Security Engineer – ISCM/CDM This CDM (Continuous Diagnostics & Mitigation) and a ISCM/CM (Information Security Continuous Monitoring/Continuous Monitoring Security Engineer role will be focused on the specification of requirements associated with the Government’s early adoption of DHS CDM capabilities, subsequently engineering, writing about, presenting on, and in some cases implementing delivery on those requirements. Assist in coming up with a design and building out a fully-functional dashboard to show the security posture of the agency’s systems and their overall risk levels. This position will work collaboratively with a team of security engineers on the instantiation of prototypes and other security engineering support to advance the security initiatives of our client. The specific skills required for this position include:
Excellent writing skills
Proven customer facing effectiveness
Previous experience (at least 4 years) with performing detailed security monitoring for a large organization.
Familiarity with data normalization strategies common with security correlation capabilities.
Deep expertise with security testing and categorization of security findings/events.
Has been involved with the automation of risk reporting through reporting tools or other dashboard enablement products.
Understands the full security engineering lifecycle from requirements to deployment.
Deep familiarity with Cloud and Cloud Security concepts
Possesses experience with conducting technology trade studies for information security and/or privacy tools/products.
Has very clear communication skills, both oral and written.
BS degree (at minimum) in any field.
CISSP certification or equivalent preferred (CISSP-ISSAP or CISSP-ISSEP highly preferred)
At least 6 years of security engineering experience.
At least 10 years overall IT experience in a technical, hands-on capacity.
Experience with RSA Archer product is highly preferred