Cyber Security Engineer

Zero Trust Cybersecurity Engineer

Responsibilities and Duties:

Closely collaborating with customers (both executive and technical audiences), our company, and our partners to:

Perform Zero Trust security readiness assessments (e.g. gap analyses, maturity assessments and strategic vectoring)

Develop Zero Trust implementation plans/roadmaps to achieve zero trust security and automation benefits and associated milestones.

Research Zero Trust security solutions providing details on expected benefits, integration considerations and comparison to like technologies.

Provide recommendations on zero trust policy, governance, processes, workflows, and expected organizational change and associated milestones.

Work to infuse and standardize Zero Trust design principles across all pillars in a Zero Trust model (e.g. Users, Devices, Networks, Applications, Data, etc.)

Understand end-to-end Zero Trust architecture technologies and concepts, such as SD-WAN, SASE, edge computing, cloud technologies, enterprise identity, microservices, containers, encryption, tokenization, AI, ML, SIEM, SOAR, UEBA, threat modeling, SDP, etc.

Coordinate with appropriate organizational stakeholders to tailor Zero Trust requirements and coordinate communications, plans and implementation within their network/application environment(s).

Develop innovative approaches and create efficiencies to our existing practices.

Work across government and industry to evaluate and shape policy around Zero Trust and related topics.

Be well-informed of federal and commercial best practices, implementations, and solutions to infuse into our client environments.

Articulate security concerns and risks related to currently implemented or planned solutions and develop remediation or mitigation plans.

Map government/customer requirements and security control frameworks (e.g. NIST, RMF, DISA, OMB, etc.) to designed technical controls.

Assist in the continued documentation of the current enterprise ZT program status through to full and complete implementation of all 152 Zero Trust activities and objectives.

Apply professional-level functional knowledge to solve problems requiring the identification and analysis of moderately complex challenges.

Act as a supporting role to the Pillar Leads and responsible for leading the effort to organize the execution of ZT efforts by influencing and building the appropriate coalitions across multiple departments and disciplines and serve as a Subject Manager Expert in assigned domain area(s)

Drive the development of ZT technology solutions and plans towards Zero Trust goals and objectives including integration with Identity and Access Management (IAM), Data Security, Endpoint Security, Policy, and Trust engines, providing recommendations and solutions with a full understanding of cross-organizational impact and requirements.

Utilize threat modeling techniques to develop Zero Trust controls to be applied to architecture, data, network, and applications.

Partner with internal and external IT organizations to shift plans/efforts toward federated access and authentication methodologies that reduce risk.

Work with or establish teams within the architecture supporting policies and standards and provide in-depth knowledge and guidelines driving towards a Zero Trust solution.

Mentor systems program manager, security professionals, engineers, administrators, developers and architects on zero trust requirements and potential solutions.

Proactively accumulate and maintain knowledge of current and emerging/evolving technologies, concepts, and trends

Basic Qualifications

Minimum of 4 years of experience in network solutions architecture, engineering, implementation, integrations, and operations of enterprise and/or carrier-class networks.

Minimum of a Bachelor of Science (or higher) in one of the following: computer engineering, computer science, IT, cyber security, or a related field. (Relevant years of experience may be used in substitution for situations where the candidate does not have a bachelor’s degree in the required field.)

Experience working with cloud-based network infrastructures such as AWS or Azure or GCP or Oracle Cloud.

Hands on experience with common, enterprise grade network security & SIEM technologies (such as Zscaler, Palo Alto, Cisco, Juniper, Microsoft, Splunk, ELK etc.).

Familiarity with the NIST 800, FedRAMP, Risk Management Framework, Security Controls, and the Federal Information Security Modernization Act (FISMA) operating standards and applicable guidelines.

Knowledge of Zero Trust Architectures (ZTA), principles and practices

Experience with enterprise and security architectures

Sound organizational and cross-functional communication and collaboration skills that promotes the benefits of ZT and inspires others to contribute

Any IA III certification (e.g., CISSP, CISM or equivalent)

Preferred that you also have one or more of the following certifications: Cloud (e.g., AWS, Azure, Google Cloud Platform) Security (e.g., Zscaler, Palo Alto, Cisco, Juniper, Microsoft, Splunk, ELK)