DSS, Inc. is a leading health information software development and systems integration company, offering services and solutions utilized daily by thousands of clinicians and administrative staff across both public and private sectors nationwide.
Overview A Senior Cybersecurity Engineer serves as a key member of the cybersecurity team, supporting both operational security and risk and compliance initiatives. This role involves safeguarding systems, identifying and mitigating threats, and ensuring adherence to security standards and regulations. In addition to hands-on responsibilities, the Senior Cybersecurity Engineer mentors junior team members and plays a leadership role in driving cybersecurity projects to successful completion.
The Cybersecurity Engineer, Senior will: - Deploys advanced knowledge of Cyber tools and the ability to teach, mentor, and lead teams and individuals on the use of those tools, best practices, and remediations resulting from that use.
- Uses pen testing, process and scan scripting, and advanced troubleshooting of cyber related tools and functions
- Uses industry standard tools for functions like SIEM, IAM, firewalls, IDS/IPS, etc.
- Provides subject matter expertise on the architecture, information security solutions and countermeasures, policies and procedures related to enterprise information security.
- Deploys and leverages security tools and technology to monitor infrastructure and operations
- Manages incidents related to the cybersecurity tools and operations
- Conducts systems analysis and evaluations
- Collaborates with internal teams to update and maintain the System Security Plans and Security Assessment Reports and ensure that the changes are reviewed and approved where required.
- Partners with engineers to interpret and map compliance requirements to control implementation and across our products.
- Works with internal teams to manage FedRAMP authorized environments while educating them about the FedRAMP controls that impact their work.
- Supports internal and third-party audits for compliance with FedRAMP, SOC2, HIPAA, and other applicable frameworks
Conditions of Employment: (Authorized to work in the US without current or future be able to pass a Federal background check
- Must be determined suitable for federal employment.
Security and Privacy Responsibilities: Individuals working for DSS or any Subsidiary will be subject to security and privacy requirements as explained in HIPAA, FedRAMP, and NIST 800-53. Additionally, they are required to undergo specific FedRAMP training to ensure compliance with all associated controls and responsibilities in the day-to-day performance of their duties. Individuals working in departments that are considered to be in the high-risk category will be required to undergo advanced training based on their role and level of access. Individuals with access to modify data and the configuration baseline will require further training.
The preceding functions are examples of the work performed by employees assigned to this job classification. Management reserves the right to add, modify, change or rescind work assignments and make a reasonable accommodation as needed.
Required Skills: - 8+ years' experience as a cybersecurity engineer and familiarity with cybersecurity principles, concepts, and technologies
- Experience with pen testing, process and scan scripting, and advanced troubleshooting of cyber related tools and functions
- Experience with industry standard tools for functions like SIEM, IAM, firewalls, IDS/IPS, etc.
- Solid understanding of cybersecurity principles and best practices for a multi-cloud enterprise environment.
- Experience with cybersecurity assessments and frameworks
- Experience with vulnerability management
- Ability to identify security gaps and vulnerabilities and create remediation plans .
- Ability to manage time and priorities effectively to achieve optimal results.
- Strong critical thinking, problem solving and root cause analysis skills
- Ability to create effective procedure documents and workflow diagrams
- Excellent verbal and written communication
- Experience with Cybersecurity tools like Splunk, ePO, Carbon Black
Preferred Skills: - Scripting and automation experience (e.g. PowerShell)
- Experience implementing cloud security and compliance standards, frameworks, and controls (e.g., SOC 2, FedRAMP, NIST SP 800-53r4, HIPAA) for cloud service delivery models (IaaS, PaaS, SaaS)
- Windows and Linux exploitation tools and techniques
- Experience with both AWS and Azure clouds
- Incident response (IR) and digital forensic experience
- Healthcare IT background
- Experience conducting or participating in security audits
Education: - Bachelor's Degree or equivalent experience (2 years per year of degree).
Certification(s), Licenses: Preferred: - Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) or other advanced Cybersecurity certifications
Years of experience in a similar role: - Required: 8 + years of experience as a cybersecurity engineer and familiarity with cybersecurity principles, concepts, and technologies
- Preferred: 10 + years experience as a cybersecurity engineer and familiarity with cybersecurity principles, concepts, and technologies
Compensation: Salary at DSS Inc is determined by various factors, including but not limited to location, the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $90,000 to $140,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of DSS, Inc. total compensation package for employees.
PHYSICAL DEMANDS (per observation of incumbents in this position
): Standing 5% per day Sitting 90% per day Walking 5% per day Stooping 5% per day Lifting - If traveling, ability to lift up to 50 lbs. unassisted (luggage, laptop etc.)
- Up to 10 lbs. unassisted, several times a day (laptop, office equipment, office supplies, etc.)
Computer Work 90% per day Telephone Work % per day Reading 10% per day Other, please specify - Travel unassisted up to _10__% per year, via common carrier and/or personal automobile.
DSS Inc. is an Equal Opportunity Employer. If you need an accommodation seeking employment with DSS, Inc., please email or call . Accommodations are made on a case-by-case basis.
Never miss an opportunity! Create an alert based on the job you applied for.