You will provide technical strategy and policy support to federal agencies as a key member of the consulting team.
Responsibilities
Review, assess, and document security architecture to improve organizational risk posture.
Analyze SIEM configurations to ensure effective event reporting, alerting, and reduction of false positives.
Configure intrusion detection and prevention solutions across host and network servers.
Develop security monitoring dashboards for real-time and historical visibility.
Recommend environment changes to remove vulnerabilities and reduce exploitation risks.
Required Skills
8+ years of experience in Information Security.
Expertise in at least three areas: Assessment and Accreditation, SOC support, Vulnerability management, Incident artifact analysis, or Network forensics.
Deep understanding of Risk Management processes, including assessing, mitigating, and accepting risks.
Knowledge of cybersecurity principles, security models, cryptography, and cryptographic key management.
Experience with host/network access control, identity and access management (PKIs), and network security methodologies.
Familiarity with ethical hacking principles, attack stages, and programming language logic.
Proficiency with CrowdStrike, Tenable, Netsparker, Forescout, and DBProtect.
Experience with Splunk, Sumo Logic, QRadar, or Arcsight.
Knowledge of endpoint protection tools like McAfee, Symantec, or Cylance.
Working knowledge of CIS, FISMA, and NIST 800-53 security controls.
Experience supporting federal government agencies.