Information Security Engineer
Job Description
ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Baseline Security Engineer who has experience building security baseline configuration guidelines for various technologies within the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.
Roles and Responsibilities
Develop and implement security solutions in alignment with security strategy. Maintain an awareness of market and technology trends to bring best of breed solutions to the client. Apply leading-edge principles, theories, and concepts and contribute to the development of new principles and concepts. Work on unusually complex problems and provide highly innovative solutions. Work closely with government stakeholders in understanding the vision and direction of the information technology program and decompose this architecture and associated use cases into discrete components that can be addressed from a cybersecurity engineering standpoint. Understand proposed and in-place architectures at a level that enables the identification and understanding of possible security risks and propose solutions for risk mitigation.
Required Skills
Experience with reviewing, developing and customizing general security configuration baselines including DoD, STIGs, and CIS Benchmarks
Experience with translating the low-level security baseline requirements into high-level FISMA and NIST requirements and client-specific security policies
Experience working with the NIST 800 Special Publication series guidance related to risk management and security control implementation, including 800-30,800-37, 800-53, 800-60, 800-63, 800-115, or 800-137
Experience with one or more of the following technologies: Networking, including CISCO, Juniper, or Palo Alto, operating systems, including Windows Server, Redhat, or Linux, cloud services, including AWS, Azure, Salesforce, Okta, O365, or ServiceNow, or Mobile Technologies, including iOS or Xen Mobile
Knowledge of the National Vulnerability Database (NVD) and Common Vulnerability Enumeration (CVE)
Desired Skills
Experience with designing, building, and implementing automation tools, including Ansible, Chef, or Puppet
Experience with Infrastructure as Code tools, including Cloud Formations or Terraform
Experience with container platforms, including OpenShift
Experience with chaos engineering and blue or green deployments
Experience with Serverless, including Lambda, API Gateway, Step Functions, and SAM
Experience with application performance analysis and monitoring, including ELK
Experience with an Agile release methodology
Education Requirement
BA or BS degree in Information Security, Computer Engineering, Information Systems, Telecommunications, or Technology
Years of Experience Requirement
A minimum of five (5) to eight (8) years of relevant work experience in the area of network security engineering or security operations, including hands-on experience with security tools and devices such as Apcon, A10 load balancers, FireEye
Certification Requirement
Maintain at least one current professional certification. Acceptable certifications include: Any SANS GIAC Security certifications (Administration, Software, Forensics, or GSE Expert), ISC2 CISSP, or any security systems vendor administration-level certifications. AWS Certified Solutions Architect or Developer Certification. CCNA, MSCE, RHCSA, EBSA or ECSS Certification
Location
Washington, DC
Security Clearance
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information
Work in United States
Employment Options
Professional Experience
Skills
- DISA STIGS
- CIS Benchmarks
- Baseline Requirements
- Baseline Configuration
- NIST
- FISMA
- Network Devices
- Applications
- Operating Systems
