Senior System Security Engineer

📋 Description

• Create security solutions and ensure the hardening of network, Linux-based, and Windows systems.

• Troubleshoot complex security challenges and provide prompt, effective resolutions.

• Secure cloud environments such as AWS, Microsoft Azure, and GCP, along with containerized platforms like Docker and Kubernetes, ensuring compliance with DISA-STIG standards.

• Act as the primary System Security Engineer in a hands-on role, proactively upholding system and security integrity while independently driving initiatives forward.

• Collaborate directly with fellow security team members to maintain the uptime and compliance of security tools and processes.

• Document security findings, communicate risks, and work together with teams and leadership.

⛳️ Requirements

• Over 10 years of pertinent work experience.

• An Associate’s degree can substitute for 2 years; a Bachelor’s degree for 3 years; a Postgraduate degree for 6 years.

• Significant hands-on experience with Linux operating systems such as RHEL, CentOS, and Ubuntu, covering system internals, administration, template hardening, and troubleshooting.

• Extensive hands-on experience with Microsoft Windows security, including Active Directory security, system hardening and configuration, Windows security stack, and logging and monitoring with Windows Event Logs, Sysmon, and integration with SIEM systems for threat detection.

• Practical experience in hardening infrastructure and configuring both on-premises and cloud-based servers, network devices, and hypervisors, including secure network engineering using firewalls, VLAN segmentation, and access control lists (ACLs).

• Advanced skills in scripting languages like Python and Bash to automate tasks and develop security tools.

• Experience in securing cloud environments such as AWS, Azure, and GCP, as well as containerization technologies like Docker and Kubernetes.

• Strong understanding of network security, including protocols such as TCP/IP, firewalls, encryption, and authentication systems.

• Familiarity with security frameworks and compliance standards like PCI-DSS, SOC 2, NIST, ISO.

• Proficiency with vulnerability scanning tools (Tenable Nessus), network tools (Cisco FMC, Extrahop and others), SIEM (Splunk), EDR (Trellix), and various other toolsets.

• Exceptional verbal and written communication skills to effectively report security findings, communicate risks, and collaborate with diverse teams and leadership.

• Proven ability to assess complex requirements and convert them into clear, actionable tasks and processes through critical thinking.

• Candidates must be U.S. citizens and eligible to obtain and maintain a security clearance, in accordance with federal contract requirements.

🏝️ Benefits

• 144 hours of paid time off (PTO).

• 11 holidays observed.

• 85% of insurance premium covered.

• 401k plan available.

• Opportunities for continued education.

• Certifications maintenance and reimbursement offered.

• And more.