Job Description

Responsibilities

Conduct vulnerability assessments and penetration testing on applications, networks, and systems to identify security weaknesses. Develop and implement system security plans, ensuring adherence to NIST standards, ISO 27000 series, PCI, FISMA, and other relevant frameworks. Manage identity & access management (IAM), including LDAP, SSO, RBAC, and PKI solutions to enforce secure authentication and authorization processes. Monitor network traffic using SIEM tools like Splunk and SolarWinds for threat detection & response; analyze logs for incident management. Configure and maintain security devices such as firewalls (Cisco ASA), IDS/IPS systems, VPNs, Cisco ISE, and network segmentation strategies including VLANs and load balancing. Perform system hardening on operating systems including Linux (Debian, CentOS, Ubuntu), Windows, macOS, and UNIX variants; utilize SELinux policies for enhanced security. Implement encryption protocols (SSL/TLS), IPsec VPNs, and secure cloud infrastructure using AWS, Azure, Google Cloud Platform, PaaS/IaaS models. Collaborate with development teams following Agile SDLC practices to embed security into software deployment pipelines using DevOps tools like Terraform, Ansible, CI/CD workflows. Maintain compliance with cybersecurity standards such as DOD DIACAP, RMF, COBIT; support audit processes through documentation of security controls. Conduct threat intelligence research and threat detection & response activities to proactively mitigate risks across network architecture including LAN/WAN/MPLS infrastructures. Support incident recovery efforts by analyzing attack frameworks and performing computer forensics when necessary.

Requirements

Bachelor's degree in Computer Science or related field; relevant certifications such as CISSP, CISA, CEH are preferred. Proven experience in application security engineering within complex IT environments involving network infrastructure (LAN/WAN), routing protocols (OSPF/EIGRP/BGP), TCP/IP stack management. Strong knowledge of network protocols (HTTP/S, SOAP), network architecture design principles including high availability & disaster recovery planning. Hands-on experience with firewalls (Cisco ASA), IDS/IPS systems, SIEM platforms (Splunk), VPN solutions (IPsec/VPN clients), load balancers, and cloud services (AWS/Azure). Familiarity with system administration across multiple operating systems: Windows Server/Workstation, Linux distributions (Debian/CentOS/Ubuntu), macOS; scripting skills in Bash or PowerShell are advantageous. Understanding of cybersecurity frameworks such as NIST standards, ISO 27000 series; experience implementing system security plans compliant with FISMA/FedRAMP requirements. Knowledge of vulnerability management tools and techniques including vulnerability research & assessment tools; experience with threat detection & response methodologies. Ability to analyze logs using log analysis tools like SolarWinds or New Relic; perform incident management efficiently under pressure. Excellent problem-solving skills combined with strong communication abilities to work effectively across technical teams and stakeholders. This position offers an opportunity to work at the forefront of cybersecurity within a dynamic organization committed to maintaining the highest standards of information security across diverse environments including cloud computing platforms and traditional IT infrastructure.
Job Type: Full-time

Pay: $70,000.00-$120,000.00 per year