Job Title: Security Engineer

C2C Rate: $70 an hour C2C

Visa: All Except H1B

Client: USAC

Location: 2 days a week onsite in Washington D.C. office

Duration: 6-month Contract

Summary:

The Security Engineer will evaluate, implement, maintain, and monitor IT security measures utilized by the company. The individual in this position is responsible for reviewing both new and existing applications for security vulnerabilities and compliance.

Responsibilities:

• Analyze, build, and maintain Security Operations toolsets, including vulnerability scanning, log collection/SIEM, and endpoint protection.
• Maintain Security Assessment Packages (ATO Documentation, SSPs, Assessment Reports, Risk Calculation, etc.).
• Evaluate new and existing applications for security compliance and provide recommendations to improve security posture.
• Analyze remediation efforts of findings related to vulnerability and system configurations.
• Perform security initiative gap assessments.
• Implement, test, and maintain defined security solutions.
• Lead security support for project development and existing applications.
• Serve as the lead security liaison to IT Operations and program support groups.
• Serve as an Incident Response resource, responsible for aiding engineer/analyst in triaging security incidents and keeping the security group manager apprised of the incident status.
• Serve as a subject matter expert in the development/updates of annual security awareness training, annual developer security training and annual administrator security training.

Requirements:

• Bachelor's degree and/or relevant technical training with no preferred certification.
• 5-7 years' of directly related experience.
• 1-2years of operational and/or technical business leadership experience.
• 5+ years' of experience in IT network security implementation (i.e. firewalls, secure topologies/architectures, SIEM Tools, intrusion detection and analysis, Microsoft UNIX OS security, vulnerability assessments).
• 5+ years' of experience in working system administration of Unix, Microsoft operating systems, MS Office Professional tools suite, and IT security incident/forensics.
• 2-3 years' experience in system baseline configurations, IT security policy and standards development, and POA&M tracking and remediation.
• Experience with Federal Security Regulations (i.e. OMB Circular A-130, MIST Guidelines), wireless network architecture, web filtering configuration, security information/event manager configuration, antimalware tools, and next generation firewall experience.
• Required: one or more of the following: CISSP, CISM and/or CISA certification.
• CCNP, MCSE or equivalent.