Zero Trust Cybersecurity Engineer


On Site
USD 70.00 - 77.00 per hour
Full Time


Amazon Web Services
Identity management
Endpoint protection
Systems analysis/design
Data modeling
Programming languages
Gap analysis
Security architecture
IT security
Google Cloud Platform
Cyber security
Security clearance
Regulatory Compliance
EMC RSA Archer
Software deployment
Cloud computing
Microsoft Azure
National Institute of Standards and Technology

Job Details

Location: Washington, DC
Salary: $70.00 USD Hourly - $77.00 USD Hourly
Title : Zero Trust Cybersecurity Engineer

Location: Washington, DC 20001

Contract | 3+ Months

Job Description

Qualified candidates should have experience with Zero Trust, have familiarization with Insider Threat detection, Privileged User Management, as well as technical hands-on expertise; Must possess an active Top-Secret clearance with the ability to obtain SCI. This role offers excellent compensation, career growth potential, and a total rewards package that includes PTO, paid holidays and corporate events, continuing education reimbursements, 401K, an Employee Stock Purchase Plan (ESPP) through Tetra Tech, and more!


Develop Zero Trust implementation roadmaps.
  • Design and implement technical Zero Trust security solutions.
  • Work to infuse Zero Trust design principles across all pillars in a Zero Trust model (e.g. Users, Devices, Networks, Applications, Data, etc.).
  • Coordinate with appropriate organizational stakeholders to ensure Zero Trust is implemented broadly, end-to-end across customer environments.
  • Support the design and implementation of the client provided Privileged Access Management (PAM) system (currently CyberArk). Troubleshoot where necessary and install and develop new plug-ins and connectors for PAM solutions. Document technical processes and procedures and provide revisions of support documents as necessary.
  • Support the design and implementation of client selected endpoint security tools (currently Tanium), to include research, analysis, design, implementation, and documentation of new configurations to improve ZT maturity and reduce cyber risk. Troubleshoot where necessary.
  • Develop, design, and maintain dashboards and analytics with client provided tools (currently Tableau) and integrate with existing governance, risk, and compliance (GRC) tools (currently Archer) to collect, refine, and prepare data for analytics and visualization. Manage and utilize the platform to extract meaningful insights. Prepare reports using various visualization and data modeling methods.
  • Provide engineering and administration of the client provided Splunk environment consisting of search heads, indexers, deployers, deployment servers, heavy/universal forwarders, and Splunk Enterprise Security premium app, spanning security, performance, and operational roles. Identify and onboard new data sources into Splunk, analyse the data for anomalies and trends, and build dashboards highlighting the key trends in the data. Edit and maintain Splunk configuration files and apps.
  • Develop and implement security policies (aka "rules") in tools (e.g., Kion) and programming languages (e.g., Python) for cloud-based resources (e.g., Azure and Amazon Web Services (AWS)) to support configuration monitoring and ongoing understanding of risk. Develop integrations necessary to produce dashboards and cyber "heat maps".

Required Qualifications
  • Perform Zero Trust security readiness assessments (e.g. gap analyses, maturity assessments)
  • Minimum of 8 years of experience in enterprise-wide architecture, engineering, implementation, and integrations.
  • Minimum 8+ years of experience with enterprise security architecture and designing, building and implementing enterprise IT security systems.
  • Hands on knowledge of Zero Trust technologies covering IAM, Network Segmentation, and Encryption.
  • Experience working with cloud-based network infrastructures such as AWS or Azure or Google Cloud. Scripting experience in Python is desired.
  • Hands on experience with Insider Threat Management, Privileged User Management and metrics generation.
  • Practical experience with CyberArk, Tanium and Splunk. Linux experience is desired but not required.
  • 5 years' experience in engineering enterprise IT solutions using NIST SP (e.g.: SP800-60, SP800-64, SP800-80, SP800-122, SP800-137, SP800-146, SP800-160, SP800-204, SP800-207, SP800-213, etc.)


This job and many more are available through The Judge Group. Please apply with us today!

About Judge Group, Inc.