Tyto Athene is searching for an experienced Junior Security Engineer to support architecture, security operations, and incident response activities. Tasks are expected to be executed while coordinating with various government teams in mission-critical environments.

Responsibilities:

• Develop, document, and review secure baseline configurations for each technology used within the environment
• Assist in determining authorization boundaries and placement of new systems within the Agency’s enterprise architecture
• Design, develop, and maintain detailed security drawings
• Develop alternative system designs and architectures
• Perform security impact analyses for proposed changes to assigned systems
• Review IT system plans to ensure designs meet governmental standards and provide an appropriate level of protection for client systems and data
• Conduct gap analysis of system requirements and components

Required:

• Minimum of four (4) years of general work experience and at least two (2) years of relevant experience in functional responsibility
• Bachelor's degree in a technical field from an accredited college/university or equivalent experience
• Experience administering security tools such as Splunk, Symantec DLP, FireEye, IDS
• Experience with at least one of the following: Windows Server 2008/2012, Windows 7/8/10, Syslog (rsyslog, syslog-ng, etc), Linux variants (RedHat/CentOS/Ubuntu), Event log collection, VMWare
• Familiar with the use of a SIEM for analysis
• Familiar with multi-tiered network applications, common ports, and protocols used in those communications
• Ability to perform online research and comprehend attack signatures while comparing them to network traffic to perform a proper analysis of detections
• Strong analytical and organizational skills
• Experience working in a SOC and performing incident response is preferred.
• Thorough understanding and knowledge of TCP/IP networking

Desired:

• Experience and education preferred in CEH, eCPPT, OSCP, GCFW, GCIH, other relevant IT security certifications, or advanced vendor certifications such as Splunk Certified Architect or SourceFire Certified Administrator; Security+, Network+, GSEC, or other relevant IT security product certifications such as Certified Systems Analyst, or SnortCP CISSP, CISM, or ISO 27001
• Familiarity with implementing DISA STIGs and CIS Benchmarks preferred
• Experience with Splunk SIEM, Swimlane, Bluecoat, Sourcefire (Snort), VMRay, and Vulnerability MGMT tools such as Qualys

Location:  

• This is a hybrid role with expectations of being on the client site a few days a week.

Clearance: 

• Public Trust required

Compensation:

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave.