Senior Technical Security Engineer

Top -Secret Clearance Required 

HSEN Senior Technical Security Engineer

Position Summary

Softek International is seeking a Senior Technical Security Engineerto support the DHSEnterprise Engineering Division within the Office of the Chief Information Officer (OCIO)is responsible for the architecture, design,engineering, Tier 3 operations support, maintenance, and management of the network and security infrastructure.  This program portfolio includes management and oversight of the technical infrastructure and security tools, sensors, servers, and data storage devices to support the DHS Network Operations Security Center (NOSC) Cyber (SOC) and other DHS stakeholders and Components.This roleneeds to provide strategic and tactical direction to a high functioning team of network and security engineers, data center specialists, and DHS stakeholder groups.

The candidate’s core responsibilities will be to:

• Maintaining and improving network and security capabilities to include modernization and emerging technologies
• Ensuring the security tools and infrastructure are available and operational from the perimeter down to the endpoints and data itself
• Providing support to maintaining and maturing security tool architecture for security operations monitoring

This role can be remote based in the Washington, DC area (VA, MD, and DC) or Stennis, MS areas.

Duties / Responsibilities

• Provide security engineering and SME support for NOSC hardware, software, and networking technologies currently present or to be added to the infrastructure.
• Conduct market research, product evaluation, prototyping, integration, development, deployment, recapitalization, operations, and maintenance support for a variety of NOSC software and networking technologies.
• Coordinate and track all security engineering and architecture projects and priorities, providing input for plans of action and milestones.
• Consultancy and support in the design and implementation of complex network solutions.
• Align resources, to include personnel, effectively to meet project deadlines and Communicate project risks, issues, and blockers and program status updates for all efforts to corporate and federal leadership.
• Identify staffing needs to support requirements; source and develop engineering staff
• Develop and maintain installation, configuration, and security procedures.
• Research and recommend innovative, and where possible automated approaches for system administration tasks. Identify approaches that leverage our resources and provide economies of scale.
• Responsible for daily system monitoring, verifying the integrity and availability of all hardware, server resources, logs, systems and key processes.
• Ensure the team is maintaining compliance with applicable policies, standards, and procedures in support of Cybersecurity Provider (CSP) requirements and Authority to Operate (ATO)
• Conduct market research, product evaluation, prototyping, integration, development, deployment, recapitalization, operations, and maintenance support for a variety of security software and computing and networking technologies
• Work with other network architects / engineers and DHS stakeholders in the design, installation, and configuration of the network to achieve the established business and security requirements.
• Perform “as is” analyzes of existing security technologies and make recommendations and produce roadmaps of changes as needed to optimize performance and improve network performance.
• To be able to take a lead role in the design process working closely with program team.
• Establish working relationships with vendors to ensure alignment of current and future set government requirement and emerging capabilities.

Minimum Qualifications / Requirements

• 10 years overall professional experience, and at least 5 years of security/network engineering and architecture experience (NOC, SOC), in designing, configuring, monitoring, and troubleshooting within a large enterprise security environment.
• Strong technical background to include extensive experience deploying, managing, and maintaining a wide range of security tools.
• Demonstrated experience managing and mentoring other engineers and staff, bringing out-of-the-box thinking, analytical reasoning, and creative problem-solving skills paired realistic and pragmatic execution.
• Must have practical knowledge of network and security tools and how it is administered and integrated into a SOC/NOC environment.
• Experience implementing, managing, and maintaining a Zero Trust architecture supported by Cloud Access Security Broker (CASB) and Cloud Secure Gateway (CSG) technologies.
• Coordinate with related technology acquisition programs and communities of interest to leverage ongoing investments in tools such as Splunk, Swimlane, Crowdstrike, Grafana, Axonius, Tenable, GitLab, etc.
• Must be resourceful in multitasking tasks and projects and communicating in a dynamic network.
• Prior consulting, contracting experience is ideal; DHS experience a plus.
• S. citizenship required with active Top-Secret clearance with ability to receive SCI.

Education

BA / BS in a Science, Technology, Engineering, Cybersecurity Management field

Management Certifications of Interest(Desired, but not required)

• CISSP (Certified Information Security Systems Professional)
• PMI Project Management Professional (PMP)
• Certified Associate in Project Management (CAPM)
• CompTIA Security+
• ITIL Foundations
• Experience with Agile-based project management (primary Kanban) – Certified Scrum Master (CSM) or Professional Scrum Master (PSM)

Technical Certifications of Interest (Not Required)

• RHCE (Red Hat Certified Engineer)
• Red Hat Certified Architect (RHCA)
• RHCSA (Red Hat Certified System Administrator)
• RHCE (Red Hat Certified Engineer)
• MCSA (Microsoft Certified Solutions Associate)
• MCSE (Microsoft Certified System Expert)
• PMI Project Management Professional (PMP)

Software/Hardware Experience Desired

Splunk Enterprise, Crowdstrike, Ansible, Red Hat, Linux, Tenable, AWS and Azure Cloud