Security Engineer- Remote

Apply for this position Please mention DailyRemote when applying
Posted 13 days ago United States Salary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

Security Engineer

100% Remote


Successful candidates will be responsible for leading the enterprise information security strategy as part of an organization-wide digital modernization initiative designed to transform a wide-range of healthcare IT information systems. Successful candidates will support the DevSecOps model with strong emphasis on Security. The Security Engineer will support and improve the agency's Risk Management Framework (RMF) processes, Information Assurance (IA) processes; and develop strategies ensure continuous monitoring of multiple shared service platforms and technologies.

An understanding of DoD and government cyber security policies and standards are needed to ensure all deployed changes are highly secure and available.

Qualifications:

  • 10+ years of experience with security architecture, design, and implementation appliable to enterprise IT solutions.
  • Strong knowledge and experience of information systems security.
  • Hands on security experience working in a cloud (IaaS, PaaS, SaaS) environment.
  • Strong knowledge of the NIST RMF and security controls is required.
  • Experience creating or supporting authorization packages and continuous monitoring compliance in a large-scale enterprise environment is required.
  • Experience working with leading edge technologies and innovative risk compliance and mitigation processes (automated continuous monitoring, etc.).
  • Demonstrable experience with Security Operation tools inclusive of products from SPLUNK and Tanium.

Typical Duties/Abilities:

  • The candidate will develop cyber security strategies to support a wide-variety of shared-service platforms and technologies and prepare presentations for leadership and application teams across the organization.
  • The candidate will prepare presentations and strategies which enable transformation of the organizations cyber culture based on proven techniques aligned with NIST RMF.
  • The candidate will provide enterprise security expertise and guidance to shared-service platforms and application/system development teams.
  • The candidate will drive the review and certification of information technology systems following the DoD policies and procedures (based on NIST RMF).
  • Candidate must be able to clearly define tasking, communicate topics to leadership through concise and succinct presentations and organize meeting preparation materials.
  • Establish audit policy and reporting mechanisms for ensuring compliance with IA/IS standards.

Soft Skills

  • Experience working with Agile methodologies (Scrum, Lean Startup, XP) and cross-functional teams (Product Owners, Scrum Masters, Developers, Designers, Business Analysts)
  • Strong communication and collaboration skills with a track record of taking solution ownership.
  • Ability to articulate security architecture, design, and configuration choices and bring about consensus.

Education/Certifications:

  • BS degree in Information Technology, Cybersecurity, or another related technical discipline.
  • Certification in one or more of; Systems Security Certified Practitioner (SSCP), CompTIA Security+, CPTE - Certified Penetration Testing Engineer, CEH - Certified Ethical Hacker, or Certified Information System Security Professional (CISSP).

**MUST BE A US CITIZEN AND BE ABLE TO COMPLETE THE GOVERNMENT'S BACKGROUND INVESTIGATION**

d1ce