Overview
Remote
Depends on Experience
Contract - Independent
Contract - W2
No Travel Required
Skills
AWS
CIS
Job Details
**********************Senior Cyber Security Engineer***************
12 Months+ Contract
Remote
Job Description:
| Key Tasks and Responsibilities |
| Extensive experience configuring, managing, and troubleshooting the Qualys VM, PC, Web Application Scanner, and Container Security modules. |
| In-depth knowledge of Qualys dashboarding, reporting and data analysis functionalities. |
| Experience with Qualys APIs for automation and integration purposes. |
| Develop and implement security automation workflows using Qualys APIs and scripting languages (e.g., Python). |
| Streamline security operations by automating repetitive tasks and integrating Qualys with other security tools. |
| Proactively identify and address potential security risks within the Qualys platform. |
| Continuously improve security posture by recommending and implementing best practices for Qualys usage. |
| Working knowledge of Amazon Web Services (AWS) EC2 and Workspaces, VMWare virtual infrastructure, and network/security appliances. |
| Coordinate with the Network Engineering team in the deployment of Forescout CounterACT. |
| Education & Experience |
| Bachelor's degree in computer science, cybersecurity, information technology, software engineering, information systems, or computer engineering, or a related field |
| Deep hands-on experience with Qualys Vulnerability Management platform performing data collection via sensors, scanning, report generation, and data analysis |
| Very strong experience with Qualys Policy Compliance and setting up secure baseline configurations utilizing an industry framework (ex: DISA STIG, CIS benchmark, etc.) to assess security posture across an environment |
| Experience with ServiceNow SecOps and Vulnerability Management a plus |
| Strong experience fine-tuning controls to meet standards utilizing custom controls and regex Strong understanding of security frameworks and standards (e.g., NIST, CIS) |
| Overall experience with vulnerability remediation processes, including risk prioritization, change management, analysis, and triage |
| Understanding of networking technologies and concepts (routing, switching, network segmentation, etc.) Programming and scripting languages, preferably Python and PowerShell. |
| Strong written and verbal communication skills; must be able to effectively communicate with all levels of staff up to executive-level management, customers (internal and external), and vendors. |
| Ability to work effectively under pressure; previous experience as an emergency medical responder, firefighter, or related high-pressure environment preferred but not required |
| Familiar with and have worked within security frameworks such as: NIST SP 800-61, Attack lifecycle, SANS Security Controls, MITRE ATT&CK, Kill chain, OWASP Top 10 |
| Certifications |
| N/A |
| Security Clearance |
| Public Trust |
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.