Description

Sr. Cyber Security Engineer

Remote Job |   2023-06-07 09:56:42

Apply Now

Share Job 

Job Code : 2023-MY3TECH0388

Job: Sr. Cyber Security Engineer

Location : REMOTE

Duration:12 Months Contract

PennDOT seeks Sr. Cyber Security Engineer with minimum 6 years' experience with at least 2 years in a large enterprise environment.

Qualifications

•     Minimum 6 years' experience with at least 2 years in a large enterprise environment

•     Strong analytical skills with high attention to detail

•     Strong knowledge of malware techniques and behavior

•     Solid understanding of risk management

•     Threat hunting knowledge and experience

•     Advanced problem-solving skills

•     Self-directed with strong time management skills

•     Comfortable working independently as well as in a team setting

•     Effective communication skills

•     Understanding of security and threats relevant to cloud technologies.

•     Experience with scripting languages – PowerShell, Python, etc.

•     Experience with forensic tools, such as:

•     Network security monitoring: FireEye NX, AX, PX Endpoint, Splunk – ES

•     Firewalls: AlgoSec, Checkpoint, CISCO ASA, SilverPeak, VMWare NSX

•     Web vulnerability scanning: Tenable.IO, Rapid7 AppSpider

•     Encryption: Globalscape Secure FTP, PGP

•     Penetration testing: Metasploit, Kali Linux, Netsparker, and Wireshark

 

Responsibilities

•     Expert oversight and implementation of Security and Risk Management, Asset Security, Security Architecture and Engineering, Communication and Network Security, Identity and Access Management, Security Assessment and Testing, Security Operations, and Software Development Security.

•     Performing cyber security functions for three Commonwealth of PA agencies in collaboration with the Enterprise Information Security Office in a team lead capacity.

•     Maintain deep understanding of information technology networking and infrastructure, particularly as they pertain to network and cyber security.

•     Maintain and have operational familiarity with security infrastructure and tools, including IPS/IDS, log management (Splunk), firewalls (Checkpoint), endpoint protection (FireEye), etc.

Desired Qualifications:

•     Experience with Network intrusion detection tools such as Snort, Security Onion, SolarWinds Security Event Manager,

•     Experience with Packet sniffers such as Tcpdump and Windump

•     Familiarity with SAST and DAST tools such as Veracode, AppSpider and AppScan 

Desired Certifications (one or more)

•     CISSP

•     GSEC

•     GCIH

•     GCFA

•     CISM

•     Or other relevant certifications

Minimum 6 years' experience with at least 2 years in a large enterprise environment

Required 6 Years

Strong analytical skills with high attention to detail

Required Strong knowledge of malware techniques and behavior

Required Solid understanding of risk management

Required Threat hunting knowledge and experience

Required Advanced problem-solving skills

Required Self-directed with strong time management skills

Required Comfortable working independently as well as in a team setting

Required Effective communication skills

Required Understanding of security and threats relevant to cloud technologies.

Required Experience with scripting languages – PowerShell, Python, etc.

Required Experience with forensic tools, such as Network security monitoring: FireEye NX, AX, PX Endpoint, Splunk – ES

Required Experience with Firewalls: AlgoSec, Checkpoint, CISCO ASA, SilverPeak, VMWare NSX

Required Experience with Web vulnerability scanning: Tenable.IO, Rapid7 AppSpider

Required Experience with Encryption: Globalscape Secure FTP, PGP

Required Experience with Penetration testing: Metasploit, Kali Linux, Netsparker, and Wireshark

Required Experience with Network intrusion detection tools such as Snort, Security Onion, SolarWinds Security Event Manager

Desired Experience with Packet sniffers such as Tcpdump and Windump

Desired Familiarity with SAST and DAST tools such as Veracode, AppSpider and AppScan

Desired Certifications (one or more)- CISSP, GSEC, GCIH, GCFA, CISM or other relevant certification(s)

Education

Any Graduate