InfoSec Engineer - Alexandria, United States - Randstad USA

Description

job summary:
Job Title: Information Security Engineer (Active Directory Focus)

Job Description:

We are seeking an experienced Information Security Engineer with a large focus on Active Directory to join our team responsible for ensuring compliance with industry standards and regulatory requirements. As part of a small team, you will play a crucial role in maintaining and managing our Information Technology Security (ITS) tools for threat detection and vulnerability analysis, with a specific emphasis on Active Directory security. Your responsibilities will include administering security tools such as Splunk, FireEye Network Threat protection, Tenable vulnerability scanning, Palo Alto Panorama, and other related systems. Additionally, you will provide security consultation for ITS projects, participate in incident response activities, and contribute to the development of standards, procedures, and documentation related to Active Directory security.

Duties and Responsibilities:

Monitor for and ensure compliance with industry and regulatory requirements, with a focus on Active Directory security.

Maintain and sustain ITS Security tools for threat and vulnerability analysis, including Active Directory security monitoring.

Administer InfoSec tools such as Splunk, FireEye, Tenable, Palo Alto Panorama, etc., with attention to Active Directory integration.

Provide security consultation on ITS projects and committees, especially regarding Active Directory security best practices.

Assist in the development and lifecycle support of Active Directory security standards, procedures, and documentation.

Participate in incident response activities related to Active Directory security incidents. Requirements:

Knowledge/Skills/Abilities (KSAs):

Good working knowledge of Ethernet, TCP/IP networking, and associated protocols.

Familiarity with common operating systems (Windows, Unix, Linux, Apple OS's a plus), with a focus on Windows Server and Active Directory environments.

In-depth understanding of Active Directory concepts, including user and group management, Group Policy, LDAP, and Kerberos authentication.

Knowledge of computer networking concepts, network security methodologies, and access management, with specific experience in Active Directory security.

Experience in cybersecurity designs, risk management processes, and privacy principles, with a focus on Active Directory security controls.

Familiarity with industry standards such as CIS benchmarks, NIST frameworks, PCI-DSS, etc., with an emphasis on Active Directory security compliance. Personal Attributes:

Ability to work in team environments and negotiate with stakeholders.

Innovative thinker with analytical and problem-solving skills, especially in Active Directory security contexts.

Exceptional written, oral, and interpersonal communication skills.

Ability to meet deadlines and prioritize tasks effectively, particularly in Active Directory security projects. Professional Certifications or Proficiencies (Preferred):

CISSP, CISM, GIAC certifications, MCSE, RHCE, or equivalent certifications with a focus on Active Directory security. Experience:

Demonstrated experience in compliance monitoring, technical support environments, and troubleshooting complex system problems, with a focus on Active Directory environments.

Experience in project and procedure documentation, metrics, and reporting related to Active Directory security.
location: Alexandria, Virginia
job type: Contract
salary: $ per hour
work hours: 8am to 5pm
education: Bachelors

responsibilities:
Active Directory focused with additonal requirments below.

InfoSec Engineer weighted:

Duties:

Position is also part of a small team responsible for monitoring for and ensuring compliance to industry and local, state, and some federal requirements.

This position performs maintenance and sustainment of the ITS Security tools used for threat and vulnerability analysis using the applications supporting this function.

Administration of Info Sec tools and applications used for this purpose include a Security Information & Event Management system (Splunk), FireEye Network Threat protection, a governance risk and compliance (GRC) system, Tenable vulnerability scanning, Palo Alto Panorama and other related applications and systems.

Provide ITS Security consultation on ITS projects and committees. Position is responsible for assisting with the development, and lifecycle support of standards, procedures, processes & related documentation. Positions is responsible for assisting in the development of metrics & reporting requirements & timelines. This position also participates in incident response work.

Knowledge/Skills/Abilities (KSAs broad examples):

Good working knowledge of Ethernet and TCP/IP networking and associated IP and application protocols.

Good working knowledge of common operating systems for workstations and servers including Microsoft Windows, Unix, Linux, Apple OS's a plus.

Knowledge of computer networking concepts and protocols (e.g. TCP/IP, DNS) and network security methodologies.

Knowledge of network access, identity, and access management (e.g. public key infrastructure, Oauth, OpenID, SAML, SPML).

Knowledge of capabilities and applications of network equipment including routers, switches, servers, transmission media, and related hardware.

Knowledge of remote access technology concepts.

Knowledge of application firewall concepts and functions (e.g. single point of authentication enforcement, data anonymization, DLP scanning, SSL security).

Work experience in cybersecurity designs for systems, networks, and multi-level security requirements or requirements for processing multiple classification levels of data.

Knowledge of risk management processes and experience in conducting risk assessments.

Familiarity with the application of privacy principles to organizational requirements.

Knowledge of identity and access management methods.

Knowledge of industry, state and federal standards including CIS benchmarks and framework, NIST frameworks and standards, PCI-DSS and others.

Personal Attributes:

Ability to work in team environments and to negotiate with multiple stakeholders.

Innovative thinker who is self-directed and resourceful.

strong analytical and problem-solving skills capable of managing projects that drive business objectives.

Exceptional written, oral, and interpersonal communication skills.

Ability to meet tight deadlines and to prioritize tasks.

Professional Certifications or proficiencies (Preferred):

One or more of the following certifications is preferred: CISSP, CISM, GIAC certifications, MCSE, RHCE

Level and type of experience baselines we can understand what a given candidate may or may not bring:

Demonstrated experience in developing, monitoring & maintaining compliance to policy and standards

Demonstrated progressively responsible experience with technical computing support environments

Demonstrated experience in dealing with multi-user computer systems in an enterprise environment

Demonstrated experience in troubleshooting complex system problems to resolution

Demonstrated experience in project and procedure documentation

Demonstrated experience in metrics and reporting
qualifications:

Experience level: Experienced

Minimum 3 years of experience

Education: Bachelors
skills:

Active Directory (3 years of experience is preferred)

Windows (1 year of experience is preferred)

Windows

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility).

Applications accepted on ongoing basis until filled.