Cybersecurity Engineer

Scope of the project: This position will serve as a Security Engineer within the Division of Information Security and will assist full-time security architects and engineering staff with the implementation, integration and operationalization of enterprise security technologies and programs.

The contractor will provide hands-on technical support across multiple security disciplines, including but not limited to SIEM, XDR, Vulnerability Management, Data Loss Prevention (DLP), Security Awareness, endpoint and Linux sensor deployment, and security automation initiatives. The role requires experience in information security architecture and solution design to support the strategic planning, design, implementation and continuous improvement of secure systems and services.

Position Title: Security architect - consultant

Pre-employment Checks (drug, credit, criminal, motor vehicle)?
DRUG, DRIVING, CREDIT, CRIMINAL, E-VERIFY, SLED & CJIS

Daily Duties / Responsibilities:
PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN WORK ONSITE OVER HYBRID AND OVER FULL-TIME REMOTE (ON-SITE AS NEEDED).

• Assist in the planning, design, deployment and operational support of enterprise security platforms, including:

Security Information and Event Management (SIEM)
Extended Detection and Response (XDR)
Vulnerability Management platforms and processes
Data Loss Prevention (DLP) solutions
Security Awareness and training platforms

• Support the development and maturation of the enterprise Vulnerability Management Program, including scanning, reporting, remediation tracking and metrics.
• Build, deploy, configure, and maintain Linux-based security sensors and related endpoint monitoring tools.
• Assist in the integration and automation of disparate security and enterprise IT tools using scripting and orchestration technologies.
• Collaborate with security architects to design and implement enterprise security solutions that align with LEADERSHIP''s business goals, regulatory requirements and organizational risk tolerance.
• Design, deploy and manage countermeasures to address known security threats and contribute to mitigation strategies for emerging threats to enterprise data, systems and services.
• Ensure consistent application of security controls across enterprise infrastructure and applications; validate control effectiveness and recommend improvements.
• Support incident detection and response activities through monitoring, log analysis and reporting.
• Develop technical documentation, implementation guides and standard operating procedures as needed.
• Perform other duties as assigned in support of the Depart of Administration''s Division of Information Security.

ADDITIONAL DUTIES & SKILLS:

• Strong understanding of enterprise security architecture and engineering principles.
• Knowledge of cybersecurity best practices, threat detection, and defensive security strategies.
• Experience with Linux and Windows operating systems, including system hardening and security configuration.
• Understanding of networking concepts, security protocols, and secure system design.

Preferred Skills (rank in order of Importance):

• Hands-on SIEM administration, analysis, and reporting experience.
• Experience building and deploying Linux-based security sensors.
• Familiarity with security frameworks and compliance standards such as NIST CSF, CJIS, IRS 1075, and CMS MARS-E.
• Resources local to columbia, sc or a surrounding city in south carolina

Required Education/Certifications:
• BACHELOR''S DEGREE IN AN
INFORMATION TECHNOLOGY OR
INFORMATION SECURITY RELATED
FIELD
• EIGHT YEARS OF RELEVANT WORK
EXPERIENCE MAY BE SUBSTITUTED IN LIEU OF EDUCATION
• FIVE YEARS OF EXPERIENCE IN SUPPORTING LARGE IT ENVIRONMENTS AND/OR SYSTEM DEPLOYMENTS
• 5+ years of EXPERIENCE IMPLEMENTING AND SUPPORTING ENTERPRISE SECURITY TOOLS (SIEM, CRIBL, XDR, VULNERABILITY MANAGEMENT, DLP, ENDPOINT SECURITY).
• 5+ years of EXPERIENCE DEVELOPING AUTOMATION AND INTEGRATIONS USING SCRIPTING LANGUAGES SUCH AS PYTHON AND BASH.

Preferred Education/Certifications:
• CISSP
• Security+