Sr. Cyber Security Engineer | Remote, USA
Denver, CO
Optiv
Optiv manages cyber risk so you can secure your full potential. Cybersecurity advisory services and solutions. Powered by the best minds in cyber.The Senior Cyber Security Engineer is responsible for leading projects and operational tasks that apply new and existing technologies and solutions to solve business needs in the cyber security space. The Senior Cyber Security Engineer works with other engineers, various groups, and operational support staff both within IT and other business units to provide and maintain solutions that meet business and technical requirements. The Senior Cyber Security Engineer will assist in the development of procedures and runbooks; act as the subject matter expert in a variety of cyber security domains such as Identity and Access Management, Vulnerability Management, End-Point Protection, Incident Response activities, etc.; and will provide tier two production support for responsible solutions. The Senior Cyber Security Engineer will perform duties as the Information Systems Security Manager (ISSM) for the Optiv Federal information systems environment and will report directly to the Optiv Security SOC Manager.
How You'll Make an Impact:
- Lead the development of security solutions and process improvements.
- Lead the enhancement of key security solutions in the GRC, SOC, SIEM and IAM space.
- Ability to manage security vendors to resolve issues and maximize configurations.
- Lead the deployment, monitoring, troubleshooting, and changing of complex environments.
- Partner with IT and business colleagues to ensure proper security controls are included in new solutions.
- Research and evaluate the impact of new vulnerabilities, security alerts and threat intelligence bulletins.
- Participate in threat hunting and incident response events.
- Lead security tasks such as conducting risk assessments.
- Build and maintain relationships with key customer's technical staff members and with internal stakeholders from IT, customer service and field operations.
- Share experience, knowledge, and ideas with management and co-workers to maintain a kind and respectful team-based environment.
- Promote a corporate culture that is committed to information security best practices.
- Participate in after-hours support as needed to respond to security incidents.
- Function with a high degree of integrity with an ability to keep information confidential.
- Perform as the ISSM for the Optiv Federal environment.
- Develop, administer, and sustain a CMMC Certification package for the Optiv Federal environment.
- Ensure NIST 800-171 compliance for all applicable information in the Optiv Federal environment.
- Perform audit log reviews and initiate incident response actions for any anomalous activity.
- Lead the vulnerability management program; perform vulnerability scans and prioritize and coordinate remediation actions.
- Assess systems and create baselines utilizing the DISA STIGs.
- Develop a Plan of Action and Milestones (POA&M) and work items to remediation.
- Participate in change control board meetings.
- Work in partnership with the Facility Security Officer (FSO) to meet NISPOM and NISP requirements.
What We're Looking for:
- Bachelor’s Degree in Computer Science and/or any related fields, Master’s Degree a plus.
- Minimum of 10+ years of relevant work experience related to cyber security.
- Must be a US Citizen and be able to obtain and maintain a Secret Security Clearance.
- Must have experience with several of the following: Microsoft, O365, Active Directory, Splunk, ServiceNow, SailPoint, Qualys, CASB and other endpoint protection tools.
- Proficient across multiple operating systems such as Microsoft, ESXi, Apple, and Linux.
- Familiarity with security best practices for cloud architectures (SaaS, IaaS, PaaS).
- Knowledge of securing cloud environments particularly Azure and AWS.
- Fundamental understanding of network protocols and network security.
- Knowledge of industry and Government frameworks such as NIST, CMMC, and RMF.
- Have experience with developing and sustaining Government accreditation packages within different Government frameworks, such as NISPOM, CMMC, JSIG, and ICD.
- Have experience reviewing audit logs and performing cybersecurity incident investigations for large, complex systems.
- Experience with the DISA STIGs and performing STIG validations of different technologies.
- Detail-oriented with strong conceptual, analytical, problem solving, decision making and planning skills.
- Must have the ability to utilize application, scripting, and operating system commands to configure, debug, and monitor large scale production systems.
- Knowledge of modern software development lifecycles, including Agile and iterative development.
- Excellent written and oral communication skills; and demonstrated ability to interact with technical, non-technical, and business members of the organization.
- Ability to manage multiple tasks.
- #LI-Remote
- #LI-JL1
Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, status as an individual with a disability, veteran status, or any other basis protected by federal, state, or local law. Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Agile AWS Azure CASB Clearance Cloud CMMC Compliance Computer Science DISA IaaS IAM Incident response Linux Monitoring Network security NISPOM NIST PaaS POA&M Privacy Qualys Risk assessment Risk management RMF SaaS SailPoint Scripting Security Clearance SIEM SOC Splunk STIGs Threat intelligence Vulnerabilities Vulnerability management Vulnerability scans
Perks/benefits: Career development Flex hours Flex vacation Health care Insurance Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs