Job Title: Cyber Security Engneer

Job Description:
RAI, an EverWatch company currently has an opening for a Cyber Security Engneer. The Cyber Security Engneer will be responsible for ensuring the security of critical computer systems and networks. The ideal candidate will have a solid understanding of cyber security methods and engineering best practices. Must be able to manage incident handling, incident analysis, processes/methodologies, and the development of best practices. Must have a strong understanding of adversary processes/methodologies/TTP to include emerging threats, and the ability to develop signatures and countermeasures.
In the role of Cyber Security Engineer, the candidate will be responsible for the following:
 Conduct reviews of vulnerability and generic security scan results of both systems and networks to identify and mitigate security vulnerabilities  Analyze and recommend measures to mitigate network-related risks  Develop security policies to address unauthorized access and malicious code insertion  Review new and existing system and network designs for compliance with security standards and best practices  Participate in vulnerability assessments on new and existing systems/networks  Provide Tier 3 support for security related issues  Participate in forensic analysis in response to system/network vulnerabilities  Provide architectural and technical guidance and recommendations for maintaining the security of systems and networks  Verify and validate securing and hardening measures  Ensure all systems/networks conform to security policies, standards, and best practices  
 
 

Experience and Skills:
TS/SCI with polygraph required  Bachelor's degree in Computer Science, Computer Forensics, Information Technology or related technical discipline  Success implementing advanced cyber security methods to systems and networks in a complex environment  Experience with Juniper and Cisco based networks.  Experience working in Linux-based environments  Understanding of networking environments to include IPv6 networking technologies (routing, switching, VLANs, subnets, firewalls); TCP/IP stacks; common networking protocols; and common enterprise technologies  Proven knowledge of ICD-503 security model  Experience at a Senior level documenting the body of evidence to support security review and accreditation to include system security plans, configuration management plans, standard operating procedures, and TEM documentation  Understanding of IT security principals, technologies, and best practices to include access control; PKI and other encryption methods; network-based and host-based IDS/IPS; security configuration baselines (STIG, CIS, FISMA); auditing; vulnerability discovery and management, and computer logs  Ability to work independently to identify errors, pinpoint root causes, document cause and effect, and devise solutions with minimal oversight  Demonstrated experience in testing and implementing network vulnerability and protection methods  Senior-level knowledge of information security concepts, policy frameworks, and best commercial practices  Information Assurance Certifications (i.e. CISSP, CISA, GIAC, Security +, Certified Ethnical Hacker, etc.)  Experience with security scanning and evaluation tools (Nessus, Retina, Wireshark, NMAP, EnCASE, etc.)