- Monitor multiple threat and vulnerability sources to evaluate technical risk to the Government i.e. SANS, US-CERT advisories, DHS Information Security Vulnerability Bulletins and communicate relevant infrastructure alerts, bulletins, and technical advisories to the Government.
- The technical scanning and remediation and reporting of systems hardware, software vulnerabilities.
- Coordination of scanning methodology and Patch management, monitoring, deployment reporting, piloting, operational coordination and testing.
- Systems technical risk status, data analytics and weakness remediation reporting.
- Security Architecture consultation, review and documentation of new systems, test systems and changes to new and existing Government systems to ensure compliance with baseline security and best practices.
- The development and maintenance Standard Operating Procedures to ensure coordinated risk monitoring and reporting.
- Make security content (e.g., Firewall, Router Switch) recommendations to include new access control, filters or ruleset modifications, removals to improve security posture and mitigate cyber threats.
- Assist the Government with the reporting and management of system level security violations and incidents.
- Assist with development of system security engineering SOPs, playbooks, work instructions, and other procedures and processes to mature cyber security capabilities.
- Bachelor's degree in Computer Science, Information Technology, Computer Forensics, Cyber Security or similar field with 12+ years of experience. Additional experience in lieu of degree.
- 8+ years of successfully implementing advanced cyber security technology in a complex environment
- 5+ years' experience with CISCO and Juniper Networks
- Understanding of networking environments and related Technologies (routing, switching, VLANs, subnets, firewalls); Windows operating systems
- Understanding of IT security principals, technologies, best practices to include logical access control; PKI and other encryption methods; network-based and host-based IDS/IPS; security configuration baselines; auditing; vulnerability discovery and management
- Ability to work independently to identify errors, pinpoint root causes, and devise solutions with minimal oversight;
- Extensive in-depth technical experience with network infrastructure, operating systems, database, and web applications
- Experience with scanning and elevation tools (Nessus, Retina, Wireshark, NMAP, etc.); and,
- Excellent verbal and written communication skills.
- Understanding of networking environment to include networking technologies (routing, switching, VLANs, subnets, firewalls); TCO/IP stack' Windows operating systems; common networking protocols; and common enterprise technologies
- Demonstrated experience in testing and implementing network vulnerability and protection
- Senior-level knowledge of information security concepts, policy frameworks, and best practices
- Experience with Hardware Lifecycle Management, Software Maintenance and Assurance, Logging and Configuration Management
- LINUX/UNIX-based operating systems; common networking protocols; and common enterprise technologies;
- ISC2 Certified Authorization Professional (CAP) or ISC2 Certified Cloud Security Professional (CCSP) certification or CompTIA Certified Advanced Security Practitioner (CASP+)
- CISSP, CISA, GIAC, Security +, Certified Ethnical Hacker, etc.
OPR Windows - Miami, United States - OneZero Solutions
Description
We are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support.
We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technically proficient and technically capable across a comprehensive range of cyber mission areas.
OneZero full-time employees receive an extremely competitive benefits package that includes health/dental/vision/life insurance plans, 401K with company matching, PTO & paid holidays, employee referral program, and educational assistance.
Additional details can be found on our website at:Position Title: OPR Windows
Clearance:
Secret
Location:
Miami, FL
The OneZero Employee shall support CBP/OPR/CI in a wide range of systems engineering, administration, and Cyber security & regulatory compliance services necessary to maintain and secure OPR information technology networks used in the detection and investigations of cybercrimes and CBP policy violations.
Primary Responsibilities:
Qualifications:
Clearance:
All CBP SOC employees are required to successfully complete a CBP Background Investigation to support this program
ONSITE REQUIREMENTS:
5 days/week for 90 days then 2 day/week (Maybe < 90 days if known Sys Admin)
Required Certifications
One or more of the following:
CAP - Certified Authorization Professional
CCSP - Certified Cloud Security Professional
Certified Advanced Security Professional (CASP+)
CompTIA Security+
CompTIA Security+ CE
GCIH - Incident Handler
GCWN - Windows Security Administrator
GISF - Security Fundamentals
GICSP -Cyber Security Professional
GSSP
SEI (Software Engineering Institute)
CISSP - Certified Information Systems Security
CSSLP - Certified Secure Software Lifecycle Professional
SSCP - Systems Security Certified Practitioner
CCNP Security
CEH - Certified Ethical Hacker
ENSA - EC-Council Network Security Administrator
ECSP - EC-Council Certified Secure Programmer
MCSE - Microsoft Certified Solutions Expert (Server)
RHCE
RHCA
VCA (Certified Associate)
VCP (Certified Professional)
VCAP (Certified Advanced Professional)
VCIX (Implementation Expert)
VCDX (Certified Design Expert)
Converged Infrastructure Specialist
Certified Implementation Engineer Specialist
Certified Data Administrator Professional
Certified Storage Associate
CSSBB - Certified Six Sigma Black Belt
Splunk Certified Architect
Preferred Qualifications:
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.