Cyber Security Engineer at Freedom

Freedom Technology Solutions Group is seeking a Cyber Security Project Engineer to assist with supporting a diverse set of corporate goals across the organization by conducting technical risk assessments and providing technical risk mitigation guidance on the use of various enabling technologies. The position requires subject matter expertise in technical risk analysis of enterprise and mission systems IT systems and networks mobile and wireless networks cloud-based computing network management platforms communication protocols scripting or programming products configuration scripts and IT hardware and software products in support of Sponsors technical risk assessment activities. Software development to maintain an online infrastructure evaluating and extracting relevant data web development and software coding is also to be expected.Additional Duties:Perform technical risk assessments and provide technical risk mitigation guidance on the use of various enabling technologies.Gather Body of Evidence (BOE) and assess artifacts such as CONOPS use cases detailed network diagrams technical design details procurement methods and System Security Plan (SSP) to get a holistic view of the interworking parts of a given technology implementation being evaluated from which real insights can be derived to inform risk assessors judgement.Apply consistent and systematic investigative practices to comprehensively assess risks identify and characterize threats and vulnerabilities.Evaluate system or network operations using network management platforms network scanning tools auditing functions PCAP captures and log reviews.Analyze system network or cloud configurations for mis-configured settings configurations not required for deployment removal of test scripts to minimize the configuration to fulfill the specific deployment.Analyze hardware and software used in a system or network for origin of manufacturer known vulnerabilities outdated hardware or software.Remain current with existing and future technologies to assist the Sponsor with identifying associated risks of implementing proposed technologies.Provide guidance of potential cyber threats attacks and exploitations and advise decision-makers of the inherent risks and mitigation to the Sponsors equities.Ensure appropriate risk mitigation considerations are baked in early in the development cycle and risks and vulnerabilities are well understood and appropriately mitigated.Organize and schedule work to effectively manage a case loadTrack document and communicate progress status updates and weekly status updates on all technical risk assessment reports cases describing potential security concerns and mitigations to enhance security posture.Experience:Demonstrated experience analyzing IT systems for cyber security vulnerabilities.Demonstrated experience developing IT system or network architecture design conducting IP data flow analysis encryption configuration and vulnerability analysis using both open-source and commercial tools such as Nmap Wireshark Metasploit Canvas Kismet or BackTrack.Demonstrated experience analyzing IT network configurations of devices such as firewalls routers switches VPNs or Intrusion Detection/Prevention Systems for cyber security vulnerabilities.Demonstrated experience with communications protocols such as IP TCP UDP HTTP HTTPS MPLS OSPF IGRP BGP SIP H.232.Demonstrated experience with multiple OSs including Windows Linux and OSX.Demonstrated experience with Microsoft Windows ver.;RR2 or 2016.Demonstrated experience with cloud computing technology and hypervisors such as HyperV VMWare ESX or Virtual Box.Demonstrated experience with transitioning security domains and use of cross domain appliances.Demonstrated experience with network management systems network storage backup systems and disaster recovery (DR) architectures.Demonstrated experience performing technical risk assessments and providing technical risk mitigation guidance.Demonstrated experience ensuring appropriate risk mitigation considerations risks and vulnerabilities are well understood and appropriately mitigated.Demonstrated experience analyzing procurement processes of hardware software and services to comply with cyber security and operational needs.Demonstrated experience creating concise and well-structured written assessments.Certifications: CISSP Certification.Desired Skills:Cyber Security SupportDemonstrated experience with the Sponsors IT review boards.Demonstrated experience with providing recommendations to IT architecture and design reviews.Demonstrated experience with the Sponsors security policies and regulations.Demonstrated experience providing recommendations in technical standards security standards and operational assurance.Demonstrated experience with USG standards such as Intelligence Community Directive (ICD) 503 Federal Information Processing Standards (FIPS) National Institute of Standards and Technology (NIST) Special Publication (SP) 800-37 SP 800-39 SP 800-53 SP 800-53A SP 800-60.Certifications: Certified Information Security Manager (CISM) Certified Ethical Hacker.Whats in It for YouFlexible work environmentA team mentality work with friendly like-minded professionalsWork with innovative cutting edge technologiesEnjoy extremely competitive compensation and benefitsA work-life balance you can count onOpportunities to grow and advance your career on our dimeThe Benefits You Get with FreedomAmazing benefits including matching 401k fully paid medical and moreGenerous paid time off including paid site closure daysCompetitive salary offeringsPaid training and tuition reimbursementReferral bonusesFully paid life and disabilityAnnual logo wear allowanceCompany sponsored events (game nights holiday party summer party happy hours)Interested in learning more about Freedom and our culture Contact us today! Were constantly hosting hiring events in our office and elsewhere to help you get a sense of what life is like at Freedom before joining the team.As an Equal Opportunity Employer we do not discriminate on the basis of race color religion sex age marital status disability or veteran statusApplicant Federal & E-Verify PostingsVEVRAA Federal ContractorAccessibility: If you need an accommodation as part of the employment process please contact Human Resources atPhone: Email: Equal Opportunity Employer including disabled and veterans.If you want to view the EEO Law poster please choose your language:English-Spanish-Arabic-ChineseIf you want to view the EEO Law Supplement poster please choose your language:English-Spanish-ChineseIf you want to view the Pay Transparency Policy Statement please click the link:English Key Skills Splunk,IDS,Network security,Computer Networking,Identity & Access Management,PKI,PCI,NIST Standards,Security System Experience,Information Security,Encryption,Siem Employment Type : Full Time Experience: years Vacancy: 1