Cyber Security Engineer

Mandatory Qualifications:
1. Three (3) years demonstrated experience assessing the security of complex integrated applications with the following characteristics:
Internet accessible databases containing personal (confidential) information
Availability, backup, recovery, and data integrity issues of 24/7 systems
Very large database and high-volume online system, that includes over 1 million records and 100K transactions a year multiple-tier application systems
2-factor or other physical security controls
2. Three (3) years demonstrated testing experience for each of the following:
Security and penetration/vulnerability testing
Cloud and virtualization security
OS hardening (Windows, Linux)
HTTP
TCP/IP
Encryption
Routing protocols
Layer 2 and Layer 3 security
Database security and SQL vulnerabilities
DNS architecture and security implications
IT security best practices
Microsoft.Net Framework
Application and database servers
Azure Government hosting
Azure Services
Wide Area Network infrastructure
IIS
Microsoft SQL Server
Web Services security
Microsoft Windows Services
Microsoft Active Directory
Public Websites
Simple Object Access Protocol (SOAP)

Desirable Qualifications:
1. Three (3) years demonstrated experience in providing security planning and implementation services, with at least one large scale government system integration project.
2. Possession of a valid Certified Information Systems Security Professional (CISSP) Certification
3. Experience with industry standard compliance frameworks (SOX, NIST, etc.)