Security Engineer Remote, Security Engineer Remote

We are hiring a Security Engineer for a remote opportunity.

Daily Duties :

• Manages validation of patches to both server and desktop clients and validates receipt of all current security and application patches
• Manages corresponding software monitoring services (i.e. whitelisting services)
• Executes or configures vulnerability scans and coordinates or otherwise conducts remedial actions for all identified computers
• Identify required patches through extensive research and review as well as initiates and coordinates end-user acceptance testing and approval via the change management process
• Manage process to deploy approved patches to all managed desktop clients, validate and reconcile results and provide status and detail reports to management for review
• Microsoft Office 365 Experience
• Deliver subject matter expertise of Office 365 with emphasis in security, architectural design, migration, management and support of implementations.
• Provide overall Office 365 security expertise including strong knowledge of Azure Active Directory, Azure Information Protection, Information Rights Management, single sign-on and multi-factor authentication and related technologies (including Microsoft Enterprise Mobility + Security)
• Demonstrate consultative capabilities by providing value added information to clients for connecting technology, security and the business value of Office 365.
• Drive Office 365 security adoption and lead technical effort to enable Azure Information Protection.
• Lead and participate in ongoing Office 365 security and strategy discussions.
• Stay current of all things Office 365, including changes & updates, roadmap & releases, and third-party solutions.
• Validates product upgrades, patches and .dat file deployment to both the server and desktop clients
• Validates receipt of current .dat files and takes remedial action on desktops
• Validates and recommends exclusion and scanning polices
• Provides status and detail reports to management for review
• Security Information and Event Management (SIEM)
• Manages and administers overall product configuration, upgrades and patches to ensure optimal performance
• Conduct daily review of system activity from all systems containing PHI as required by HIPAA and other pertinent laws and regulations to ensure data confidentiality, integrity and availability of monitored systems
• Create designated alerts and reports for both I.S. management and business unit management to ensure that suspicious activity is promptly addressed and reviewed
• Create alerts to ensure system security levels are maintained (i.e. generate real time alerts to I.S. management when critical changes are made impacting system integrity)
• Conduct forensics as needed or requested by both I.S. management and human resources and external agencies to ensure incidents are processed and documented timely and effectively
• Review of Systems Security Configurations and Role Based Access Control (RBAC)
• Conduct routine review of all accounts and corresponding security roles across all designated systems in partnership with business units and I.

S. staff with administrative privileges.

• Review existing system accounts to ensure that they are provisioned / de-provisioned on a timely basis with only authorized access levels and conduct process improvements as needed
• Engineer and develop recommendations for secure design and integration of LAN resources as well as become systems expert in security configurations of any new or upgraded LAN resources
• Work with IS management in the development of and documentation of all relevant standards and procedures, in general and specifically as they pertain to the Health Insurance Portability and Accountability Act (HIPAA) compliance and any other adopted framework for information security.
• Promptly report incidents and issues to the appropriate personnel and obtain additional supporting information to identify a successful plan for remediation.
• Other duties as assigned.

Qualifications :

• Education : Requires a College Degree or equivalent work experience.
• Minimum of 3 years security practices. Familiar with the managed care industry.
• Computer Information Systems Security Professional (CISSP), Computer Information Systems Auditor (CISA) preferred but not required.

Any other computer certifications such as Certified Ethical Hacker (CEH), Microsoft Certified Systems Engineer (MCSE) or SANS Global Information Assurance Certification (GIAC) recommended.

• Additional education courses / technical seminars within the PC / LAN / technical area helpful.
• Must be a effective team player and able to proactively enact changes to continuously improve the security of systems
• Minimum 3-5 years security administration experience in a multi-platform environment.
• Excellent organizational, communication and technical skills.
• Ability to perform problem determination and coordinate resolution with appropriate personnel.
• Ability to work collaboratively with other departments to analyze and resolve complex issues. Strong interpersonal skills to interface with management and staff at all levels within the organization and with vendors.
• Ability to apply complex security standards to various devices to ensure compliance and support to security principles.
• Ability to research layered security problems and identify recommendations which are both practical and able to be implemented given the risk and technological factors.

Position Details : Clearance : N / A

Clearance : N / A

US Citizenship required

Travel : < 10% (CONUS)

Centurion Consulting Group, LLC is an Equal Opportunity Employer EOE M / F / D / V

No third parties or subcontractors

Qualifications

Required Qualifications :

• Knowledge of Navy SATCOM security architectures, TRANSEC requirements, and federal agency certification / approval processes.
• Experience developing and working with SATCOM security architectures, such as Direct Sequence Spread Spectrum (DSSS) technique and End Cryptographic Unit (ECU) devices.
• Experience developing Key Management Infrastructure (KMI) including key management, key generation, and key sharing architectures in coordination with federal agency and associated security policies
• Current / active Secret clearance and eligible for TS / SCI.

Desired Qualifications :

• Bachelor's or Master's Degree in Electrical Engineering, Cybersecurity, or Computer Science (minimum 10 years of experience)
• Excellent writing and verbal communication skills, and email etiquette
• Proactive self-starter; work well independently and with teams in a collaborative environment

Responsibilities

Provide security engineering support to the U.S. Navy Wideband Anti-Jam Modem System (WAMS). Work with the Assistant Program Manager (APM) and Chief Engineer (CE) to develop system requirements, support system engineering execution, and participate in technical and programmatic exchanges with internal and external stakeholders to include Navy, Space Force, Space and Missile Defense Command (SMDC), and Defense Information Systems Agency (DISA).

Participate in program technical reviews; provide expert input and recommendations on cybersecurity issues to support system development and program execution.

Identify requirements to obtain federal agency approval of security components used by the WAMS program. Develop a Key and Certificate Management Plan (KCMP) and coordinate KCMP approval with federal approvers.

Coordinate with other Navy program offices, DISA, and other external stakeholders, as required for Transmission Security (TRANSEC) issues impacting the WAMS programs.

Essential Duties and Responsibilities :

• Inspects airline equipment and checks for any unauthorized items.
• Screens cargo using equipment / method designated by customer and according to customer’s specifications.
• Performs aircraft monitoring, passenger wanding and gate guarding according to customer’s specifications.
• Observes and monitors unit activity and facility surroundings when not performing inspection / validation duties.
• Performs all other duties as assigned by management.
• Reports to Operations Supervisor or Operations Manager, depending on size of unit.
• Activities overseen by Lead or Senior Lead, depending on size of unit.

Education :

High school diploma or GED

Requirements :

• New employees required to complete an FBI fingerprint check (SIDA Badge) and a confirmed 10-year background check (10 year listed; 5 year verified)
• Not have been convicted of any of the listed FAA Disqualifying Crimes;.
• Ability to bend, push, and lift up to 30 pounds on a regular basis in order to perform the essential functions of the job.
• Must be at least 18 years old.
• Hold a valid U.S. driver’s license
• Must be Covid-19 Vaccinated

Communication Skills :

Possess written and oral communication skills in English.

Certificates, Licenses and Registrations :

Environmental Requirements :

Works non standard work hours, evenings, weekends, holidays.

Demonstrated Competencies to be Successful in the Position :

• Security Mindset take pride in keeping the skies safe and the flights secure
• Trust - keeping promises and speaking the truth.
• Customer Focused - the willingness to listen and the duty to act promptly and appropriately.
• Team Spirit - integrity, experience, collaboration and open communication.
• Innovation creativity, seeking new ideas, continuous improvement though anticipating change and adapting to it.

3RC is seeking candidates with 12+ Years of cybersecurity experience to join our team as a Senior Information Systems Security Officer.

The selected candidate will perform security scans to identify vulnerabilities and risks, and work with the Engineering team to mitigate the risks.

The candidate is required to have experience with ensuring systems successfully complete the Assessments & Authorization (A&A) process.

They will work with other security and IT professionals in developing and implementing strategies to detect and mitigate threats to information systems, protect critical data sets, and provide assessments of system and network vulnerabilities.

They will analyze threats and develop and implement best practices methodologies for incident detection, reporting, and vulnerability remediation.

Primary Responsibilities :

• Plan and recommend modifications or adjustments based on exercise results or system environment.
• Properly document all systems security implementation, operations, and maintenance activities and update as necessary.
• Verify and update security documentation reflecting the application / system security design features.
• Assess the effectiveness of security controls.
• Assess all the configuration management (change configuration / release management) processes.
• Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.
• Analyze and report organizational security posture trends.
• Analyze and report system security posture trends.
• Assess adequate access controls based on principles of least privilege and need-to-know.
• Implement security measures to resolve vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.
• Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
• Mitigate / correct security deficiencies identified during security / certification testing and / or recommend risk acceptance for the appropriate senior leader or authorized representative.
• Verify minimum security requirements are in place for all applications.
• Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.

Required Qualifications :

• DoD 8570 certification (IAT or IAM Level 2)
• Demonstrated experience with Risk Management Framework (experience under DHA a plus)
• Demonstrated efficiency and experience in RMF package development, including POA&Ms (mitigation statements), Security Plans, Risk Assessments, architecture diagrams, hardware / software inventories, and system / site policies, procedures, and processes
• Hands on experience with the DoD tool eMASS
• Familiarity with NIST publications
• Experience in assessing systems using NIST 800-53 and / or DISA STIGs and SRGs
• Excellent customer service and organization skills
• Excellent oral and written communication skills

Desired Qualifications :

• Experience with ACAS and HBSS
• Experience in RMF policy development, process improvement, and strategy implementation
• Knowledge in Continuous Monitoring and Risk Scoring (CMRS)
• Knowledge of cloud capabilities and secure cloud architecture
• Knowledge in one or more of the following technologies :

o Medical devices

o Windows

o Linux / Unix

o Network Devices

o Databases MS SQL, Oracle

o VMWare Virtualization

Clearance Required :

Active Secret security clearance

Company Paid Standard Benefits :

• Short / Long Term Disability
• Basic Life Insurance
• Direct Payroll Deposit
• Leave Accrual
• Holidays
• 401(k) Match

Employee / Company Shared Benefits :

• Additional (Voluntary) Life Insurance
• 401(k)
• Medical Coverage
• Dental Coverage
• Vision Care Plan
• Flexible Spending Account Plan

PI223568073

SECURITY OFFICER

• We work with you based off of your availability;
• We offer flexible schedules
• PT / FT available
• Day, Swing, & Graveyard Shifts
• Holiday Pay
• Weekends
• On Call Positions
• Standing Officer & Patrol Division Openings

SAFETY & SATISFACTION IS OUR #1 PRIORITY

Security First takes a drastically different approach to providing security services our security officers are not only highly trained and exceptionally professional in both demeanor and appearance, but go above and beyond to provide a friendly, helpful resource to tenants and business patrons.

We feel that offering a combination of the latest technologies, 5-star customer service, and a pleasant onsite presence, contributes to a more comprehensive and satisfying customer experience.