Cyber Security Engineer, Senior

POSITION SUMMARY:

Cybersecurity Engineer, Senior
Acts as a member of the cyber security team for both operational cyber and risk & compliance functions.
Experience with pen testing, process and scan scripting, and advanced troubleshooting of cyber related tools and functions.
Experience with industry standard tools for functions like SIEM, IAM, firewalls, IDS/IPS, etc.
Acts as a mentor to other cyber security engineers and helps lead cybersecurity projects.

• Provides subject matter expertise on the architecture, information security solutions and countermeasures, policies and procedures related to enterprise information security.
• Deploys and leverages security tools and technology to monitor infrastructure and operations.
• Manages incidents related to the cybersecurity tools and operations.
• Experience in conducting systems analysis and evaluations.
• Collaborate with internal teams to update and maintain the System Security Plans and Security Assessment Reports and ensure that the changes are reviewed and approved where required.
• Partner with engineers to interpret and map compliance requirements to control implementation and across our products.
• Work with internal teams to manage FedRAMP authorized environments while educating them about the FedRAMP controls that impact their work.
• Support internal and third-party audits for compliance with FedRAMP, SOC2, HIPAA, and other applicable frameworks.
• The preceding functions are examples of the work performed by employees assigned to this job classification. Management reserves the right to add, modify, change or rescind work assignments and make a reasonable accommodation as needed.

Required:

• 8+ years’ experience as a cyber security engineer and familiarity with cyber security principles, concepts, and technologies.
• Solid understanding of cyber security principles and best practices for a multi-cloud enterprise environment.
• Experience with cyber security assessments and frameworks.
• Experience with vulnerability management.
• Ability to identify security gaps and vulnerabilities and create remediation plans.
• Ability to manage time and priorities effectively to achieve optimal results.
• Strong critical thinking, problem solving and root cause analysis skills.
• Ability to create effective procedure documents and workflow diagrams.
• Excellent verbal and written communication.

Desired:

• Scripting and automation experience (e.g. PowerShell).
• Experience with pen testing.
• Experience implementing cloud security and compliance standards, frameworks, and controls (e.g., SOC 2, FedRAMP, NIST SP 800-53r4, HIPAA) for cloud service delivery models (IaaS, PaaS, SaaS).
• Windows and Linux exploitation tools and techniques.
• Experience with both AWS and Azure clouds.
• Incident response (IR) and digital forensic experience.
• Healthcare IT background.
• Experience conducting or participating in security audits.

Required:

• Bachelor’s Degree or equivalent experience.

Certification(s), Licenses:

Desired:

• Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) or other advanced Cybersecurity certifications.

• Standing 10% per day
• Sitting 75% per day
• Walking 10% per day
• Stooping 5% per day
• Lifting 20 lbs 10x per day
• Computer Work 50% per day
• Telephone Work 25% per day
• Reading 15% per day
• Other - Meetings 10% per day
• This role can be Remote which would allow most work to be performed at home; however, the Employer is a Federal Contractor and subject to federal vaccination mandate. Employees must be fully vaccinated to come onto any of DSS, Inc’s sites or Client sites.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

If you need an accommodation seeking employment with DSS, Inc., please email jobs@dssinc.com or call (561) 284-7373. Accommodations are made on a case-by-case basis.