Information Security Engineer (Lead)
Root9B Washington, DC
- Expired: December 09, 2020. Applications are no longer accepted.
At R9B we are information security veterans and trailblazers, breaking new ground with our unique approach focused on active adversary pursuit and tailored cyber operations. We are Human-Led, Technology Driven.
This role requires a dynamic personality that can work successfully in a diverse environment, drive clarity, and reduce ambiguity. The ideal candidate demonstrates a unique blend of technical skills, business acumen, and the ability to think strategically.
Experience & Qualifications:
Minimum of four (4) years of experience in the following:
o On-site project lead for information technology security engineering projects serving as the interface and on-site point of contact with Contracting Officer's Representative (COR) for program/project operations.
o Organizing, directing and coordinating with the Program Manager and COR in the planning and production of all contract and subcontract support activities.
o Supervising program/project operation by developing engineering, technical and management procedures and controls, monitoring, and reporting progress.
A minimum of eight (8) years of relevant work experience in the area of information/cyber security engineering or security operations, including hands-on experience with security tools and devices such as network firewalls, web proxy, intrusion prevention system, vulnerability scanner, and penetration testing tools.
Two (2) or more years of experience in the design and implementation of enterprise-wide security controls to secure systems, applications, network, or infrastructure services.
Specialization in at least one of the following fields with four (4) or more years of experience:
o Building and administering security devices such as network firewall, web proxy, data loss prevention systems, and intrusion prevention systems.
o Building and administering Windows Server and Active Directory.
o Building and administering Linux/UNIX based systems.
o Building and administering Network devices (e.g., Cisco, Juniper).
o Conducting dynamic web application security testing, both manual testing and utilizing application security tools to discover exploitable vulnerabilities.
o Conducting database security assessment and monitoring.
o Managing cloud security operations, including identity & access control, secure configuration management, network security, enforcement policy scripting, workload security, data security, and logging.
o Public Key Infrastructure (PKI) management and data encryption for data-at-rest and data-in-transit.
Demonstrated understanding of TCP/IP networking concepts and DNS.
Experience with public cloud services providers such as Amazon AWS or Microsoft Azure.
Strong familiarity with Federal compliance standards such as NIST 800-53, FIPS, FedRAMP.
Education: Bachelor's degree or equivalent professional experience in the field of information security, computer engineering, information systems, telecommunications, or related technical or functional discipline.
Professional Certifications: Maintain at least one current professional certification.
Acceptable certifications include: Any SANS GIAC Security certifications (Administration, Software, Forensics, or GSE Expert), ISC2 CISSP, or any security systems vendor administration-level certifications.
PMP Certification preferred or equivalent work experience (4+ years management experience).
Other certifications may be acceptable as approved by the COR.
No clearance requirements for this position, though Public Trust preferred.
root9B is an equal opportunities employer and VEVRAA Federal Contractor. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law.