks, and exploitations.8. Ensure risk mitigation considerations are incorporated early in the development cycle.9. Organize and schedule work effectively to manage a case load.10. Track, document, and communicate progress status updates on technical risk assessment reports.Mandatory Skills Experience:1. Demonstrated experience analyzing IT systems for cyber security vulnerabilities.2. Demonstrated experience developing IT system or network architecture design, conducting IP data flow analysis, encryption configuration, and vulnerability analysis using both open-source and commercial tools, such as Nmap, Wireshark, Metasploit, Canvas, Kismet, or BackTrack.3. Demonstrated experience analyzing IT network configurations of devices such as firewalls, routers, switches, VPNs, or Intrusion Detection/Prevention Systems for cyber security vulnerabilities.4. Demonstrated experience with communications protocols such as IP, TCP, UDP, HTTP, HTTPS, MPLS, OSPF, IGRP, BGP, SIP, H.232.5. Demonstrated experience with multiple OSs, including Windows, Linux, and OSX.6. Demonstrated experience with Microsoft Windows ver.; 7, 8, 10, 2008R2, 2012, 2012R2, or 2016.7. Demonstrated experience with cloud computing technology and hypervisors such as HyperV, VMWare ESX, or Virtual Box.8. Demonstrated experience with transitioning security domains and use of cross domain appliances.9. Demonstrated experience with network management systems, network storage, backup systems, and disaster recovery (DR) architectures.10. Demonstrated experience performing technical risk assessments and providing technical risk mitigation guidance.11. Demonstrated experience ensuring appropriate risk mitigation considerations, risks and vulnerabilities are well understood and appropriately mitigated.12. Demonstrated experience analyzing procurement processes of hardware, software and services to comply with cyber security and operational needs.13. Demonstrated experience creating concise and well-structured written assessments.14. CISSP Certification.Optional Skills Experience:1. Demonstrated experience with the Customers IT review boards.2. Demonstrated experience with providing recommendations to IT architecture and design reviews.3. Demonstrated experience with the Customers security policies and regulations.4. Demonstrated experience providing recommendations in technical standards, security standards, and operational assurance.5. Demonstrated experience with USG standards such as Intelligence Community Directive (ICD) 503, Federal Information Processing Standards (FIPS), Institute of Standards and Technology (NIST) Special Publication (SP) 800-37, SP 800-39, SP 800-53, SP 800-53A, SP 800-60.6. Certified Information Security Manager (CISM), Certified Ethical Hacker.Compensation:-