ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Cyber Security Engineer (Implementation Engineer) who has experience with integration and hands-on implementation of new capabilities and managing existing capabilities for federal agencies in support of the CDM DEFEND project or customer requirements in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.The Senior Cyber Security Engineer will work closely with architects, design engineers, and integrators to assess customer requirements and to deploy and extend capabilities offered by the COTS and custom tools and support dashboard data requirements. Additionally, you will serve as a trusted advisor, providing subject matter expertise, guidance, and applying best practices.

Roles and Responsibilities

  • Design, deploy, operate and maintain CDM tools and capabilities in enterprise on premise and Cloud environments including: ForeScout CounterAct, Cisco ISE, McAfee ePO (MVM and Application Control), IBM Big Fix, Service Now, Carbon Black, Rapid 7, RedHat FUSE, Splunk, RSA Archer, Tenable Security Center, Vormetric, SailPoint, CyberArk, Venafi, CA-PAM, SolarWinds, or equivalent security tools and products as required
  • Develop installation, configuration, and deployment methods including scripting, use of APIs, orchestration, automation, and database services to support the integration and configuration of CDM applications and security technologies
  • Identify, analyze, and maintain PKI infrastructure tools for asymmetric and symmetric encryption including elements and tools use in public/private key generation, key stores, CAs, hashing algorithms, and related NIST standards
  • Work with architects, integration engineers, and developers to design solutions and improve data quality, security, and compliance or extend current capabilities and offerings to customers
  • Work closely with management support teams and customer network and operations teams to establish and document requirements to complete implementation and configuration tasks
  • Assess system design to validate them against expected technical parameters
  • Identify, analyze, define, and coordinate user, customer, and stakeholder needs and translates them into hardware and software requirements
  • Identify and manage solution dependencies with other systems and elements of the enterprise IT infrastructure
  • Identify technical risks and development mitigation strategies
  • Perform data validation, analysis, warehousing, and data mining
  • Develop and maintain detailed installation documentation and SOP’s as required
  • Experience working with databases (Microsoft SQL Server), understanding of DB structures, data types, and creating complex SQL DB queries
  • Ability to troubleshoot broad-ranging issues (operating systems, network, firewall, COTS products, access and authentication)
  • Provide tool operations and maintenance support, Tier 3 customer support, and act as the subject matter expert
  • Provide mentoring and support to other engineers

Required Skills

  • Minimum of 2 years’ experience as a subject matter expert for one or more of the following tools: ForeScout CounterAct, Cisco ISE, McAfee ePO (MVM and Application Control), IBM Big Fix, Carbon Black, Rapid 7, RedHat FUSE, Splunk, RSA Archer, Tenable Security Center, Vormetric, SailPoint, CyberArk, Venafi, CA-PAM, or equivalent security tools and products
  • Applicable Vendor Certified Administration certification is a plus
  • Security+ and/or equivalent related IT Certification
  • Effective communications skills, both oral and written
  • Experience leading technical discussions with internal and external customers
  • Understanding of Relational Database Management Systems (RDBMS) and query language, scripting and API’s
  • Experience with enterprise device types and operating systems (Windows and UNIX) to include, Active Directory and Windows domain management including patch and configuration management, group policy objects, UNIX security including SUDO
  • Experience and use of the key technologies relevant to API and application configuration or integration including SSL, DHCP, Active Directory, LDAP, JDBC, ODBC
  • Understanding and use of Microsoft SQL database, database definition, procedures, and advanced SQL
  • Understanding of PKI for asymmetric and symmetric encryption including elements and tools use in public/private key generation, key stores, CA’s, hashing algorithms, deployment methods for enterprise software and endpoints, and related NIST standards
  • Understanding of networking technologies including LAN/WAN, wireless, and VPN
  • Understanding of security design, network security architecture, network topology, and understanding of TCP/IP protocols; OSI model
  • Understanding and use if network diagnostic commands and tools (ping, netstat, trace, route, ifconfig, nmap, tcpdump, Wireshark, VI, Notepad+++, etc)
  • 04-06 years of experience with Masters Degree
  • 07-09 years of experience with Bachelors Degree
  • 13-15 years of IT experience with a High School Diploma

Desired Skills

  • Experience in enterprise hardware and/or software asset management tools and inventory methods
  • Experience deploying and configuring software in federal enterprise IaaS or Cloud Environments
  • Experience supporting incident response and handling; scanning for malicious content, automation, and aggregation of intelligence data
  • Experience with using Microsoft Office and other file types: PDF, XML, etc
  • Experience using Virtualization Technologies, such as VMware, vSphere, Xen
  • Ability to perform ETL operations to retrieve enrichment content from existing hardware, software, system boundary inventories
  • Knowledge of CPE’s, CVE’s, CCE’s, and CWE’s
  • Knowledge of NIST RMF or CDM Framework
  • Understanding of Domain-Forest trusts, DNS, and DHCP

Certification Requirement

  • CISSP Certification is preferred

Location

  • Reston, VA

Security Clearance

  • Candidate must be capable of obtaining a DHS Suitability and Public Trust 6C Clearance or above. Active Secret clearance or above is preferred.

Sound like the job for you?

Send us a link to your resumé or portfolio to become part of our talent pool.

Submit your resumé here!