Complete Description:
The Sr. Security ENGINEER shall be responsible for the day-to-day activities required harden the security of District of Columbia Government (DCGOV) network. Working in a collaborative team environment, the lead engineer will work with stakeholders both internal and external to protect and defend the DCGOV network from intrusions. Sr Security engineer will play a critical role in Incident Response information gathering efforts and shall support continuity of operations efforts for the District at all times. Sr Security ENGINEER shall work with key teammembers to ensure measures are in place to protect the Confidentiality, Integrity and Availability (CIA) of the DCGOV network.
The Sr Security ENGINEER shall be responsible for the following, but not limited to:
• Management and administration of SIEM tools,
• Identify events of interest and investigate them for signs of abuse or misuse
• Remote management of infected machines – alert, analyze and remediate infections remotely
• Review application, system, and network logs for evidence of malicious activity
• Support auditing performed by third parties as part of C&A efforts and/or managed services
• Support incident response activities
• Document and report monitoring and incident response activities on a daily, weekly, and monthly basis
• Ensure all operations tools and infrastructure is operating normally
• Train, mentor, and supervise junior analysts and/or engineers
• Shift-work assignment hours which will be based on typical rotating shifts to support security operations. Candidates should be flexible to rotating 8 hour shifts.
The Sr. Security ENGINEER will consult with stakeholders and assist with improving processes that are aligned with the mission of the Officer of the Chief Technology Officer and will report to the Director of IT Security. Sr Security ENGINEER is expected to contribute to weekly status calls, trouble tickets, and adhoc requests as part of this position and will work to resolve or engage appropriate stakeholders/teammembers to remedy the request. Sr Security ENGINEER should recommend new security tools to management regarding new technologies and provide guidance on supplemental configurations to support the DCGOV network.
The ENGINEER will support 24/7 operations and will be part of an expanding team of highly technical professionals at the Office of the Chief Technology Officer,
Behavior Characteristics:
Must be able to work in the U.S.
Effective oral and written communication skills
Ability to make effective presentations and develop professional reports
Keen Problem solving and analysis skills
Skills:
Skill
Required / Desired
Amount
of Experience
Expertise Rating
BA/BS in CyberSecurity, Information Security, Engineering, Computer Sciences, information Technology, Information Management, or related field preferr
Highly desired
4
Years
3 - Expert
Extensive experience managing Security Incident Event Management Systems
Required
10
Years
3 - Expert
Experience implementing security solutions
Required
2
Years
3 - Expert
Expert knowledge in Information Security best practices
Required
10
Years
3 - Expert
Network Routing, Switching, and Security Design
Required
10
Years
3 - Expert
OSI model and TCP/IP stack
Required
10
Years
3 - Expert
Overall IT experience
Required
13
Years
3 - Expert