Cybersecurity Engineer, Senior

Gray Tier Technologies is seeking a Senior Cybersecurity Engineer with an active Secret-level clearance to support our DOI OCIO Cybersecurity Branch.

• Minimum 10 years of experience
• Master’s degree (MA/MS) required
• Senior level, support for Information Security (INFOSEC) and trusted systems technology.
• Assists in the analysis and definition of security requirements.
• Assists in the design, development, testing, and documentation of cryptographic products, trusted networks, database management systems and telecommunications subsystems.
• Researches, drafts, and provides input regarding information security policies, trusted computing base architectures, and security engineering practices and processes.
• Assists with certifications and accreditation reviews, security test and evaluations, and may draft associated reports.
• Supports automated information system security engineering tasks which may include policy development, asset and risk assay, development of security specifications/architectures/plans, development and/or installation of digital signature systems, support for key and certificate management, implementation/support of trusted computing base, systems certification and accreditation support, and hands-on development and operation of pilot or prototype information security applications.
• Provides research and initial input for analysis of the current information security architecture and comparative assessments of alternate approaches.
• Assists in the design, development, debugging, testing, documentation development, and maintenance of computer programs for security applications.

Job Responsibilities May Include:

• Support risk analysis and approval process for deviation/exemption requests to DOI-wide Web Filtering, SSL Inspection, Data Loss Prevention (DLP), and IT Configuration Management policies
• Conduct analysis of information maintained within FireMon Security Intelligence Platform
• Track, analyze, and report on risks in alignment with policy, standards, processes, and controls.
• Review and analyze firewall configurations for enhancements, optimal configurations, and network connectivity.
• Consult with infrastructure management to customize and configure FireMon Security Intelligence Platform Monitoring to meet specific Department and DHS requirements.
• Perform technical writing and creation of formal documentation such as Standard Operating Procedures (SOPs), reports training materials, slide desks, and architecture diagrams.
• Configure and operate with FireMon Security Intelligence provide quarterly status reports of firewall rules reviewed, error founds, devices configured and deployed in support of DOI’s IT security requirements.
• Apply configuration parameters on routers, firewalls and security in accordance with NIST 800-53 controls, current revision in on premise and cloud environments with updates to be included in quarterly reports to the Information System Security Manager (ISSM).
• Document configuration and computer protection components (e.g., Hardware, firewalls, servers, routers) on an ad hoc basis with deliverables provided within 5 business days to the ISSM.
• Provide detailed reporting as directed on implementation, design and audit of firewalls and advanced firewall configurations that support advanced configurations of software defined networks).
• Provide ad-hoc configuration of firewall or security appliances and network protection components (e.g. routers, switches, intrusion prevention devices to include Cisco, Fortigate, Riverbed and Juniper devices, with reports detailing the architecture logical implementation with detail descriptions implementation configurations.
• Make recommendations regarding the configuration of DOI’s perimeter UTM devices as to their security posture and configuration supporting NIST 800-53; and industry best practices for (Cisco, Juniper, Riverbed, and Fortigate).
• Possess knowledge and skills that shall have the ability to configure firewalls, demilitarized zones, and software defined networks.
• Knowledge and documented experience with networking protocols and the ability to identify both secure and insecure rulesets and configurations to be included with quarterly reports.
• Deliverables for DMA Support include, but are not limited to, a DMA Report of Findings, maintaining proper custody of evidence.
• Produce reporting for Enterprise FireMon security Intelligence Platform infrastructure in support of the Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) program and associated Approved Products List (RSA Archer, Splunk, IEM, Fireeye, etc.).