• Information Security Engineer

    Job Locations US-Herndon, VA
    Job ID
    2018-1487
    Category
    ITO
  • Overview

    Ntrepid is an award-winning cybersecurity firm, where natural curiosity, desire to learn, and creative solutions in technology are highly celebrated.  We are 250+ person, product-focused company that is profitable and growing rapidly. If you believe that you have solid Security Engineering skills and want to make an impact, keep reading!

     

    We are seeking a seasoned engineer, to architect build and maintain enterprise class security solutions for our organization. This position will take part in the design, installation, configuration, tuning, and management of security systems across the organization. This includes Security Information and Event Management (SIEM) products, Breach Detection Systems, Network IPS/IDS, firewalls, and log capture. In this high impact role, you will be responsible for ensuring effective communications, detailed monitoring, traffic analysis, alert categorization, and assisting with and/or driving incident response cycles.

    Responsibilities

    • Identify, define enterprise class security architecture and requirements.
    • Deploy various security tools and solutions as needed
    • Tune, manage and monitor all security solutions ensuring appropriate capacity planning and resource utilization requirements are met and maintained
    • Provide technical expertise for security incident response program assisting in containment and evaluation of events and incidents
    • Manage the Security organization’s Hypervisors’, VMs’, Images’, Deployments’
    • Work with IT department to deploy MFA/SSO
    • Provide Level III support to security analysts and SOC
    • Mentor junior security analysts
    • Collaborate with colleagues across the organization, including IT, networking, Infrastructure and project teams

    Qualifications

    • U.S. Citizenship required
    • Must maintain a current Secret clearance
    • Must be able to obtain/maintain a security clearance
    • Bachelor’s or higher in technology, security, or a related field
    • 8+ years of professional and relevant experience
    • Expertise in IDS/IPS, firewalls and content filtering
    • Expertise in designing secure networks, systems and application architectures
    • Knowledge of implementing and maintaining SIEM solutions, including but not limited to, correlation rule builds, content development, and automated notification set up
    • Incident Response and Forensics experience
    • Experience architecting, deploying, updating and supporting top-tier Breach Detection / Automated Malware Analysis Systems
    • Heavy experience with Vulnerability Assessment and Management
    • Solid networking experience with technologies like routing, NAT, subneting, CIDR, bridging, VLAN and VPLS
    • Linux administration experience, preferably Ubuntu and CentOS, with expert knowledge of the Linux Command Line Interface
    • Knowledge of risk assessment tools, technologies and methods
    • Windows administration and server hardening experience
    • Experience and examples of scripting and/or programming with Python, Perl, PHP, PowerShell, etc.
    • Experience with O365 ATP tools.
    • Experience in SSO and MFA suites
    • Integration and automation activities utilizing various solution APIs (SOAP, REST, RPC, etc)
    • The ability to thrive in fast-paced, high-stress situations
    • The ability to effectively communicate information security issues to peers and management
    • The IT security engineer must also have experience with and knowledge of:
      • Endpoint security solutions, including file integrity monitoring and data loss prevention
      • AWS and cloud security
      • Automating security testing tools
      • Chef, Git, Ansible and Docker

    Preferred Qualifications:

    • Active Security Clearance is highly desired
    • Splunk Enterprise Security experience a big plus
    • Nessus Security Center experience a big plus
    • Palo Alto technologies is a big plus
    • Penetration Testing experience is a bonus
    • Knowledge of Ansible and Docker a plus
    • NIST and CIS compliance experience is a plus

     

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed