Security Engineer

Electrosoft Services, Inc. is an award-winning company that provides comprehensive technology-based solutions and services to federal customers. While cybersecurity is our specialty, we also focus on ICAM, enterprise IT modernization, and software solutions. We always seek to delight our customers, so we retain highly qualified employees and offer them meaningful work, growth opportunities, and work-life balance. What sets us apart from all other contractors is the sense of teamwork our employees feel - and the knowledge that outstanding effort is recognized and rewarded. The camaraderie we share emanates from Lunch & Learn sessions where we explore new ideas together, fun group activities ranging from escape rooms to miniature golf, and much, much more. If we've described you and your dream workplace, please apply and share in the many benefits and opportunities we offer.

Security Engineer

Responsibilities

• Lead and coordinate initiatives, managing requirements, schedules, and actions to ensure timely and successful project delivery in alignment with organizational objectives.
• Collaborate with Security, Infrastructure, and Operations teams to develop, implement, and manage automation scripts, enhancing the efficiency and effectiveness of security operations.
• Candidate will possess knowledge &/or familiarity with Armis &/or Axonius solutions relating to Cyber Asset Attack Surface Management (CAASM) and the Elastic Stack solution for searching, analyzing, and visualizing SIEM data with regard to search, observability, and security.
• Maintain and troubleshoot existing security infrastructure, working closely with server and networking teams to resolve issues and optimize performance.
• Implement and manage advanced solutions to support and enhance infrastructure management, security operations, and threat intelligence activities, ensuring seamless integration with existing security tools and processes.
• Provide knowledgeable troubleshooting for Information Security Systems, offering strategic guidance on optimizing and extending functional capabilities to meet evolving operational challenges.
• Continuously assess and improve existing or future frameworks, staying up to date with the latest security and automation technologies to ensure best practices are applied across all projects.
• Create, implement, maintain, troubleshoot, &/or utilize advanced scripting (in BASH, Perl, JavaScript, or Python for example) to automate or simply tasks, enhance system functionalities, and troubleshoot issues. Must also be comfortable performing Administration and O&M tasks from the command line.
• Maintain detailed documentation for system designs, configurations, processes, and service records.
• Lead and mentor junior team members in best practices and technical challenges.
• Analyzes development and implementation requirements and makes appropriate modifications to existing systems and prepares specifications based on customer requests.

Basic Qualifications:

• Candidate will hold a ComSci/CIS/InfoSec/IT related bachelor's degree (or) with ~8+ years of Information Security work experience or an equivalent combination of education, certifications, & IT experience.
• Candidate will hold and maintain a current Information Security certification such as "Certified Information Systems Security Professional (CISSP)", "Certified Information Security Manager (CISM)", or higher InfoSec related certification. (E.G.: ISC2 Information Systems Security Engineering Professional (ISSEP))
• Possess knowledge &/or familiarity with security hardening framework standards and regulations from Center for Internet Security (CIS) Control 4, National Institute of Standards and Technology (NIST) Special Publication 800-53 Revision 5, and Defense Information Systems Agency's (DISA) Security Technical Implementation Guides (STIGs).
• Ability to participate in a 24/7/365 on call rotation.
• Organized, detail-oriented, and excellent problem-solving skills with the ability to work independently or as part of a team.
• Capability to troubleshoot and resolve LAN/WAN connections, performance/throughput issues, and other related network problems.
• Strong communication and documentation skills, with the ability to explain complex technical concepts to non-technical stakeholders.