Senior Cybersecurity Engineer

At phia, we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clients.

phia, LLC is seeking a senior level Cybersecurity Engineer to join our team of qualified, diverse individuals supporting a federal customer, that is responsible for the protection of vital national security information and technologies, representing intellectual property of incalculable value throughout nearly thirty sites and laboratories nationwide. This position is located on-site site in Washington, D.C.

What You'll Do:

• Develop derived requirements for Information Assurance Services (Confidentiality, Integrity, Nonrepudiation, and Availability), Basic Information Assurance mechanisms (e.g., Identification, Authentication, Access Control, Accountability) and Security Mechanism Technology (Passwords, cryptography, discretionary access control, mandatory access control, hashing, key management, etc.).
• Code and work API integration using python, Java, etc.
• Apply a broad understanding of monitoring, analyzing, detecting, and responding to cyber events and incidents within information systems and networks.
• Manage system requirements and derived requirements to ensure the delivery of production systems that are secure and compatible with the defined system architectures.
• Work with a variety cyber defense and IT tools such as: Splunk, ElasticSearch, MISP, FireEye, Cisco Sourcefire, Palo Alto firewalls, Tanium, Snort, Bro, SolarWinds, Apache NiFi, and RedSeal.
• Advise on an integrated, dynamic cyber defense and leverages cyber security solutions to deliver cyber security operational services such as: intrusion detection and prevention (IDPS), situational awareness of network intrusions, security events and data spillage and incident response (IR) actions.
• Test, implement, deploy, and operate, the infrastructure hardware and software which are required to effectively manage the organization’s cyber security operational services.
• Install operate maintain cybersecurity systems, tools, and integrate data from sources.
• Apply/integrate cybersecurity engineering principles into infrastructure planning, design, and deployment.
• Lead or participate in an Integrated Product Team review to ensure security architecture integration.
• Generate alternative system concepts, physical architectures, security architectures and design solutions.

Requirements

Education + Experience

• BA/BS in Computer Science, Information Technology, Information Security, or a related field or equivalent experience (two years of experience for each year of schooling).
• 6-12+ years of experience working in the areas of IT, systems administration, engineering, architecture, cyber, intelligence, information security, hunt, cyber operations, network forensics, insider threat, etc.
• Experience with coding in python, PowerShell, shell scripting, RESTful API, etc.
• Possess engineering and architecture skills to make efficient advisement for systems requirements.
• Experience providing full system’s lifecycle (design, testing, implementation, operations, maintenance and disposal) support for commercial and open-source tools
• Excellent knowledge of a wide variety of security solutions and technologies, including Linux, network architecture/implementation/configuration experience, firewall technologies, proxy technologies, anti-virus, spam and spyware solutions (gateway and SaaS), malware/security experience
• Must be highly motivated with the ability to self-start, prioritize assignments, and work in a collaborative team environment

Bonus Points if you have:

• CERTIFICATIONS: one or more preferred – GCIH, GCFE, RHCE, CPTE, or CEH.
• MA/MS in computer science, information security, or a related field or equivalent experience.
• Preferred background with knowledge in incident response with experience in threat analysis.
• Knowledge and understanding of the MITRE ATT&CK framework with associated tactics, techniques and tools for attack method types and their usage in targeted attacks such as phishing, malware implantation, perimeter vulnerabilities, application vulnerabilities, lateral movement, etc.

Clearance: DoD Top Secret/SCI required (valid investigation within last 5 years) Q clearance before start.

Who You Are

• A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment.
• Intellectually curious with a genuine desire to learn and advance your career.
• An effective communicator, both verbally and in writing.
• Customer service-oriented and mission-focused.
• Critical thinker with excellent problem-solving skills.

If your experience and qualifications aren’t a match for this position, you will remain in our database for consideration for future opportunities that may be a better fit.

MPORTANT: This position may be subject to Executive Order 14042 and the Safer Federal Workforce Task Force Guidance requiring covered employees to be fully vaccinated against COVID-19, which the Federal Government is not enforcing at this time.

Benefits

Who We Are

phia LLC ("phia") is a Northern Virginia based, 8a certified small business established in 2011 with focus in Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, and Information Assurance/Security. we proudly support various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.

phia values work-life balance and offers the following benefits to full-time employees:

• Comprehensive medical insurance to include dental and vision
• Short Term & Long-Term Disability
• 401k Retirement Savings Plan with Company Match
• Tuition and Professional Development Assistance
• Flex Spending Accounts (FSA)

phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.