Security Engineer - Vulnerability Management

Chartis Federal is a systems engineering and integration firm that specializes in mission-critical IT and communications for law enforcement, homeland security, and defense. We have served as the prime contractor for over $150M of task order awards, and today have more than 80 staff in 17 states providing services and solutions across the globe. With year-over-year growth, Chartis has been a member of the Washington Technology FAST 50 two times and ranked on the Inc. 5000 five consecutive years. Our mission is to keep America’s heroes safe and connected – on the battlefield, on the border, and in our backyards. 
We are hiring a  Security Engineer to support a federal customer located in Ashburn, VA. This position has a hybrid work arrangement with expected 2-3 days/week in office. Primary responsibilities for this position fall within Vulnerability Management.

Responsibilities

• Analyze security vulnerabilities with Tenable Nessus. Move vulnerabilities through the resolution process. Assist ISSOs in generating POA&Ms and coordinating with operations & maintenance to implement a fix.
• Ensure that systems comply with DISA Security and Technical Implementation Guides (STIGs). Provide step-by-step guidance to operations & maintenance on how to harden systems to meet compliance.
• Provide security expertise during weekly status updates, executive briefings, or presentations.
• Research, troubleshoot, and solve various technical networking problems.
• Review and generate process guides. Author technical whitepapers and  CONOPS.
• Troubleshooting issues in existing IP networks.
• Develop Python and/or PowerShell scripts to analyze trends & automate tasks.
• Identity, Credential, and Access Management.
• Ingest Splunk data sources, generate new dashboards/panels, and maintain existing applications/dashboards.
• Conduct security testing of new equipment in the lab as necessary, following existing security methodology.   
• Analyze the security of mobile applications and ensure they comply with federal guidelines & industry best practices. 

Qualifications

• Bachelor’s degree in a relevant field.
• CISSP, CISA, or CCSP certifications are desired.
• 5+ years’ experience in information security and networking, supporting medium-to-large size networks made up of diverse assets.
• Security compliance and networking experience.
• Security risk assessment & remediation experience.
• Python or other scripting languages. Ability to script and code is highly desired. Also, able to manipulate data in Excel.
• Experience analyzing data from tools such as Splunk, SolarWinds, Device42 or other log and IP Asset Management tools.
• Experience with Juniper or Cisco firewalls.

Security Clearance / Background Investigation

• Must be able to pass a background investigation and obtain a Public Trust clearance. 

Chartis is an equal opportunity employer and employs qualified individuals regardless of race, religion, color, sex, national origin, age, disability, or any other classification proscribed under applicable law. We participate in E-Verify.
#li-hybrid
Chartis is an equal opportunity employer and employs qualified individuals regardless of race, religion, color, sex, national origin, age, disability, or any other classification proscribed under applicable law. We participate in E-Verify.