Cyber Security Engineer
Description:
Zero Trust Cybersecurity Engineer
Job description:
Electrosoft Inc. is seeking Zero Trust Cyber Security Engineers who can hit the ground running to engage in Zero Trust initiatives and endeavors required by our customer. The ideal candidate will work collaboratively with our team and customer to help guide, assess, and document the as-is status of on-premises and cloud-based network enclaves and applications, conduct gap analysis, and formulate/implement plans that migrate each enclave and application towards achieving the full spectrum of benefits zero trust provides. All activity is vectored to achieve both the 2027 and 2032 targets for baseline and advanced Zero Trust objectives. This position will require you to become the resident expert in one of the seven pillars and help guide the team to the solutions that ensure mission success while making it the number one priority to protect our data, systems, and personnel. (currently looking to cover the User, Network and Environment, Visibility and Analytics with the Automation and Orchestration pillars)
Duties & Responsibilities:
Perform Zero Trust security readiness assessments (e.g. gap analyses, maturity assessments and strategic vectoring)
Develop Zero Trust implementation plans/roadmaps to achieve zero trust security and automation benefits and associated milestones
Research Zero Trust security solutions providing details on expected benefits, integration considerations and comparison to like technologies
Provide recommendations on zero trust policy, governance, processes, workflows, and expected organizational change and associated milestones
Work to infuse and standardize Zero Trust design principles across all pillars in a Zero Trust model (e.g. Users, Devices, Networks, Applications, Data, etc.)
Understand end-to-end Zero Trust architecture technologies and concepts, such as SD-WAN, SASE, edge computing, cloud technologies, enterprise identity, microservices, containers, encryption, tokenization, AI, ML, SIEM, SOAR, UEBA, threat modeling, SDP, etc.
Coordinate with appropriate organizational stakeholders to tailor Zero Trust requirements and coordinate communications, plans and implementation within their network/application environment(s).
Develop innovative approaches and create efficiencies to our existing practices
Work across government and industry to evaluate and shape policy around Zero Trust and related topics
Be well-informed of federal and commercial best practices, implementations, and solutions to infuse into our client environments
Articulate security concerns and risks related to currently implemented or planned solutions and develop remediation or mitigation plans
Map government/customer requirements and security control frameworks (e.g. NIST, RMF, DISA, OMB, etc.) to designed technical controls
Assist in the continued documentation of the current enterprise ZT program status through to full and complete implementation of all 152 Zero Trust activities and objectives
Apply professional-level functional knowledge to solve problems requiring the identification and analysis of moderately complex challenges
Act as a supporting role to the Pillar Leads and responsible for leading the effort to organize the execution of ZT efforts by influencing and building the appropriate coalitions across multiple departments and disciplines and serve as a Subject Manager Expert in assigned domain area(s)
Drive the development of ZT technology solutions and plans towards Zero Trust goals and objectives including integration with Identity and Access Management (IAM), Data Security, Endpoint Security, Policy, and Trust engines, providing recommendations and solutions with a full understanding of cross-organizational impact and requirements
Utilize threat modeling techniques to develop Zero Trust controls to be applied to architecture, data, network, and applications
Partner with internal and external IT organizations to shift plans/efforts toward federated access and authentication methodologies that reduce risk
Work with or establish teams within the architecture supporting policies and standards and provide in-depth knowledge and guidelines driving towards a Zero Trust solution
Mentor systems program manager, security professionals, engineers, administrators, developers and architects on zero trust requirements and potential solutions
Proactively accumulate and maintain knowledge of current and emerging/evolving technologies, concepts, and trends
Basic Qualifications:
Minimum of 4 years of experience in network solutions architecture, engineering, implementation, integrations, and operations of enterprise and/or carrier-class networks.
Experience working with cloud-based network infrastructures such as AWS or Azure or GCP or Oracle Cloud.
Hands on experience with common, enterprise grade network security & SIEM technologies (such as Zscaler, Palo Alto, Cisco, Juniper, Microsoft, Splunk, ELK etc.).
Familiarity with the NIST 800, FedRAMP, Risk Management Framework, Security Controls, and the Federal Information Security Modernization Act (FISMA) operating standards and applicable guidelines.
Excellent interpersonal, verbal, and written communication skills and ability to work and clearly communicate with all levels of management and staff
Executive collaboration and partnership skills across teams, customer service skills and interaction
Knowledge of Zero Trust Architectures (ZTA), principles and practices
Experience with enterprise and security architectures
Education:
Minimum of a Bachelor of Science (or higher) in one of the following: computer engineering, computer science, IT, cyber security, or a related field.
Relevant years of experience may be used in substitution situations where the candidate does not have a bachelor’s degree in the required field.
Certifications:
Any IA III certification (e.g., CISSP, CISM or equivalent)
Preferred that you also have one or more of the following certifications: Cloud (e.g., AWS, Azure, Google Cloud Platform) Security (e.g., Zscaler, Palo Alto, Cisco, Juniper, Microsoft, Splunk, ELK)
Clearance level:
Minimum of an active Secret Clearance.
Work Location:
Required onsite work at the client location at Scott Air Force Base, Illinois with some ability to telework on occasion.