Overview
On Site
$DOE
Full Time
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - 12 month(s)
Skills
Network Security
Cybersecurity
security architectures
access management
Job Details
We are looking ITSE (Min 10+ years of exp) HYBRID (Webcam interviews)
POSITION DESCRIPTION
DIRECT CLIENT Position
Number of positions: 1
Length: 9-21Months +
Location: Washington DC 20024
Immediate interviews Webcam interviews ONLY
IT Security Engineer
Hybrid position - will require on-site reporting to office
Hybrid position - will require on-site reporting to office
Only submit local candidates to DMV region*
The Contractor shall perform the following duties and responsibilities: Support the IT Service Catalog and automation by being second tier support Strategy and Planning
Perform security assessments, identify gaps in existing security architecture, and recommend changes or improvements.
Design security architecture elements to mitigate threats.
Create solutions that align enterprise security architecture frameworks and standards (e.g. SABSA, NIST 800-53, ISO 27002) with overall business and security strategy.
Participate in risk assessments for new technologies and projects.
Employ secure configuration management processes.
Assist in developing a disaster recovery and business continuity plan. Identify and prioritize system functions required to promote continuity and availability of critical business processes such that in the circumstance of system failure critical business functions are restored or recovered promptly.
Document security requirements and controls for protecting information, systems, and technology assets.
Define and document how the implementation of a new technology impacts the security posture of the current environment.
Document and update as necessary all definition and architecture activities.
Provide input on security requirements to be included in request for proposals (RFPs), statements of work (SOWs), and other procurement documents.
Communicate current and emerging security threats to project team members.
Education:
Bachelor's or Master's degree in information technology or computer Science
The equivalent combination of education and successful work experience (15 years)
Minimum of 10+ years of experience in Security Architecture & Engineering
CISSP, CISA, CISM, or other relevant security related designation(s) appreciated, is a must & required.
Certifications in CISSP-ISSAP, TOGAF, or SABSA considered an asset.
Qualifications:
- Experience in identifying gaps in existing architectures.
- Experience in designing security architectures to mitigate threats.
- Knowledge of computer networking concepts and protocols (e.g. TCP/IP, DNS) and network security ethodologies.
- Knowledge of network access, identity, and access management (e.g. public key infrastructure, Oauth, OpenID, SAML, SPML).
- Knowledge of capabilities and applications of network equipment including routers, switches, servers, transmission media, and related hardware.
- Knowledge of remote access technology concepts.
- Knowledge of application firewall concepts and functions (e.g. single point of authentication enforcement, data anonymization, DLP scanning, SSL security).
- Work experience in cybersecurity designs for systems, networks, and multi-level security requirements or requirements for processing multiple classification levels of data.
- Knowledge of risk management processes and experience in conducting risk assessments.
- Familiarity with the application of privacy principles to organizational requirements.
- Knowledge of identity and access management methods.
- Experience with Windows, Unix, and Linux operating systems.
- Knowledge of business continuity and disaster recovery operation plans.
- Strong analytical and problem-solving skills capable of managing projects that drive business objectives.
- Exceptional written, oral, and interpersonal communication skills.
- Ability to work in team environments and to negotiate with multiple stakeholders.
- Ability to meet tight deadlines and to prioritize tasks.
- Innovative thinker who is self-directed and resourceful
Required/Desired Skills
Candidates must have ALL the "Required" skills in order to be considered for the position. "Desired" or "Highly Desired" skills are a PLUS but may NOT be required.
Skill Matrix
| Experience with Business workflow processes | Required / Desired | Amount | of Experience |
| Experience in identifying gaps in existing architectures. | Required | | |
| Experience in designing security architectures to mitigate threats. | Required | | |
| Knowledge of computer networking concepts and protocols (e.g. TCP/IP, DNS) and network security methodologies. | Required | | |
| Knowledge of network access, identity, and access management (e.g. public key infrastructure, Oauth, OpenID, SAML, SPML). | Required | | |
| Knowledge of capabilities and applications of network equipment including routers, switches, servers, transmission media, and related hardware. | Required | | |
| Knowledge of remote access technology concepts. | Required | | |
| Knowledge of application firewall concepts/functions (e.g. single point of authentication enforcement, data anonymization, DLP scanning, SSL security. | Required | | |
| Cybersecurity designs for systems, networks, and multi-level security requirements or requirements for processing classification levels of data | Required | | |
| Knowledge of risk management processes and experience in conducting risk assessments. | Required | | |
| Familiarity with the application of privacy principles to organizational requirements. | Required | | |
| Knowledge of identity and access management methods. | Required | | |
| Experience with Windows, Unix, and Linux operating systems. | Required | | |
| Knowledge of business continuity and disaster recovery operation plans. | Required | | |
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.