TIAG is now hiring a Lead Cloud Security Engineer to join our team at the Office of Naval Research (ONR) in Arlington, VA. Candidates must possess an active Secret Clearance to be considered. The Cloud Security Engineer will assist the Office of Naval Research establish and maintain an information technology network operation. This position reports onsite in Arlington, VA with a hybrid schedule of remote work 2x a week.

The Lead Cloud Security Engineer will lead the Network Operations Team working in collaboration with the Information Assurance (IA)/Cybersecurity/Computer Network Defense (CND) Team to perform network operations functions in support of the security tools used in both the AWS Cloud on-premises environment information and the on-premises environment to include the security information and system event management (SIEM) system.

Required Skills and Experience:

AWS:

• Manages AWS accounts, including the setup and configuration of EC2 instances and RDS databases.
• Possesses familiarity with AWS Cloudwatch and dashboarding, S3 bucket administration, Systems manager for automation of patching and maintenance tasks, AWS backup configuration, backups and restores.
• Creates documentation for infrastructure as code (IaC) to ensure repeatability and maintainability.
• Possesses basic AWS Networking skills, such as VPC configurations, creating subnets, security groups, and tagging.

System Engineering:

• Manages and maintains on-premises systems and server infrastructure as needed.
• Participates in system design, capacity planning, and disaster recovery planning.
• Collaborates with Systems Engineering and IA teams to deploy and configure new systems and services.

SIEM Management:

• Configures and maintains the McAfee SIEM platform to monitor and analyze security events and incidents.
• Develops and maintains correlation rules, alerts, and dashboards to detect and respond to security threats effectively.
• Collaborates with security analysts to investigate and mitigate security incidents based on SIEM alerts.
• Conducts regular SIEM system upgrades and ensure compliance with security standards and best practices.

Required Experience:

• Bachelors degree and 10+ years of experience related to network engineering and security
• Familiarity with AWS infrastructure and security services.
• McAfee Suite of products, Splunk Remedy ticketing system, and ITSM framework
• TCP/IP, Computer networking, routing, and switching
• Firewall and IDS/IPS protocols
• Windows and UNIX and Linux operating systems
• Network protocols and packet analysis tools
• SIEM
• DLP, Endpoint Security, and anti-malware

Required Certifications/Clearance

• Active IAT Level II Certification (Sec+, CCNA, CySA+, GICSP, GSEC, CND, SSCP, or equivalent) AND Operating System (OS)/Computing Environment (CE) certification
• Ability to obtain Secret Clearance

TIAG is an equal opportunity and affirmative action employer that does not discriminate on the basis of race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. TIAG's policy applies to all terms and conditions of employment. To achieve our goal of equal opportunity, TIAG maintains an affirmative action plan through which it makes good faith efforts to recruit, hire, and advance in employment qualified minorities, women, individuals with disabilities, and protected veterans individuals with disabilities, and protected veterans.