Senior Cyber Security Engineer

at Kearney and Company
Published August 14, 2018
Location Alexandria, VA
Category Default  
Job Type Full-time  

Description

Kearney & Company provides financial services exclusively to the Federal Government, including auditing, consulting, and technology services. Our commitment to our employees and clients as well as to dedication and trust, critical values to our Firm, have led to Kearney's recognition as one of the leading accounting firms in the country. Based on our employees' feedback, we are consistently rated a Best Place to Work. Employment at Kearney means a flexible, collaborative, and open-minded work environment. We hope it is your "first easy decision." Learn more at www.kearneyco.com/careers.

Kearney has an exciting new opportunity for a Senior Cyber Security Engineer to join our Alexandria, VA, team. (This position will function at the Consultant level.) Our Senior Cyber Security Engineer will help our Federal government customers protect system boundaries and ensure that IT systems, applications and network devices are hardened against threats. The position supports the SOC as an advanced escalation point identifying and addressing potential information security incidents.

Job Duties:

  • Perform advanced event and incident analysis, including baseline establishment and trend
  • Remain current on cyber security trends and intelligence
  • Perform threat, vulnerability, risk assessments, and investigations
  • Responsible for the engineering, design, implementation, maintenance, analysis, and administration of security technologies
  • Participate in security requirements, network design reviews, and security testing for the Client's network, systems, and application
  • Coordinate with systems, network and development team to ensure network security standards are being followed and implemented correctly
  • Evaluate new security technology & emerging threats and provide recommendations to strengthen information security environment
  • Develop and carry out information security plans and policies
  • Develop strategies to respond to and recover from a security breach
  • Develop, configure, and implement open-source/third-party tools to assist in detection, prevention and analysis of security threats
  • Awareness training of the workforce on information security standards, policies and best practices
  • Implement protections (e.g.- Firewall blocks, AV rules, creation of IOCs)
  • Installation and use of firewalls, data encryption and other security products and procedures
  • Conduct periodic network scans to find any vulnerability and ensure compliance
  • Monitor networks and systems for security breaches, through the use of software that detects intrusions and anomalous system behavior
  • Investigate security breaches
  • Lead incident response, including steps to minimize the impact and then conduct a technical and forensic investigation into how the breach happened and the extent of the damage

Requirements:

  • A Bachelor's degree from an accredited college/university in Computer Science or related field
  • At least 3-5 years of industry experience in a security engineering function
  • At least 5-8 years of information security experience with a focus on network, application and architecture
  • Security + Certification
  • CEH - Certified Ethical Hacker (CEH)
  • Ability to obtain a U.S. Secret Clearance (must be a US citizen)

Kearney & Company is an Equal Opportunity Employer and will consider all qualified applicants without regard to race, color, age, religion, sex, sexual orientation, gender identity, genetic information, national origin, disability, protected veteran status or any other classification protected by law.

If you would like to request a reasonable accommodation, regarding accessibility of our website, a modification or adjustment of the job application or interview process due to a disability, please call 703-236-2391 or email [Click Here to Email Your Resumé]. Please be advised that this contact information is for accommodation requests only and cannot be used to inquire about the status of an application.