Full Job Description
Job ID: 24-03289
Senior Cyber Security Engineer
Hybrid/ Herndon, VA
MUST:
Secret clearable
Experienced Senior Cyber Security Engineer
Cisco or Palo Alto certifications (CCNA, CCIE, PCNSE, PCDRA) required
Certifications such as CISSP, CRISC, CISM, CCSP preferred
5-8 years of experience in information security, with a focus on security architecture, threat detection & response, and security operations management (required).
Experience with incident detection, response, and forensics (required).
Experience with design, delivery, and management of security information systems (required).
Strong analytical, problem-solving, and decision-making skills.
Excellent communication, collaboration, and interpersonal skills.
Ability to work independently and as part of a team.
Ability to manage multiple priorities and meet deadlines in a fast-paced environment.
Working knowledge of security technologies including firewalls, VPNs, DLP, IDS/IPS, and web proxies.
Knowledge of Palo Alto's core products, especially the Strata platform which includes physical firewalls and the Panorama management system
Ability to design, deploy, operate, and manage Palo Alto firewall solutions.
Familiarity with cloud security principles and Palo Alto's cloud offerings like Prisma Cloud.
Understanding of security operations concepts like SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation and Response), which are relevant for XDR.
Hands-on experience with Palo Alto firewall configuration, policy creation, and troubleshooting required
Experience with threat detection, incident response, and forensics methodologies.
Proficiency in scripting languages (Python, Bash) for automation and security tooling.
Strong understanding of system security engineering (SSE) principles and processes.
Desired Qualifications:
Experience with cloud security principles and best practices (AWS Security, Azure Security etc.).
Experience with container security (Docker, Kubernetes).
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (required).
DUTIES:
Responsible for a wide range of security activities, including security architecture, threat detection and response, and security operations management. You will work collaboratively with other teams to ensure our security posture aligns with business objective
Security Architecture & Design
Design and implement secure system architectures, controls, and procedures aligned with industry best practices (NIST CSF, MITRE ATT&CK) and compliance frameworks.
Champion the integration of security considerations throughout the software development lifecycle (DevSecOps).
Stay informed on emerging security threats and trends to proactively improve our security posture.
Threat Detection & Response
Oversee the implementation and tuning of security monitoring tools (SIEM, XDR) for effective threat detection and incident response.
Lead incident response activities, including investigation, containment, eradication, and recovery.
Develop and maintain security playbooks to ensure efficient incident handling.
Security Operations Management :
Mentor junior security team members on best practices and security tools.
Develop, implement, and maintain the organization s GRC framework to ensure compliance with industry standards and regulations.
Conduct risk assessments and analyze the potential impact on the organization s operations, making recommendations to mitigate identified risks.
Monitor and evaluate compliance with security policies, procedures, and regulatory requirements
Collaborate with cross-functional teams to integrate GRC practices into business processes and ensure effective risk management.
Prepare and present detailed reports on compliance status, risk assessments, and mitigation strategies to senior management.
Facilitate internal and external audits, ensuring all necessary documentation and evidence of compliance are readily available.
Stay updated on evolving regulatory requirements, industry standards, and best practices in GRC.
Provide training and guidance to staff on GRC policies and procedures to promote a culture of compliance within the organization.
Manage incident response processes and ensure timely reporting and resolution of security incidents in accordance with regulatory requirements.
Performs work under minimal supervision.
Handles complex issues and problems, and refers only the most complex issues to higher-level staff. Possesses comprehensive knowledge of subject matter. May act as a lead.
Quadrant is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, status as a protected veteran, or status as an individual with a disability.
Senior Cyber Security Engineer
Hybrid/ Herndon, VA
MUST:
Secret clearable
Experienced Senior Cyber Security Engineer
Cisco or Palo Alto certifications (CCNA, CCIE, PCNSE, PCDRA) required
Certifications such as CISSP, CRISC, CISM, CCSP preferred
5-8 years of experience in information security, with a focus on security architecture, threat detection & response, and security operations management (required).
Experience with incident detection, response, and forensics (required).
Experience with design, delivery, and management of security information systems (required).
Strong analytical, problem-solving, and decision-making skills.
Excellent communication, collaboration, and interpersonal skills.
Ability to work independently and as part of a team.
Ability to manage multiple priorities and meet deadlines in a fast-paced environment.
Working knowledge of security technologies including firewalls, VPNs, DLP, IDS/IPS, and web proxies.
Knowledge of Palo Alto's core products, especially the Strata platform which includes physical firewalls and the Panorama management system
Ability to design, deploy, operate, and manage Palo Alto firewall solutions.
Familiarity with cloud security principles and Palo Alto's cloud offerings like Prisma Cloud.
Understanding of security operations concepts like SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation and Response), which are relevant for XDR.
Hands-on experience with Palo Alto firewall configuration, policy creation, and troubleshooting required
Experience with threat detection, incident response, and forensics methodologies.
Proficiency in scripting languages (Python, Bash) for automation and security tooling.
Strong understanding of system security engineering (SSE) principles and processes.
Desired Qualifications:
Experience with cloud security principles and best practices (AWS Security, Azure Security etc.).
Experience with container security (Docker, Kubernetes).
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (required).
DUTIES:
Responsible for a wide range of security activities, including security architecture, threat detection and response, and security operations management. You will work collaboratively with other teams to ensure our security posture aligns with business objective
Security Architecture & Design
Design and implement secure system architectures, controls, and procedures aligned with industry best practices (NIST CSF, MITRE ATT&CK) and compliance frameworks.
Champion the integration of security considerations throughout the software development lifecycle (DevSecOps).
Stay informed on emerging security threats and trends to proactively improve our security posture.
Threat Detection & Response
Oversee the implementation and tuning of security monitoring tools (SIEM, XDR) for effective threat detection and incident response.
Lead incident response activities, including investigation, containment, eradication, and recovery.
Develop and maintain security playbooks to ensure efficient incident handling.
Security Operations Management :
Mentor junior security team members on best practices and security tools.
Develop, implement, and maintain the organization s GRC framework to ensure compliance with industry standards and regulations.
Conduct risk assessments and analyze the potential impact on the organization s operations, making recommendations to mitigate identified risks.
Monitor and evaluate compliance with security policies, procedures, and regulatory requirements
Collaborate with cross-functional teams to integrate GRC practices into business processes and ensure effective risk management.
Prepare and present detailed reports on compliance status, risk assessments, and mitigation strategies to senior management.
Facilitate internal and external audits, ensuring all necessary documentation and evidence of compliance are readily available.
Stay updated on evolving regulatory requirements, industry standards, and best practices in GRC.
Provide training and guidance to staff on GRC policies and procedures to promote a culture of compliance within the organization.
Manage incident response processes and ensure timely reporting and resolution of security incidents in accordance with regulatory requirements.
Performs work under minimal supervision.
Handles complex issues and problems, and refers only the most complex issues to higher-level staff. Possesses comprehensive knowledge of subject matter. May act as a lead.
Quadrant is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, status as a protected veteran, or status as an individual with a disability.
Job Information
Job Category:
Other
Spotlight
Employer
Related jobs
Chief Executive Officer
Family Tree
We are proud to partner with our client, Family Tree in seeking their next Chief Executive Officer (CEO). Family Tree is the only organization in the Denver metro area committed to addressing the inte...
Sep 20, 2024
Denver, CO
Head of Development
Success Academy Charter Schools
Aspen Leadership Group is proud to partner with Success Academy in the search for a Head of Development.
Success Academy seeks a visionary Head of Development to lead its fundraising efforts, managi...
Sep 20, 2024
New York, NY
Senior Director of Partnerships
iCivics
WHO WE ARE
iCivics reimagines civic education for American Democracy. Founded in 2009 by Supreme Court Justice Sandra Day OConnor, iCivics is dedicated to advancing civic learning and leading the move...
Sep 20, 2024
San Francisco, CA