Cyber Security Engineer

Posted Date 2 months ago(1/31/2020 4:38 PM)
Job ID
US-MD-College Park
Clearance Required
Other Clearance
NARA Clearance

Position Description

XLA is seeing a mid-level Cyber Security Engineer with a broad knowledge of the domain including network security, system security, vulnerability scanning, web-based application scanning, risk assessments, security engineering, etc. This position will be working at National Archives (NARA) in College Park, MD.  Experience configuring, managing and running Security Operation Center (SOC) type tools (e.g., Tenable Continuous View, FireEye Threat Management System, Snort, etc.) SME will support a Federal Civilian Agency with vulnerability management and incident response work. The position involves working in a small focused team that follows the Federal Continuous Monitoring strategy for prioritization of resources and providing support that provides the greatest impact with limited resources. Team members have a large set of cross-functional abilities to support all aspects of Cyber Security.


Principle Duties and Responsibilities

  • Conduct vulnerability scans and assessments against agency information systems, web applications and web services
  • Conduct assigned activities within the security Incident response and handling lifecycle. These activities could include: detection, triage, analysis, containment, recovery and reporting.
  • Coordinate response, triage and recovery activities for security events affecting the agency’s information assets
  • Assist with expanding and maturing existing vulnerability management and incident response processes and activities.
  • Coordinate with system owners and IT operations to remediate and resolve issues discovered during security scans, system assessments, system audits, and cyber security investigations.
  • Conduct security assessments and testing for agency’s different cloud platform types (i.e., IaaS, SaaS, PaaS)
  • Conduct on-demand scans, assessments, and audits to assess the cyber security posture of the various on-premises and cloud-based NARA information systems.
  • Provide security engineering reviews and recommendations to agency System Owners and Information System Security Officers
  • Develop and implement technical solutions to help mitigate security vulnerabilities
  • Analyze network and host-based security logs to identify potential security threats
  • Develop/review documentation for Security Operations procedures


Required Skills, Knowledge and Experience

  • BS/BA in Computer Science, Information Systems, Software Engineering or other related analytical, scientific or technical discipline
  • 7 years of cyber security engineering experience
  • Industry Security Certifications such as CISSP, CASP, GCIA, GCIH, OSCP, etc.
  • Experience with different aspects of security engineering including knowledge of network security, operating system security, database security, and web application technologies
  • Extensive knowledge of the Linux and Windows operating systems
  • Strong understanding of TCP/IP protocol
  • Strong troubleshooting skills
  • Security Architecture review experience
  • Scripting and automation (Python, Perl, Ruby, etc.)
  • Experience with some of the following types of technologies: SIEM (SecurityCenter, Splunk, etc.); Firewalls, both network and host based; Application or web content filtering; IDS/IPS
  • Knowledge of security principles with cloud-based services such as AWS
  • NMAP and other network mapping tools
  • 3-5 years of experience in either a system or network administrator role
  • Experience with some of the following technologies: AWS, VMWare products, Tenable suite of tools, SiLK, NetFlow, Snort, FireEye, etc.

Security Clearance:  The ability to obtain a Top Secret (TS)


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed