Security Engineer

Summary

Join KeenLogic as a Senior Security Engineer supporting the Drug Enforcement Administration! This full-time, primarily remote position offers excellent benefits including Fortune 500-level coverage, PTO, 401k, life insurance, and travel reimbursement. You will be a key member of the Security Engineering Team, collaborating with internal teams and contributing to various cybersecurity functions. Responsibilities encompass security engineering, incident response, vulnerability management, and more. A strong background in information system security, security engineering, and relevant tools is required, along with an active Secret security clearance. This role demands expertise in security architecture, implementation, and maintenance, as well as a commitment to staying current with emerging technologies.

Requirements

• Bachelor’s degree from an accredited college or university in one or more of the following disciplines or equivalent (documented formal training): computer science, information systems analysis, science/technology, information management, computer engineering, or electrical/electronic engineering or equivalent combination of education and work experience
• ACTIVE Secret security clearance (position may require upgrade to Top Secret clearance)
• 6+ years of Information System Security, security engineering and integration computer forensics, insider threat, or SPAA experience
• 3+ years demonstrated experience performing architecting, engineering, integrating, developing and/or deploying information technology products (hardware and software) in an enterprise environment
• 3+ years of experience with the software development lifecycle and integration of security tools
• 6+ years of experience using some/all of the following tools: SourceFire, ArcSight, Splunk, NetWitness, Guidance Software, Digital Guardian, Raytheon (SureView), NMAP, Metasploit, Request Tracker, Nagios, Intelliview, Nessus, and Foundstone

Responsibilities

• Engineer, architect, implement, deploy, maintain, and administer security products and tools
• Conduct research, evaluate, and make recommendations on emerging technology
• Conduct cyber assessment activities including threat modeling, analysis and analysis of mitigation solutions
• Coordinate and address supply chain management concerns
• Coordinate with system architects and developers to provide oversight in the development of solutions and integration of security tools
• Conduct security testing and evaluation during the development and release process for security tools and hardware (virtual or physical)
• Review and interpret Federal guidelines and policies, and industry standard best practices
• Provide subject matter expertise, support, leadership, and training
• Provide support on all information security activities at the program level including policy development, compliance inspections, audits, reviews and communications security
• Provide support and work on the development phases of information security systems development lifecycle
• Evaluate and support the documentation, validation, and SPAA processes, necessary to meet the organization’s IA requirements; and ensure compliance from internal and external perspectives
• Conduct assessments of threats and vulnerabilities pertaining to security tools and architecture, determine deviations from acceptable configurations, enterprise or local policy, assess the level of risk, and develop and/or recommend appropriate mitigation countermeasures in operational and non-operational situations
• Document incident correlation requirements, select incident correlation engines and recommend configuration guidelines. Perform analysis to determine the optimum configuration of network and host sensors
• Conduct the integration/testing, operations, and maintenance of systems security. This analysis includes traffic load analysis, performance impacts of monitoring, determination of potential attack characteristics based on mission and infrastructure, and determination of site-specific data collection requirements
• Provide system operation support, administer hardware and software inventory, and oversee administration of a laboratory environment
• Analyze and recommend resolution of information security problems based on knowledge of the major information security products and services, an understanding of their limitations, and a working knowledge of the disciplines of information security
• Conduct research and develop security policies relevant to client environment and analyze outside security information for relevance to DEA
• Install and upgrade computer hardware and operating systems (Windows, and UNIX) in an enterprise environment
• Additionally, engineers are expected to be able to perform the duties of the cybersecurity analyst positions as requested by the COR/GPM

Preferred Qualifications

• Top Secret security clearance
• Master’s degree in computer science, information systems analysis, science/technology, information management, computer engineering, or electrical/electronic engineering or equivalent combination of education and work experience
• Any combination of security engineering experience in the following areas. Qualys, Splunk (CORE, UBA, ES), Tenable SC, Digital Guardian or like UAM tools, VMware (ESXi, vSphere, etc.), Nagios, Science Logic, EDR platforms (Counter Tack, CrowdStrike, FireEye), Intelliview, Networking, Infrastructure and Architectural experience, Linux, Vectra, NAS/SAN (NetApp, EMC), Cisco Fire Power, and the ability to learn new tools and suites of products

Benefits

• Fortune 500-level benefits
• PTO
• 401k
• Life Insurance
• Monthly reimbursement for travel
• Mainly remote