KeyLogic is seeking a Network Security Tools Engineer to support the development and implementation of cyber engineering strategies, tools and techniques to enhance a system’s cyber-resiliency against existing and emerging cyber-threats. The successful candidate will be required to perform hands-on administration of both on-prem and cloud-based security devices controlling access to the network and monitor the flow of network traffic to prevent external intrusion.
Responsibilities Include:
- Providing cybersecurity engineering support on systems, system elements, interfacing systems, components, security tools, devices and/or processes for developmental and operational cyber tools
- Working independently or as a team member to solve cybersecurity engineering problems
- Developing and analyzing available cyber protection tools that will improve security posture and provide recommendations that support the remediation and protection of systems
- Perform cyber criticality, mission impact, and risk analysis of recommended tools
- Translating analytical findings into security “use cases” that can be implemented within available surveillance capabilities
- Providing detailed and accurate technical reporting of analysis results in the form of PowerPoint presentations and/or Word documents, as well as oral briefings on complex technical subjects attuned to senior management, technical, or non-technical audiences
- Operations and management of multiple cloud and on-prem network security devices. Providing technical support to include troubleshooting performance issues with the application components
- Implementing new application versions when they are released
- Creating application documentation, drawings, and other deliverables for tool maintenance. Prepare technical designs with Visio diagrams and detailed descriptions.
Required Skills:
- Must be a US Citizen
- Must be able to obtain DHS Suitability and be able to obtain a TS/SCI clearance
- 6+ years of software development experience
- 2+ years of experience with Agile software development
- Possess in-depth technical and theoretical knowledge of cyber defensive operations and technologies
- Experience in the installation and configuration of SecureSphere Imperva Web Application Firewalls (WAF), Database Activity Monitoring (DAM)
- Advanced experience securing network traffic via AWS API Gateway and AWS Application Load Balancers, cloud-security technologies (e.g., VPC, Security Groups) and Access Control (IAM)
- Familiarity with intrusion detection and prevention systems (IDS/IPS), RSA Security Analytics (NetWitness), Symantec Bluecoat, Cisco FirePower (SourceFire), Splunk, PKI, chain of trust, and certificates. etc.
Desired Skills:
- 5+ years of Cloud DevOps Administrative or Engineering experience
- 3+ years of related Network Security Identity Management tools engineering experience, including installing, configuring and troubleshooting experience with one or more of these tools:
o SecureSphere Imperva Web Application Firewalls (WAF), Database Activity Monitoring (DAM)
o RSA Security Analytics (NetWitness)
o Symantec Bluecoat
o Cisco FirePower (SourceFire)
o Splunk
- DHS experience
Required Education:
Bachelor’s degree in Software Engineering, Computer Science or a related discipline is required.
[Eight (8) years of experience (for a total of fourteen (14) or more years) may be substituted for a degree.]
Desired Certifications:
- One or more of the following certifications in good, current standing: CISA, GCIH, GCED, CISSP, CASP, or Security+
- AWS certifications such as Cloud DevOps Developer Assoc, SysOps Administrator Assoc, Advanced Networking Spec, Security Spec.