Overview
On Site
Full Time
Skills
Information Systems
Firewall
Intrusion Detection
Endpoint Protection
Encryption
Collaboration
Network
Software Development
Documentation
Splunk
NIST SP 800 Series
RMF
Risk Management Framework
ICD
FISMA
FedRAMP
DevSecOps
Network Protocols
Operating Systems
Incident Management
Forensics
Fortify
Cloud Computing
Effective Communication
Computer Science
Information Security
Cyber Security
Continuous Monitoring
Auditing
Regulatory Compliance
Security Controls
CISSP
DoD
Job Details
Job Description
Base-2 Solutions is seeking an Information Systems Security Engineer who designs, implements, and manages security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure. Will also conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications. Develop and implement incident response plans to effectively address security breaches, incidents, and breaches. Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures. Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents. Analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks. Work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity. Maintain thorough and accurate documentation of security processes, procedures, and configurations. Prepare detailed reports on security findings, incidents, and actions taken.
Required Skills
Qualifications
Base-2 Solutions is seeking an Information Systems Security Engineer who designs, implements, and manages security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure. Will also conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications. Develop and implement incident response plans to effectively address security breaches, incidents, and breaches. Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures. Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents. Analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks. Work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity. Maintain thorough and accurate documentation of security processes, procedures, and configurations. Prepare detailed reports on security findings, incidents, and actions taken.
Required Skills
- Strong skills in specifying and implementing log collection into tools such as Splunk, and performing querying and analysis of aggregated logs to identify security-relevant anomalies or risks.
- Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP).
- Experience with implementing controls for cloud, container, and DevSecOps services and solutions within IL5 to IL6 environments.
- Strong understanding of network protocols, operating systems, and infrastructure components.
- Proficiency in incident response, security incident handling, and forensic analysis techniques.
- Experience with security tools such as Fortify, Acunetix, and Prisma Cloud.
- Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
Qualifications
- Bachelor's degree in Computer Science, Information Security, or a related field.
- 7 years of experience as a cybersecurity engineer with a specialization in designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.
- CISSP or equivalent certification to support DoD 8140 requirements.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.