Security Engineer

Company Description

Business Integra (BI) is an award-winning global provider of information technology (IT) services and solutions infused with leading-edge technologies; and has been recognized by Inc. magazine as one of the fastest growing 500 companies across both government and commercial sectors. Located just outside of our Nation’s Capital in suburban Maryland – BI provides end-to-end solutions in application development, consulting, and re-engineering across all major technologies. Our solutions and services help build enduring relationships with our clients.

Job Description

• Serve as the principle IT engineer for design and implementation of cyber security tools that protect and monitors various IT infrastructures.

• Deploy and manage solutions that support the full information security environment including tools such as virus detection, malware detection, intrusion detection and prevention systems, and other network and information security tools.

• Actively coordinate with the Corporate Security Team and Technology Center staff to provide required IT security and monitoring capabilities.

• Manage the design, development, and deployment of IT solutions providing security engineering expertise and guidance. Define and coordinate security requirements within the various stages of the project development process.

• Lead and support the technical design, engineering, and implementation of emerging security technology. Evaluate, recommend, and integrate new security technology and tools by conducting feasibility studies, proof of concepts, pilot projects, and other research and development initiatives.

• Research and evaluate current and emerging security technologies to support organizational cyber security objectives.

• Maintain an advanced understanding of the strengths and weaknesses of various security tools.

• Evaluate vendor solutions against business requirements and provide recommendations to management.

• Provide subject matter expertise and guidance in the development of cyber security policy and practices.

• Apply knowledge of latest cyber security industry trends, technology tools and practices, and security threats to define cyber security processes and standards.

• Conduct self-assessments of security processes, security tools, networks, and systems.

• Identify weak controls and communicate vulnerabilities to Corporate Security and management.

• Participate with Corporate Security in incident response and forensic analysis.

• Provide training sessions and guidance to Infrastructure Team members and other Technology Center staff to ensure understanding of evolving information security environment.

• Provide accurate and thorough documentation of processes and procedures to ensure compliance and enable coverage during outages.

• Perform other duties as assigned Job Requirements

Qualifications

• Experience within multiple of the following areas required: computer networking, cloud and virtual machine environments, PKI, security engineering and architecture, programming, vulnerability assessments, or operating systems.

• Administration expertise with correlation and analysis of security and event log data, IDS/IPS, vulnerability scanners, endpoint protection, SSL Decryption, Data Loss Prevention, penetration testing and protocol collection and analysis tools.

• Security focused Administration of AWS, Windows, and Unix systems, network devices, proxy servers web server, virtualization, firewall, and DNS.

• Experience with programming and scripting languages and text manipulation tools.

• Strong troubleshooting skills in complex communication and network environments.

• Strong communication skills a MUST.

• Working knowledge of government security standards (eg, HIPAA, Risk Management Framework, NIST 800-171, DISA STIGs, DSS ODAA Process Manual, FISMA, Fed-Ramp).