Security Analyst with Python/Powershell, CICD, Container, Office 365, AD, DevSecOps, McAfee, SIEM, IPS/IDS, ATO, EPO, Rapid7 InsightVM, Nessus and networking experience

Job ID: VA-637858 (97791012)

Security Analyst with Python/Powershell, CICD, Container, Office 365, AD, DevSecOps, McAfee, SIEM, IPS/IDS, ATO, EPO, Rapid7 InsightVM, Nessus and networking experience

Location: Richmond,VA (SCC)
Duration: 12 months
Interview: Either Phone or In Person (Local candidates are HIGHLY preferred)
candidates will telework now (after coming to office to pick up laptop). Once restrictions are lifted, candidates will be required to work onsite daily M-F 8-5pm, NO exceptions

Skill Required :
Bachelor’s degree in IS, CS, Engineering or equivalent Required
Cyber Security experience Required 3 Years
Automation using scripting languages such as Python, PowerShell, Etc. Required 2 Years
Deep technical knowledge of Microsoft Azure or Amazon Web Services Required 2 Years
Experience with CICD automation tools Required 2 Years
Experience with Container technologies Required 2 Years
Certifications – Microsoft AD, Azure, Office 365 Required 2 Years
Micorsoft Windows Server 2012+, Linux RHEL, Active Directory, Azure AD, DevSecOps tools Required 2 Years
Clous Service monitoring (McAfee CASB and MCAS) Required 2 Years
McAfee SIEM, NSM (IPS/IDS), ATD and EPO Desired 2 Years
Vulnerabilities Scan (Rapid7 InsightVM, Nessus) Required 2 Years
Familiar with network/security (load balancers, firewalls, DLP, DNS,DHCP) Required 2 Years
Knowledge of Cloud infrastructure, security architectures, and standards. Required 2 Years
Expert knowledge of Cloud security architectures and infrastructure Required 2 Years
Expert knowledge of Microsoft Azure ecosystem Required 2 Years
Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols) Required 2 Years
Strong analytical, diagnostics and troubleshooting skills – ability to solve complex problems at scale Desired 2 Years
Application performance monitoring Desired 2 Years
Ability to colloborate with technical and business partners Desired 4 Years
Good Analytical and troubleshooting skills Desired 4 Years
Solid understanding of container security Desired 4 Years

local candidates strongly preferred
*interviews will be conducted via phone or onsite.
*candidates will telework now (after coming to office to pick up laptop). Once restrictions are lifted, candidates will be required to work onsite daily M-F 8-5pm, NO exceptions

OIS requires the need of a Cybersecurity Cloud Engineer that specializes in providing security for cloud-based solutions.

This person will be involved in leading the Information Security Team on new cloud architecture designs, resulting in robust, reliable, and secure cloud platform solutions that will play an integral part in advancing the Cloud eco-system and culture of technical excellence at the Commission. As part of the team, you will be expected to participate in cloud implementation efforts, work with IT Teams, vendors and secure the cloud infrastructure(s). Provide written documentation for all processes and procedures to reduce any audit findings per the CIS Benchmarks. The individual will be involved in learning a deep understanding of the Commission’s Cloud-as-a-Service varieties including PaaS, SaaS, and laaS. This individual will specialize in helping the DLP/CASB Application team to drive efficiency, security, reliability into the Commission’s entire development to the operations lifecycle and understanding of the differences between the services and where they overlap.

Responsibilities Include: • Design, build, and support mission-critical Cybersecurity products and services
• Have expert knowledge of Data Loss Prevention principles, Data Classification, Alerting and Monitoring, Automated Response, and apply that knowledge in their daily cloud security work. (McAfee CASB)
• Maintain and assess security for Enterprise multi-cloud platform (IaaS and PaaS)
• Assess and reviews cloud network configurations from a security angle; as well as fix any issues
• Maintain current documentation for the cloud platform, related tools, and business processes (security/compliance, HA/DR, data management, monitoring, application integration, etc.)
• Participate in implementation of new features and integration scenarios within cloud environments
• Develop tools to identify and mitigate security vulnerabilities
• Work with technical and business users
• Ability to clearly articulate and explain complex concepts and technologies to a non- technical audience
• Ability to function in a rapidly evolving environment and adapt to frequent transitions in technologies and teams
• Examine current cloud security practices and identify key risks, then execute programs to address them
• Lead large scale programs that span the enterprise to deploy and manage various cloud security appliances and agents
• Develop, maintain, and report on key cloud security metrics – both as a program and on an individual basis; creating metric templates and scoring models
• Automate cloud security solutions and controls

VA-Resume_Template-637858 (2).docx

VA_E-RTR-637858 (2).doc

Leave a Reply