Responsibilities:

• Provide cybersecurity continuous monitoring support of the network(s), systems, and users using a variety of client-approved tools (including Archer GRC) and resources (for example, but not limited to the following: Assured Compliance Assessment Solution (ACAS), Nessus, Core Impact, Security Content Automation Protocol (SCAP)
• Develop automated dashboards to visualize cyber risk through cyber “heat maps”
• Support the design and implementation of the client-provided Privileged Access Management (PAM) system. Troubleshoot where necessary and install and develop new plug-ins and connectors for PAM solutions
• Support the design and implementation of client-selected endpoint security tools to include research, analysis, design, implementation, and documentation of new configurations to improve Zero Trust maturity and reduce cyber risk
• Develop, design, and maintain dashboards and analytics with client-provided tools and integrate with existing governance, risk, and compliance (GRC) tools to collect, refine, and prepare data for analytics and visualization
• Provide engineering and administration of a Splunk environment consisting of search heads, indexers, deployers, deployment servers, heavy/universal forwarders, and Splunk Enterprise Security premium app, spanning security, performance, and operational roles
• Identify and onboard new data sources into Splunk, analyze the data for anomalies and trends, and build dashboards highlighting the key trends in the data. Edit and maintain Splunk configuration files and apps
• Recommend, install, configure, operate, and maintain client-approved IT security tools and applications to support overall information assurance activities necessary to protect systems in the customer environments
• Identify anomalies in the operational environment based on data gathered through continuous monitoring
• Provide metrics and track all monitoring efforts regularly or as requested by the client

Required:

• Bachelor degree in a computer-related field or equivalent experience
• Minimum eight (8) years experience working in an enterprise infrastructure security and engineering role
• Minimum two (2) years performing security engineering in a cloud environment, specifically supporting AWS and Azure
• Knowledge of IaaS, PaaS, and SaaS architectures.
• Experience with Nessus, Tenable Security Center, Amazon Cloud, Splunk, and CyberArk.
• Strong familiarity with NIST 800-53 and FedRAMP requirements.
• Knowledge of eGRC applications such as RSA Archer.
• Familiarity with Tableau and Tanium.
• Ability to review and influence new and evolving design, architecture, standards, and methods for security infrastructures, vulnerabilities, and networking at scale.

Desired:

• Dashboard creation experience using Tableau or similar tools

Compensation:

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Paid Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and parental leave.