Jobs at Sharp Solutions, Inc.

View all jobs

Security Engineer -Junior Analyst (Cyber tools)

Leesburg, VA
SSi has principals that are an integral part of the organizations characteristic and are fundamentally essential to the shaping of everyday activities that connect to our broader mission and vision. As an organization SSi is committed to:
Foster a culture of innovative and out of the box thinking: 
We fundamentally understand that each employee has something unique to offer to the organization.  We foster a culture that nourishes innovation by empowering staff, leverages their passions, and encompasses a circle of trust where it’s all about thinking of new ideas and getting good feedback.
Invest in our Resources
Employees are essential, their physical and mental well-being are pivotal to the growth of our organization.  Our company culture, productivity, and overall employee happiness stem directly from how much training, responsibility, and empowerment they have within our organization. Our focus is on improving the growth of individual through education, allowing them to play central roles, so they can grow and add value to the company.
Provide solutions that are in the best interest of the customer and improve their strategic posture
We are in business to serve our customers and do what is in their best interest. Our philosophy is to offer services that are complete.  We strive to provide services that do more than meets the eye, to achieve more than superficial results and to help the business improve in areas that they may not have considered.
Give thoughtful considerations to our actions and their affects
We give thoughtful consideration to each other’s differences and opinions. We must give our individual best to get the job done right. Everyone is accountable for their behaviors, exercising rational judgment, and giving thoughtful consideration to their professional activities and decisions.

Currently we have an immediate need to add an experienced professional to our staff:

Security Engineer
Location: Leesburg, Va - Remote till further notice
Shift: Regular Days (non-shift work)

Primary Responsibilities:
The Security Engineer will need to be a self-starter with excellent analytical and problem-solving skills, flexibility, good judgment and the ability to coordinate multiple, concurrent tasks in an effective manner.  The Security Engineer works with internal, Agile based multi-disciplinary team to ensure the systems are functional, secure, and scalable. The Senior Security Engineer will engineer design and develop cyber security technology along with integration of new architectural features into existing infrastructures while maintaining the integrity and security of enterprise-wide cyber systems and networks. The systems and networks developed will be used to collect and process data and improve the DHS SOC security infrastructure.
•    Conceptualize, Design, Build, and Maintain current and future NOSC supported tools and platforms
•    Manage multiple assignments, changing priorities, and work independently with little oversight
•    Provide guidance and develop processes to evaluate and improve support for: all operating systems, hardware, software, and firmware solutions
•    Serve as a trusted advisor to leadership and decision makers for core technology acquisitions in support of the agency mission
•    Work closely with senior engineers, other team members and application owners to solve technical problems at the network, system, and application levels
•    Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required
•    Conduct network security architecture reviews to determine the size, and placement of intrusion monitoring equipment during the customer onboarding process
•    Documentation and Reporting along with presentation, teamwork and DHS wide collaboration are among the expected duties and mission of the task order
•    Implementation and troubleshooting of Linux network services such as NFS, NTP, FTP, SSH, DNS and STIG them using DISA guidelines
•    Hardware and software installations, upgrades, maintenance, security analysis
•    Provide training and documentation for the rest of the team to follow and understand
•    Review and approve documentation and diagrams created by IT team members (e.g., system specifications). Develop documentation, including technical standards and processes
•    Communicate with project manager on a frequent basis. Identify tasks and issues that may have an impact on service levels or schedules. Provide realistic task and cost estimates
•    Maintain a current and working knowledge of IT development methodology, architecture design, and technical standards
•    Communicate with other technical leads, IT groups, and clients so they understand the project’s requests on own/shared technologies and effectively persuade and influence others on ideas

Basic Qualifications:

•    A minimum of 6 years of experience in system administration, database administration, network engineering, software engineering, or software development, with a concentration in Cybersecurity
•    Experience installing, configuring, securing, and troubleshooting CentOS, RHEL, or Ubuntu Linux
•    A minimum of 7 years of experience with PowerShell and Shell Scripting for automating operating system, database, and application jobs, scheduled tasks, and routines
•    Experience mentoring junior personnel
•    A minimum of 3 years’ experience automating management tasks with orchestration tools such as Ansible, Jenkins, Puppet, or Chef
•    A minimum of 7 years hands-on experience working with DELL PowerEdge and other Enterprise servers
•    A minimum of 5 years hands-on experience working with Redhat Satellite and VMWare ESXi/vCenter
•    A minimum of 7 years’ experience working with the following network protocols: TCP/IP, NIS, NFS, DNS, DHCP, FTP/TFTP, SSH, SFTP, ARP
•    A minimum of 5 years performing security engineering tasks across physical and hybrid environments. I.e., between on-prem and hybrid (on-prem and on the cloud/virtual environments)    
•    A minimum of 5 years’ experience working with virtualization technologies such as VMWare, Citrix Xen
•    A minimum of 5 years working with cloud services with a focus on designing, configuring, and managing AWS security services such as: IAM, VPC, EC2, S3, ELB, CloudFront, CloudTrail, CloudWatch, Inspector, WAF, Shield, KMS
•    A minimum of 3 years following DevSecOps best practices leveraging any of the following technologies: AWS CloudFormation, AWS Lambda, AWS S3, Terraform, Ansible
•    A minimum of 5 years scripting experience using any of the following programming languages: Python, JavaScript, Perl, JSON, Angular, React, YAML, Bash, PowerShell
•    A minimum of 3 years automating CI/CD processes using Infrastructure-as-Code focused on security functions such as: user and role management, firewall management, code scanning, data management, system recovery, and monitoring
•    Collaborate cross-functionally to develop security tests and runbooks as part of the system development life cycle
•    Research, evaluate, and recommend new security tools, techniques, and technologies and introduce them to the organization stakeholders and decision makers in alignment with IT security strategy.
•    Monitor system status, perform intrusion monitoring and oversee the investigation of information technology security incidents, monitoring and reporting mitigation progress
•    React to and initiate corrective action regarding security violations, attempts to gain unauthorized access, malware and virus infections that may affect the network or other event affecting security
•    Develop and implement security controls and formulate operational risk mitigations
•    Validate and test complex security architecture and design solutions to produce detailed engineering specifications
•    Identify security risks, threat vectors, vulnerabilities of networks, systems, applications, and new technology initiatives
•    Support Authority to Operate (ATO) effort by providing requested security artifacts, and work with the development, data, and infrastructure teams to attain and maintain ATO
•    Work with developers, IT management, and other business stakeholders to gain an understanding of business security requirements for critical systems and sensitive data
•    Communicate security vulnerabilities and ensure that the appropriate corrective action is taken
•    Develop, implement, communicate, and enforce security policies and/or processes for data, software applications, and cloud infrastructure
•    Support internal and external audits of security controls (e.g., segregation of duties and privileged access controls)
•    Review and develop a plan for remediation of A&A audits and assessment findings
•    Possess strong capabilities to assist with automating installation and maintenance/patching tasks by using tools such as Ansible, Chef, Puppet, and Jenkins
•    Strong technical, analytical, and interpersonal skills
•    Superior attention to detail with excellent written and verbal communication skills
•    Self-motivation and ability to work independently
•    Experience working with Mandiant or Cisco Firepower
•    Experience working in an agile development environment
•    Department of Homeland Security NOSC employees are required to obtain an Entry on Duty (EOD) clearance to support this program
•    Candidate must, at a minimum, meet one of these certifications: CISSP, CCNP, CCIE Security, CEH MCSE, CompTIA Security+, GCIH, GPEN, OSCP, OSCE, AWS Certified Solutions Architect-Professional, Azure Solutions Architect Expert, CCSP, CCSK, AWS Certified Security Specialty

Preferred Qualifications

•    Experience with Gigamon, Suricata, CrowdStrike, ServiceNOW, SourceFire, and other EDR Tools
•    Experience working in AWS and Azure
•    Experience developing in Bash, Python, YAML
•    Experience working with SIEM tools such as Splunk, LogRythm, Elastic, AlienVault
•    Knowledge of CASB and zScaler is a plus

SSi is an equal opportunity employer regardless of race, color, religion, creed, sex, marital status, national origin, disability, age, veteran status, on-the-job injury, sexual orientation, political affiliation or belief. Employment decisions are made without consideration of these or any other factors that employers are prohibited by law from considering. Any discriminatory action can be a cause for disciplinary action. SSi also prohibits discrimination against individuals with disabilities and will reasonably accommodate applicants with a disability, upon request, and will also ensure reasonable accommodation for employees with disabilities. 
Powered by