JOB DESCRIPTION:
Cybersecurity Tools such as:
o Burp
o Wireshark
o OSINT
o Encase, Autopsy, FTK
· Experience with Digital Forensics
· Red, Blue, and Purple Team experience, ideally in developing and running
· AWS and Azure experience
· Static and behavioral threat analysis, i.e., analyzing documents, applications, and sites for potential threats.
QUALIFICATIONS:
- Bachelor’s Degree from a 4-year accredited institution and a minimum of 4 years of related experience required; or 8 years of Information Security experience required
- 4 years of Cybersecurity Engineering or Architecting experience required
- Cybersecurity-related certifications such as Certified Information Security Professional (CISSP), GIAC Defensible Security Architecture (GDSA), GIAC Certified Incident Handler (GCIH), CERT Certified Computer Security Incident Handler (CSIH), GIAC Certified Forensic Examiner (GCFE), and Offensive Security Certified Professional (OSCP)
- Experience and solid working knowledge of cybersecurity and network analysis tools, network topologies, intrusion detection methodologies, Windows systems, and preferably Linux systems analysis for evidence of compromise
- Familiarity with the requirements of NIST SP 800-53, FFIEC Booklets, and Critical Security Controls
Questions Candidates Need to Answer:
· Explain the PICERL Incident Response Lifecycle.
· What are some major improvements in CVSS v4 over CVSS v3
· What would your first steps be if you came into an organization that did not have a Vulnerability Management or SIEM solution?
· Explain Supply Chain Risk
DUTIES AND RESPONSIBILITIES:
- Design and architect secure systems, networks, and applications to protect against cyber threats
- Evaluate and recommend security technologies and tools to enhance the organization's security posture
- Implement and manage security information and event management (SIEM) systems
- Conduct penetration testing and ethical hacking to identify and remediate vulnerabilities
- Define and assess compliance security configurations for hardware, software, and cloud services
- Provide expertise in security governance and compliance frameworks, e.g., CIS Benchmarks
- Develop and maintain security documentation, including security policies and procedures
- Define, conduct, and report on internal and 3rd party Red Team, Purple Team, and Blue Team assessments and exercises
- Collaborate with the Application and Development to ensure that all custom development, both on-premises and in the cloud, meets strict security guidelines
- Define, conduct, and report on digital forensics procedures, policies, and deliverables
- Conduct regular tabletop exercises to test and improve the effectiveness of incident response plans
- Active participation in the Information and Cybersecurity, Bank Vulnerability Management, and Data Loss Prevention programs, including efforts related to vulnerability remediation planning, tracking, implementation, threat research, log analysis, end-user security education and training, and recommendations for process improvement
- Participate in change management processes when remediating threats or vulnerabilities
- Provide after-hours and weekend analysis on an as-needed basis outside of general working hours
- Other projects as assigned
SUPERVISORY RESPONSIBILITIES:
- Supervise assigned employees by organizing and monitoring work progress
- Maintain staff by recruiting, selecting, orienting, and training employees
- Manage performance of employees through development, coaching, and counseling
Job Types: Full-time, Contract
Pay: $55.00 - $65.00 per hour
Experience level:
Schedule:
Experience:
- Security engineering: 10 years (Required)
- Cybersecurity: 8 years (Required)
License/Certification:
- GIAC Certification (Required)
- CISSP (Required)
- OSCP (Required)
- GCIH (Required)
- GDSA (Required)
- CSIH (Required)
Ability to Commute:
- Chevy Chase, MD 20815 (Required)
Work Location: In person