We are seeking an experienced Enterprise Security Engineer for our government client. The Enterprise Security Engineer will focus on standardization, suitability, and integration of the existing security portfolio while looking to incorporate new and more dynamic solutions to make the client's environment more secure and user-friendly. As a Security Engineer, you will be responsible for evaluating new solutions (IoT, APIs, etc.) and developing the supporting elements required to incorporate new technologies safely and securely. The Security Engineer will work in support of an environment with Sumo Logic and CrowdStrike technologies deployed.
Develop and maintain current and planned state architectural documents – domain roadmaps, standards, reference architecture, implementation documents
Assess vendor capabilities, development, and test strategies
Lead working groups and work collaboratively with other domain enterprise and solution architects to deliver a comprehensive technology roadmap and future state vision.
Review solutions to be deployed in the cloud and on-premises environments
Assess, design, implement, and document cybersecurity processes and solutions
Perform cybersecurity modeling, analysis, and planning activities
Analyze business requirements to develop technical solutions and their framework
Maintain in-depth knowledge of IT industry best practices, technologies, architectures, and emerging technologies.
Communicate architectural decisions, plans, goals, and strategies
Experience leading the alignment of ongoing activities in support of critical Federal mandates such as Continuous Diagnostics and Monitoring (CDM), Executive Orders related to cybersecurity, and guidance from OMB and NIST
Experience providing high-level design and architecture diagrams, technically validating solutions, and connecting business, data, security, systems, and other technical and non-technical architectures
Familiarity with open architecture and cybersecurity architecture principles that achieve cybersecurity framework goals
Support to assessment and audit activities
Active Secret Clearance
At least 6 years of experience in network and endpoint security architecture
Experience with security tools such as endpoint protection (CrowdStrike), zero trust (ZScaler), identity management (Okta, SailPoint), cyber threat detection (FireEye), vulnerability management tools (Nessus, Retina), configuration management (Bigfix, SCCM, EPO), endpoint detection (antivirus, ATP), data loss prevention, and intrusion detection software and hardware
Familiar with architecture principles in Zero Trust Architecture, Identity, Credential, and Access Management (ICAM), and Security Information and Event Management (SIEM)
Familiar with multi-tiered network applications, common ports, and protocols used in those communications
Strong analytical and organizational skills
Concise writing skills, excellent MS Word skills as well as other MS Office Applications
Experience leading meetings and other briefings to senior leaders
*Crowdstrike experience highly preferred, but we will provide training in Crowdstrike for the right candidate.*
While this position is fully remote, occasional travel to Washington, DC area will be required post COVID.
All offers are contingent upon proof of full vaccination against COVID-19 or successful accommodation for an exemption.