Mobile_menu_button_hd

Security Engineer (Top Secret required)

OBXtek

Job Description

OBXtek is searching for a Security Engineer who will be responsible for providing IT security services that support the overall security of the U.S. Department of the Treasury and the U.S. Government.

** This position is onsite at the Treasury Department headquarters building in Washington, DC.

**There is no remote work availability for this position.


Responsibilities:

  • Provide overall security oversight for all TFIN systems and network components and configuration management and oversight of all TFIN security components.
  • Support operational oversight of all systems, network security settings and network firewall settings as they relate to TFIN.
  • Provide evaluation and oversight of STIG implementation, compliance, and operations, system hardening and resolution of vulnerabilities.
  • Use industry standard hardening tools to set baseline of systems and to validate compliance. Examples include CIS, DISA STIGS, Red Hat NSA hardening guide, Treasury Baseline for NSS, USGCB, and others for all operating systems and applications used on servers at Treasury.
  • Assist in the engineering and maintaining of the antivirus architecture, evaluating solutions, troubleshooting server and client related antivirus incidents, and upgrading servers and clients. Provide malware and virus analysis and removal. Create indicators from analysis for use with IDS systems to prevent and to deter future threats.
  • Assist in conducting computer forensic operations. Use industry standard tools, hardware, and software.
  • Provide operational and maintenance support to Host Based Security System (HBSS) , Tripwire, Nessus (ACAS), Splunk (or its replacement), M3, any IDS components, and any other security tool that is installed on TFIN as applies to items. Review and alter, if necessary, the current HBSS set up to conform to the requirements and recommendations provided by a qualified evaluator associated with the Intelligence Community Security Coordination Center (IC SCC).
  • Prepare, review, test, and exercise plans in support of Department wide federal exercises, detailing the objectives, safety considerations, and testing, tools, and equipment requirements
  • Provide Test Results Report, After Action Report (AAR), and Counterintelligence Support Report as required.
  • Support counter-intelligence efforts to manage insider threat and other human factors risks. Prepare indicator creations for IDS systems to use and monitor as preventative and detective measures to increase the security posture for Treasury. Sources would include detected malware, email threats, and advisories from security vendors. Provide security impact assessment, evaluation, and recommendations to the Architect and TFIN Change Control Board (CCB) for all systems and network changes to TFIN security components that relate to changes, updates, replacements, or modifications.
  • Provide support for TFIN PKI implementation and operations
  • Provide after-hours support for maintenance, outage resolution, or other service support requested by the Government.

Job Requirements


Must hold a current Top Secret Clearance with SCI access, including having currently read-in access to SCI.

Must be a US citizen and all immediate family members and all members of the household must be US citizens.



Education/Certifications: (revised)

  • Preferred certification in CompTIA Security+
  • Preferred Bachelor's Degree in computer science, information technology

Required Skills/Experience:

  • 3+ years experience in hardware, software and troubleshooting of critical IT systems
  • 1+ years in support of a civilian federal government agency in a TS environment
  • Fluent in one of the following: HBSS/EPO, ACAS, Splunk, Tripwire, other Intrusion Detection Software (IDS)
  • Demonstrable working experience with security aspects of the Windows server products including Windows Server OS, Microsoft Exchange Server, Microsoft Active Directory, and SharePoint
  • Demonstrable working experience with security aspects of current VMware applications and other virtualization-related security issues
  • Scripting abilities – VBscript, PowerShell, cmd/batch, perl python, DOS BATCH, java/javascript,bash(sh)
  • Software packaging – perform security testing of unattended installation packages for various apps
  • Imaging – Understand concepts of security testing desktop images, server (virtual machine) images and driver updates.
  • Network print server security
  • Writing functional requirements and preparing functional designs
  • Management of:
    • licence agreement compliance
    • user access
    • system optimization
    • system backups and recovery

Desired Skills/Experience:

  • Extremely detail-oriented and able to follow standard methodologies for troubleshooting and development
  • Committed to excellent customer service provision
  • Able to identify and resolve issues quickly
  • Excellent verbal and written communication skills at a management level
  • DR/COOP planning, management, support, and IT disaster recovery
  • Skills & experience with IT Security protection, detection, analysis & response, prevention, Intrusion detection/monitoring, Data Access Security, Identity Management, Cryptographic Technologies, Group Policy (Active Directory), Scripting (Linux &Windows).
Apply
Apply

Job Snapshot

Location US-DC-Washington
Employment Type Full-Time
Pay Type Year
Pay Rate N/A
Store Type Engineering & Aerospace
Other Compensation: 0

Recommended Jobs for You

Privacy Tips

For your privacy and protection, when applying to a job online:

Never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction.

Terms & Conditions
Snapshot
OBXtek
Company:
US-DC-Washington
Location:
Full-Time
Employment Type:
Year
Pay Type:
N/A
Pay Rate:
Engineering & Aerospace
Store Type:

Job Description

OBXtek is searching for a Security Engineer who will be responsible for providing IT security services that support the overall security of the U.S. Department of the Treasury and the U.S. Government.

** This position is onsite at the Treasury Department headquarters building in Washington, DC.

**There is no remote work availability for this position.


Responsibilities:

  • Provide overall security oversight for all TFIN systems and network components and configuration management and oversight of all TFIN security components.
  • Support operational oversight of all systems, network security settings and network firewall settings as they relate to TFIN.
  • Provide evaluation and oversight of STIG implementation, compliance, and operations, system hardening and resolution of vulnerabilities.
  • Use industry standard hardening tools to set baseline of systems and to validate compliance. Examples include CIS, DISA STIGS, Red Hat NSA hardening guide, Treasury Baseline for NSS, USGCB, and others for all operating systems and applications used on servers at Treasury.
  • Assist in the engineering and maintaining of the antivirus architecture, evaluating solutions, troubleshooting server and client related antivirus incidents, and upgrading servers and clients. Provide malware and virus analysis and removal. Create indicators from analysis for use with IDS systems to prevent and to deter future threats.
  • Assist in conducting computer forensic operations. Use industry standard tools, hardware, and software.
  • Provide operational and maintenance support to Host Based Security System (HBSS) , Tripwire, Nessus (ACAS), Splunk (or its replacement), M3, any IDS components, and any other security tool that is installed on TFIN as applies to items. Review and alter, if necessary, the current HBSS set up to conform to the requirements and recommendations provided by a qualified evaluator associated with the Intelligence Community Security Coordination Center (IC SCC).
  • Prepare, review, test, and exercise plans in support of Department wide federal exercises, detailing the objectives, safety considerations, and testing, tools, and equipment requirements
  • Provide Test Results Report, After Action Report (AAR), and Counterintelligence Support Report as required.
  • Support counter-intelligence efforts to manage insider threat and other human factors risks. Prepare indicator creations for IDS systems to use and monitor as preventative and detective measures to increase the security posture for Treasury. Sources would include detected malware, email threats, and advisories from security vendors. Provide security impact assessment, evaluation, and recommendations to the Architect and TFIN Change Control Board (CCB) for all systems and network changes to TFIN security components that relate to changes, updates, replacements, or modifications.
  • Provide support for TFIN PKI implementation and operations
  • Provide after-hours support for maintenance, outage resolution, or other service support requested by the Government.

Job Requirements


Must hold a current Top Secret Clearance with SCI access, including having currently read-in access to SCI.

Must be a US citizen and all immediate family members and all members of the household must be US citizens.



Education/Certifications: (revised)

  • Preferred certification in CompTIA Security+
  • Preferred Bachelor's Degree in computer science, information technology

Required Skills/Experience:

  • 3+ years experience in hardware, software and troubleshooting of critical IT systems
  • 1+ years in support of a civilian federal government agency in a TS environment
  • Fluent in one of the following: HBSS/EPO, ACAS, Splunk, Tripwire, other Intrusion Detection Software (IDS)
  • Demonstrable working experience with security aspects of the Windows server products including Windows Server OS, Microsoft Exchange Server, Microsoft Active Directory, and SharePoint
  • Demonstrable working experience with security aspects of current VMware applications and other virtualization-related security issues
  • Scripting abilities – VBscript, PowerShell, cmd/batch, perl python, DOS BATCH, java/javascript,bash(sh)
  • Software packaging – perform security testing of unattended installation packages for various apps
  • Imaging – Understand concepts of security testing desktop images, server (virtual machine) images and driver updates.
  • Network print server security
  • Writing functional requirements and preparing functional designs
  • Management of:
    • licence agreement compliance
    • user access
    • system optimization
    • system backups and recovery

Desired Skills/Experience:

  • Extremely detail-oriented and able to follow standard methodologies for troubleshooting and development
  • Committed to excellent customer service provision
  • Able to identify and resolve issues quickly
  • Excellent verbal and written communication skills at a management level
  • DR/COOP planning, management, support, and IT disaster recovery
  • Skills & experience with IT Security protection, detection, analysis & response, prevention, Intrusion detection/monitoring, Data Access Security, Identity Management, Cryptographic Technologies, Group Policy (Active Directory), Scripting (Linux &Windows).
Security Engineer (Top Secret required) Apply now