Security Engineer
Washington, D.C.
Applications have closed
Job Description:
XOR Security is currently seeking talented Senior and Mid-level Security Engineers to support a federal SOC program. The SOC program provides comprehensive Computer Network Defense and Response support through 24×7×365 monitoring and analysis of potential threat activity targeting the enterprise. Security Engineers will conduct Operations and Maintenance (O&M) of critical security infrastructure for a 24x7x365 SOC environment.
To support this vital mission, XOR staff are on the forefront of providing Advanced CND Operations, and Security Engineering support to include the development of advanced analytics and countermeasures to protect critical assets from hostile adversaries. To support the integrity, security, and resiliency of critical operations, we are seeking candidates with diverse backgrounds in security engineering and systems administration. The ideal candidate will have a solid understanding of complexities related to Operations and Maintenance (O&M) of critical security infrastructure for a 24x7x365 environment. Additionally, the ideal candidate would be familiar with managing and optimizing McAfee DLP, FireEye HX/EX and other Host-Based security devices.
Please Note: Currently the program is 100% remote. Hours of operation are Monday through Friday during core hours and After the government requires return to work for the general population (date is TBD), onsite support will be required with one or more days a week remote.
Basic Responsibilities:
- Support the full system engineering life-cycle, including requirements analysis, design, development, test, implementation, maintenance, integration, and documentation of SOC infrastructure and SOC tool suite.
- Maintain Operating Systems for security platforms including Red Hat Linux, Cisco IOS, and AWS infrastructure.
- Install, configure, monitor, and troubleshoot security solutions and related monitoring tools including Endpoint (AV, DLP, Endpoint Detection & Response), and infrastructure supporting SEIM (Splunk).
- Monitor and process change requests on security solutions.
- Responsible for supporting LAN/WAN security solutions including creating and maintaining LAN/WAN security standards and design documentation
- Develop and assist with new LAN/WAN security applications and hardware as assigned.
- Ability to script in one more of the following computer languages Python, Bash, Visual Basic or Powershell
- Strong written and oral communication with the ability to communicate with team members, management and customer.
Required Qualifications:
- Senior Security Engineers require a BS degree Science, Technology, Engineering, Math or related field and 10+ years of prior relevant experience with at least 5 years' experience directly supporting or participating in security operations.
- Mid Security Engineers require a BS degree Science, Technology, Engineering, Math or related field and 5+ years of prior relevant experience.
- Expert experience in the design, deployment, and maintenance of tools used to deliver the enterprise security capabilities in Firewalls, VPN Solutions, Web Application Firewalls, and Full Packet Capture solution.
- Strong proficiency in report writing and briefing senior management
- Excellent organizational and attention to details in tracking activities within various Security Operation and trouble ticket workflows.
- A working knowledge of the various operating systems (e.g. Windows, OS X, Linux, etc.) commonly deployed in enterprise networks, a conceptual understanding of Windows Active Directory is also required, and a working knowledge of network communications and routing protocols (e.g. TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g. SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.).
- Experience with the identification and implementation of countermeasures or mitigating controls for deployment and implementation in the enterprise network environment.
Desired Qualifications:
- FireEye, Palo Alto, Redhat, AWS, or Cisco certifications
Closing Statement:
XOR Security offers a very competitive benefits package including health insurance coverage from the first day of employment, 401k with a vested company match, vacation and supplemental insurance benefits.
XOR Security is an Equal Opportunity Employer (EOE). M/F/D/V.
Citizenship Clearance Requirement
Applicants selected may be subject to a government security investigation and must meet eligibility requirements - US CITIZENSHIP and PUBLIC TRUST CLEARANCE REQUIRED
Tags: Active Directory Analytics AWS Bash Clearance Clearance Required DNS Firewalls iOS Linux Monitoring PowerShell Python Red Hat SMTP Splunk SQL VPN Windows
Perks/benefits: 401(k) matching Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs