Security Engineer
Direct Hire
Onsite 1 Day per week in Washington DC
Must be US Citizen

Background:

Security Engineering is a new function with the client. The Information Security Branch is seeking to formalize existing Security Engineering processes for

the design, development, deployment, maintenance, and decommissioning of cybersecurity capabilities. The Contractor shall provide technical expertise and assist with the establishment and implementation of a formal Security Engineering function, which includes standard operating procedures and processes that govern all phases of the security engineering lifecycle.

Requirement:

• 5 years of experience as a Security Engineer.
• Experience designing and implementing secure networks and systems in either local (onpremises) or cloud computing solutions. This includes creating secure designs and integrating security appliances and technology into local, cloud, and/or hybrid networks. Highly desired experience includes the following: Amazon Web Services (AWS), Microsoft Azure, Google Cloud, and Data Centers.
• Deep understanding of security technologies, including firewalls, intrusion detection and prevention systems, identity and access management solutions, and encryption protocols.
• Familiarity with relevant industry standards and regulations, as well as with software development standards and practices such as the Systems Development Lifecycle, project and program management principles, and Agile development methodologies. This includes, but is not limited to, the Project Management Institute's Project Management Body of Knowledge (PMBOK) standards, the National Institute of Standards and Technology's (NIST) Special Publication 800-160 Vol. 2 Rev. 1 "Developing Cyber-Resilient Systems: A Systems Security Engineering Approach," and NIST's Cybersecurity Framework 2.0.
• Experience analyzing data to identify patterns and anomalies that may indicate security threats or vulnerabilities.
• Experience assessing risk and developing mitigation strategies.