Computer Security Engineer -02122

Job Description:

Syneren is currently seeking a Computer Security Engineer.

Job Location: Alexandria (onsite)

Company Overview

Syneren Technologies Corporation has expertise in operating, maintaining, and modernizing applications and IT systems for the Federal Government. We provide scientific and engineering expertise for critical agency missions. Our goal is to be at the forefront of change so that we can bring the best ideas to fruition for our clients' missions.

Mission & Vision

To be the leading provider of enduring systems engineering and software solutions, delivering measurable results, exceeding customer expectations, and fostering a workplace that promotes continuous growth and empowers employees to thrive, while enabling the missions of our customers and partners with high-quality products and services that lead to 100% satisfaction.

Summary of the position

The Computer Security Engineer is responsible for designing, implementing, and maintaining robust cybersecurity measures to protect the organization's digital assets, infrastructure, and sensitive data. This role involves assessing security risks, developing mitigation strategies, and ensuring compliance with industry standards and regulatory requirements. The engineer works closely with IT, DevOps, and business units to integrate security into system architecture, respond to incidents, and continuously improve the organization's security posture. A successful candidate will possess deep technical expertise, a proactive mindset, and a commitment to safeguarding information systems against evolving threats.

Essential Job Duties:

• Manage and maintain the Cybersecurity infrastructure (ACAS, Trellix, Sentinel, Defender for Cloud, ForeScout), including policy configuration, deployment, and monitoring.
• Administer and configure ACAS (Nessus) to perform vulnerability scanning, compliance assessments, and reporting across the enterprise.
• Monitor, analyze, and respond to cybersecurity threats and incidents using HBSS, ACAS, SIEM and WAF tools.
• Develop Cyber Operations SOPs for security tools appliances and capabilities in use within the IT Enterprise to levels and standards required by DoD.
• Develop and implement policies and procedures to enhance the security posture of systems and networks.
• Generate and deliver compliance and vulnerability reports to stakeholders, providing recommendations for remediation.
• Collaborate with IT, network, and development teams to address identified vulnerabilities and implement security improvements.
• Stay up to date with emerging cybersecurity threats and trends, ensuring that HBSS and ACAS environments are optimized and secure.
• Support security audits and assessments, ensuring systems are compliant with organizational and regulatory standards (e.g., DoD STIGs, RMF).

Non Essential Job Duties:

• Participate in cybersecurity awareness campaigns and employee training sessions.
• Contribute to internal documentation libraries, including best practices and technical guides.
• Assist in evaluating and testing new security tools or technologies for potential adoption.
• Support compliance audits and provide documentation to regulatory bodies when requested.
• Attend industry conferences, webinars, or professional development events to stay informed on emerging threats and trends.
• Collaborate with academic or research institutions on cybersecurity initiatives or pilot programs.
• Provide mentorship or guidance to junior IT staff or interns on security-related topics.
• Assist in drafting security policies and procedures in collaboration with legal or HR departments.

Minimum Qualifications:

• Must have 5 or more years of experience managing and administering HBSS (Trellix/ePolicy Orchestrator), including policy management and monitoring.
• 5 or more years of hands-on experience with ACAS (Nessus) for vulnerability scanning and compliance reporting.
• 3 years of Azure cloud experience.
• At least 2 years of experience with other security tools and technologies, such as SIEM platforms Azure Sentinel, Defender for Cloud and/or F5 Big-IP AMS.

• Experience with Windows, and Linux operating systems

• Strong understanding of cybersecurity frameworks and compliance requirements, such as DoD RMF, STIGs, and FISMA.
• Experience troubleshooting and resolving security-related issues in enterprise environments.
• Proficiency in creating and delivering reports that translate technical findings into actionable recommendations.
• Experience with Security Content Automation Protocol (SCAP) Compliance Checker (SCC), Public Key Infrastructure (PKI), anti virus software, and securing IaaS/PaaS/SaaS Cloud environment.
• Must have 5 or more years with RMF including roles such as the security control assessor.
• Must have 2 or more years with Cross Domain Solutions (CDS) in the last five years.

Required Qualifications:

• Experience working in DoD environments or with organizations requiring high-security standards.
• Top Secret Clearance
• IAT Level II -CompTIA Security+ or SSCP (Systems Security Certified Practitioner) Other security-related certs that are accepted (in addition to the above two certs) as well for the DoD IAT Level 2 include the following as well: CCNA Security; CySA+; GICSP; GSEC).
• Az -900 certificate.

Preferred Qualifications:

• SC-900 or AZ- 500

Working Conditions

• Standard office environment.
• May require extended hours during project deadlines or system implementations.

Physical Requirements:

• Prolonged periods in stationary position at a desk and working on a computer.
• Must be able to lift up to 15 pounds at times.
• The person in this position needs to occasionally move throughout the office, including across longer distances such as from the building entrance to the workspace.

Disclaimer

This job description is intended to describe the general nature and level of work performed. It is not an exhaustive list of all responsibilities, duties, and skills required.

ADA Compliance: Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

EEO-1 Statement: We are an Equal Opportunity Employer and do not discriminate based on race, color, religion, sex, national origin, age, disability, or genetic information.

E-Verify Participation: This employer participates in E-Verify to confirm the eligibility of all newly hired employees to work in the United States .

Equal Opportunity Employer, including disabled and veterans.