Job Description

MAXISIQ is seeking a Cybersecurity Engineer (Principal) to support mission critical operations in Arlington, VA. This is a full-time position pending award, expected in March 2025.

What You'll Be Doing:

• Administer, configure, manage, patch, upgrade, design, and optimize network and host-based security tools and systems.
• Evaluate, install, configure, test, and update network and host-based security systems and hardware.
• Develop network and host-based security systems and security operation center knowledge base articles, how-to documents, standard operating procedures, and policies.
• Develop scripts or code to automate operations, administration, maintenance, or analysis of data and systems.
• Develop, document, and review secure baseline configurations for each technology used within the environment.
• Assist in determining authorization boundaries and placement of new systems within the Agency’s enterprise architecture.
• Support the development of new systems, and modernization of legacy systems that are in line with Security and Enterprise Architecture requirements.
• Design, develop, and maintain detailed security drawings.
• Develop and document Solution Architecture Models, Threat Models, and CONOPS Security Operations.
• Perform security impact analyses for proposed changes to assigned systems. Review IT system plans to ensure designs meet governmental standards and provide an appropriate level of protection for client systems and data.
• Conduct gap analysis of system requirements and components.
• Assist PM in task and deliverable management for the Security Engineering Team.

Qualifications

Education:

• Bachelor’s degree in Computer Science, Information Technology, or related field
• DoD 8570 IAM/IAT Level II certification. (This will change to a DoD 8140 equivalent once a DISA 8140 policy is released.)

Clearance:

• Secret clearance

Experience:

• 10 years of relevant experience.
• Experience administering a broad range of network security and cybersecurity tools, such as firewalls, web/email proxies, content filters, EDR/HBSS, CASB, SASE-SWG, zero trust, vulnerability scanners (Qualys/Security Center/ACAS), case management systems, SIEM, Tanium/BigFix and IDS/IPS sensors.
• Experience with the following: Windows Server 2016/2019/2022, Windows 10/11, Syslog (rsyslog, syslog-ng, etc), Linux variants (RedHat/CentOS/Ubuntu), Event log collection, scripting (Python, Perl, Bash, PowerShell), VMWare.
• Familiar with multi-tiered network applications, common ports, and protocols used in those communications.
• Thorough understanding and knowledge of TCP/IP networking.
• Ability to perform online research and comprehend attack signatures while comparing them to network traffic to perform a proper analysis of detections.
• Strong analytical and organizational skills.
• Ability to communicate complex concepts efficiently and accurately to a range of technical and non-technical audiences.

Additional Information

All your information will be kept confidential according to EEO guidelines. #CJ

** We are an Equal Opportunity Employer that considers all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or any other protected class.**