Cybersecurity Engineer/Architect

Summary

At phia, our goal is to hire talented and passionate team members who desire to grow their skillsets, as well as the reputation of the company with our partners, clients, and stakeholders. We are seeking a Cybersecurity Engineer/Architect to support the U.S. Department of Energy (DOE). DOE is responsible for the protection of vital national security information and technologies, representing intellectual property of incalculable value throughout nearly thirty sites and laboratories nationwide. This position is located in Washington, D.C.

Requirements

Responsibilities

• Lead or participate in an Integrated Product Team review to ensure security architecture integration
• Apply/integrate cybersecurity engineering principles into infrastructure planning, design, and deployment
• Generate alternative system concepts, physical architectures, security architectures and design solutions
• Develop derived requirements for Information Assurance Services (Confidentiality, Integrity, Nonrepudiation, and Availability), Basic Information Assurance mechanisms (e.g., Identification, Authentication, Access Control, Accountability) and Security Mechanism Technology (Passwords, cryptography, discretionary access control, mandatory access control, hashing, key management, etc.)
• Work with a variety cyber defense and IT network tools such as: FireEye Email and Network Security, Cisco Sourcefire/Firepower, Palo Alto firewalls, Snort, Bro, SolarWinds, and RedSeal
• Test, implement, deploy, and operate, the infrastructure hardware and software which are required to effectively manage the organization’s cyber security operational services
• Install operate maintain cybersecurity systems, tools, and integrate data from sources
• Manage system requirements and derived requirements to ensure the delivery of production systems that are secure and compatible with the defined system architectures
• Learn or apply existing scripting concepts and work API integration using PowerShell, Ansible, python, Java, etc.

Key Experience/Qualifications

Education + Experience

• BA/BS in Computer Science, Information Technology, Information Security, or a related field or equivalent experience (two years of experience for each year of schooling) is required.
• At least 6 years of experience working in the areas of IT, systems administration, engineering, architecture, cyber, intelligence, information security, hunt, cyber operations, network forensics, or similar including:

1. experience making recommendations for specific tools/projects to fill a gap
2. experience in planning tool deployments

• Ability to code in python, PowerShell, shell scripting, RESTful API, etc.
• This position requires U.S. Citizenship and a DOD Top Secret/SCI or higher clearance with an investigation within the last 5 years
• DOE Q SCI clearance required before start
• Applicants CAN be disqualified for not having required experience.

Desired Skills

• Ability to provide engineering and architecture skills to make efficient advisement for systems requirements
• Related technical experience working in cyber operations, threat intelligence or analysis
• Experience in other cybersecurity technology areas such as endpoint, analytics and automation tools: FireEye Endpoint Security, Tanium, Microsoft Defender/ATP, Splunk, ElasticSearch/ELK, MISP, and NiFi
• Preferred background with knowledge in incident response with experience in threat analysis
• Knowledge and understanding of the MITRE ATT&CK framework with associated tactics, techniques and tools for attack method types and their usage in targeted attacks such as phishing, malware implantation, perimeter vulnerabilities, application vulnerabilities, lateral movement, etc.

Certifications

• One or more preferred – GCIH, GCFE, RHCE, CPTE, or CEH

Security Clearance

• DOE Q Clearance / DOD Top Secret; Current SCI desired. Must have had a valid investigation within last 5 years

Who You Are

• A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment.
• Intellectually curious with a genuine desire to learn and advance your career.
• An effective communicator, both verbally and in writing.
• Customer service oriented and mission focused.
• Critical thinker with excellent problem-solving skills

Benefits

phia LLC ("phia") is a Northern Virginia based, 8a certified small business established in 2011 with focus in Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, Information Assurance/Security, Compliance, Certification & Accreditation, Communications Security, Traditional Security, and Facilities Security. phia also provides cyber operations support functions such as: Program and Process Management, Engineering, Development, and Systems Administration that allows for Cyber Operations to efficiently integrate our customer’s missions and objectives. phia supports various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.

phia offers excellent benefits to enhance work-life balance and flexibility, these include the following:

• Medical Insurance
• Dental Insurance
• Vision Insurance
• Life Insurance
• Short Term & Long-Term Disability
• 401k Retirement Savings Plan with Company Match
• Paid Holidays
• Paid Time Off (PTO)
• Tuition and Professional Development Assistance