Jobs
>
Denver

    Information Systems Security Engineer - Denver, United States - DPG Solutions LLC

    DPG Solutions LLC
    DPG Solutions LLC Denver, United States

    5 days ago

    Default job background
    Description
    Job Description


    Job Description Salary:
    Security Clearance Required

    TS/SCI


    Information Systems Security Engineer (ISSE):
    DPG Solutions

    has an immediate career-growth opportunity for a collaborative and highly skilled Information Systems Security Engineer.


    The ISSE will join our Tech Ops IV program engineering team in Aurora, CO, supporting a high priority 24x7 operational system.

    The ISSE performs core activities to include providing certified services and support for Information Assurance/Program Protection efforts for compliance with governing DoD Cybersecurity directives.

    This position will support activities of the program to target, assess, and report risks and vulnerabilities of Intelligence Community organization systems in order to provide senior decision makers with actionable data to make strategic decisions.

    The ISSE shall perform, or review, technical security assessments of computing environments to identify points of vulnerability and non-compliance with established Information Assurance (IA) standards, regulations and recommend mitigation strategies.

    This position is responsible for the maintenance and administration of multiple domains, including a 24/7 operational system and a test facility.

    Must be willing to occasionally provide after hour support to the 24/7 operational system.


    Duties and Responsibilities:


    Implement Information Assurance (IA) processes, provide guidance, and develop documentation throughout the system development life-cycle via the RMF resource in ServiceNOW.

    Develop, implement, and document formal security policies and System Security Plans (SSP) throughout the program and monitor compliance to these policies during all phases of the Risk Management Framework (RMF) process.

    Utilize Enterprise Security Services to provide analysis of vulnerabilities and compliance risks in ACAS, Enterprise IT audit logs in ArcSight and Splunk, McAfee Host-Based Security Services (HBSS), User Activity Monitoring (UAM), and Cyber Terrain Mapping (CTM) on 100+ nodes.

    Monitor Heat Map Score matrix and evaluate cyber risk data, keeping the score at acceptable risk levels for the security categorization of the asset(s) and their Risk Evaluation Lanes (REL).

    Care for and deliver system authorization and accreditation packages, for 4 assets that span 3 different classification levels.
    Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans, security plans, etc.).

    Assess/calculate risk based on threats, vulnerabilities, and shortfalls uncovered in routine analyzation of Continuous Monitoring (ConMon) controls and provide those results as Body of Evidence (BoE) to be evaluated in 7, 30, 90 and 365 day increments as the control metrics require.

    Direct activities desired to remediate system-level information security weaknesses tracked via the FISMA (POA M) process.

    Document the elements of the plans, milestones for correcting the weaknesses, and scheduled completion dates for the milestones, periodically reporting remediation progress as necessary.

    Brief guidance, as needed, on the status of action items and/or results of activities affecting the security posture of the program.

    Able to collaborate and communicate effectively with other system engineers, system administrators, software developers, and information assurance professionals.


    Qualifications:
    Minimum 5 years' experience, in a security position for the government or government contractor in the Intelligence Community (IC).
    A Bachelor's Degree in Information Technology, Information Systems Security, Cybersecurity, or related field.
    DoD IAT level 2 or greater cybersecurity certification per DoD

    Experience in security systems engineering involving Linux and CENTOS operation systems and application solutions in both stand-alone and LAN/WAN configurations.

    Must be a US Citizen with current/active TS/SCI with polygraph.


    Required Skills:


    Minimum of 10 years' related experience in Cybersecurity, Systems or Software Engineering, for the government or government contractor, if other than IC position.

    Experience developing Security Authorization Requirements, performing vulnerability assessments, and implementing threat mitigation updates on embedded systems and products.
    Experience configuring and hardening COTS components with STIGs.
    Continuous Monitoring and Network monitoring experience.
    Experience with product development including architecture, requirements, design, integration and testing.
    Experience with compliance implementation of security requirements (i.e. Risk Management Framework and other A A processes).
    Experience participating in technical reviews with both external and internal customers.

    Coordinate with ISSO/ISSM to update POA M and reflect open vulnerabilities associated with servers and workstations, develop remediation plans to include milestone completion dates and status updates, and include mitigation process for closed vulnerabilities.

    Participate in Configuration Control Board (CCB).


    Desired Skills:
    Experience using DISA Security Technical Implementation Guides (STIGs).
    Experience onboarding assets to centrally managed Enterprise solutions.
    Experience conducting risk analysis on products and system components through review of CVEs, plugins, IAVAs.
    Experience in conducting software due diligence with COTS/GOTS and proprietary solutions.
    Positive, self-motivated individual who can complete tasks independently.
    Experience with multi-level security solutions.
    Experience working in Systems Engineering on complex embedded systems.
    CISSP (ISC)2


    Required Education (including Major):
    Bachelor's Degree in Engineering, or related Science, Technology, Engineering, Mathematics (STEM) degree program.
    10 years' experience in lieu of formal degree.


    Location:
    Aurora, CO


    Benefits at a glance:
    Competitive Salary
    Company Funded/Immediately vested 25% 401k Profit Sharing Plan
    All Benefits and Premiums paid by company and with company HSA contribution
    Quarterly Equity Share Bonuses
    250 hours of Leave Annually
    2 x Company Sponsored Annual Events for the employees and their families
    Education Benefits

    #J-18808-Ljbffr
  • Crusoe

    Security Engineer

    3 weeks ago

    Crusoe Denver, United States

    Job Description · Job DescriptionCrusoe Energy is on a mission to unlock value in stranded energy resources through the power of computation. · Take a look at what we do - · We aim to align the long term interests of the climate with the future of global computing infrastructu ...

  • Bank of America

    Senior Security Engineer

    3 weeks ago

    Bank of America Denver, United States Full time

    Description · : The Information Security Engineer will lead strategic security efforts to expand technology offerings within the Merchant and Small Business technology portfolio. This role will work across various security and technology teams to define, drive, and deliver major ...

  • The College Board

    Security Engineer

    2 days ago

    The College Board Denver, United States

    Technology Division, Cyber Security Operations Team · 100% Remote (working EST) · About the Team: · The Cyber Security Operations team is critical to the strategic foundation of our products, most notably the secure delivery of our new Digital SAT and AP programs. We are a hig ...

  • Apex Systems, Inc.

    Cyber Security Engineer

    1 week ago

    Apex Systems, Inc. Denver, United States Part time

    Job#: · Job Description: · Monitoring health of system and working through alerts. Work with other teams using the tool, making changes if they see something odd. Any indication of intrusion do root cause analysis. · Project Scope- Industrial Defender Cyber engineer- OT Space To ...

  • Fastly

    Staff Security Engineer

    1 day ago

    Fastly Denver, United States

    Fastly helps people stay better connected with the things they love. Fastlys edge cloud platform enables customers to create great digital experiences quickly, securely, and reliably by processing, serving, and securing our customers applications as close to their end-users as po ...

  • Oracle

    Principal Security Engineer

    3 weeks ago

    Oracle Denver, United States

    Job Description · OCI Security Architecture is looking for an experienced security engineer to join our team. The candidate will get the opportunity to work with and learn from outstanding security engineers and architects across Oracle. They will be a security lead and collabora ...

  • Klaviyo

    Senior Security Engineer

    2 days ago

    Klaviyo Denver, United States

    At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditi ...

  • Klaviyo

    Senior Security Engineer

    5 days ago

    Klaviyo Denver, United States

    At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditi ...

  • Ping Identity External Job Board

    Infrastructure Security Engineer

    4 weeks ago

    Ping Identity External Job Board Denver, United States

    Job Description · Job DescriptionAbout Ping Identity: · At Ping Identity, we believe in making digital experiences both secure and seamless for all users, without compromise. We call this digital freedom. And it's not just something we provide our customers. It's something that ...

  • Ampcus

    Cloud Security Engineer

    2 weeks ago

    Ampcus Denver, United States

    Cloud Security Engineer · About the role · Within the Identity and Access Management (IAM) team, the Cloud Security Engineer will be responsible for designing, implementing, and maintaining solutions to secure our identities within our cloud environments. This individual will co ...

  • Diverse Lynx

    Network Security Engineer

    2 days ago

    Diverse Lynx Denver, United States

    Network Security Engineer · Denver, CO (3-4 Weeks Onsite & Then remote) · Fulltime Position · Infoblox + Palo Alto exp must · JD: · 7+ years of experience · Palo Alto FW's, and Panorama Experience, PCNSE certificate would be added advantage · Allot DDOS · AWS Security Gr ...

  • Coalfire

    Security Engineer, DevSecOps

    3 weeks ago

    Coalfire Denver, United States

    Security Engineer, DevSecOps | Remote US · Coalfire · Coalfire is the cybersecurity advisor that combines extensive cloud expertise, technology, and innovative approaches to help clients develop scalable programs that improve their security posture and fuel their continued succ ...

  • Omni Inclusive

    Network Security Engineer

    2 days ago

    Omni Inclusive Denver, United States

    Job Description: - Bachelors or equivalent experience; preferred Bachelor's degree in Computer Science · Minimum of 4 years hands-on experience with System, Network, or Security Administration including firewall · Minimum of 3+ years hands-on experience including Certification ...

  • Diverse Lynx

    Network Security Engineer

    2 days ago

    Diverse Lynx Denver, United States

    Network Security Engineer · Denver, CO (3-4 Weeks Onsite & Then remote) · Fulltime Position · Infoblox + Palo Alto exp must · JD: · 7+ years of experience · Palo Alto FW's, and Panorama Experience, PCNSE certificate would be added advantage · Allot DDOS · AWS Security Gro ...

  • Horizon Ventures

    Security Engineer

    1 week ago

    Horizon Ventures Applewood, United States

    This is the work environment: · The position is located in the Applewood zSystem Administration & Processing Services team/workstream. Our task is to provide IBM zServer systems and central storage systems for DATEV. It is part of the IT infrastructure department. · Our activitie ...

  • Tech Rakers

    Security engineer

    2 weeks ago

    Tech Rakers Denver, United States

    Candidates MUST have DEVELOPMENT experience with SOAR, Splunk and Python. SOAR is a security automation tool for Splunk. · Locations: Denver, CO or Chicago, IL preferred then Addison, TX and Charlotte, NC (3x a week onsite) · Contract/contract to hire and Contract Length: 18 mont ...

  • Western Union

    Security Engineer

    3 weeks ago

    Western Union Denver, United States

    Information Security Engineer (Western Union, LLC, Denver, CO) Act as the escalation point for infrastructure protection security systems; Perform security system maintenance and troubleshooting tasks; Review escalated security systems alerts and logs; Correlate logs and alerts i ...

  • RingCentral

    Security Application Engineer: Remote US

    3 days ago

    RingCentral Denver, United States Full time

    Security Application Engineer, Application Security Team: (Remote US) · The RingCentral environment is dynamic, success-driven, team-oriented and committed to providing world class service for its customers. Do you have the ability to thrive in a fast-paced environment? We are lo ...

  • BridgeView

    Sr. Security Network Engineer

    2 weeks ago

    BridgeView Denver, United States

    Bridgeview is currently seeking a Network Engineer for one of our clients. If you love building and supporting technology solutions that make businesses successful, then read on for more details. · TITLE: Network Engineer · LOCATION: NE Denver / Aurora, CO – Hybrid 3 days WFH, 2 ...

  • Ping Identity

    Senior Product Security Engineer

    2 days ago

    Ping Identity Denver, United States

    About Ping Identity: At Ping Identity, we believe in making digital experiences both secure and seamless for all users, without compromise. We call this digital freedom. And it's not just something we provide our customers. It's something that inspires our company. People don't c ...