What are the responsibilities and job description for the Cyber Security Engineer position at ChabezTech LLC?
Job Title: Cybersecurity Engineer
Job Description:
We are seeking an experienced and highly skilled Cybersecurity Engineer to join our growing security team. In this role, you will be responsible for managing and enhancing the organization's cybersecurity posture. Your focus will be on network security, vulnerability management, endpoint protection, and the implementation of security protocols. You will also work closely with other teams to implement robust security measures, monitor threats, and respond to incidents.
Key Responsibilities:
- Design, implement, and maintain network segmentation and isolation strategies to protect sensitive data and systems.
- Administer and harden Active Directory and Windows Server environments to ensure security and compliance.
- Manage and configure Cisco ISE and Stealthwatch for network security, monitoring, and incident response.
- Implement and enforce Authentication, Authorization, and Accounting (AAA) policies across systems and networks.
- Oversee vulnerability and patch management processes to ensure systems are up to date and protected from potential threats.
- Administer and configure containment/protection tools for Operational Technology (OT) environments, such as Forescout, to enhance cybersecurity measures.
- Monitor and respond to cybersecurity incidents, developing and executing incident response plans and protocols.
- Implement and maintain cybersecurity technologies, including deception technologies (Honeypots/Honeynets) to detect and mitigate advanced threats.
- Utilize threat detection and vulnerability assessment tools to identify, prioritize, and address vulnerabilities across systems.
- Work closely with cross-functional teams to implement endpoint credential management systems.
- Support and manage privileged access management (PAM) solutions to safeguard critical resources and systems.
- Perform data analysis and reporting on network and system security status, identifying trends and areas for improvement.
- Manage and troubleshoot physical access control systems and video management systems to ensure physical security aligns with cybersecurity measures.
- Oversee the maintenance and management of advanced network security systems such as Nozomi, TDI, and Gigamon.
Required Skills and Experience:
- Strong experience in network segmentation and isolation to protect critical infrastructure.
- Expertise in Active Directory and Windows Server Administration, including security hardening and patch management.
- Proficiency in Cisco ISE and Stealthwatch for network security and monitoring.
- In-depth understanding of Authentication, Authorization, and Accounting (AAA) principles.
- Extensive experience in vulnerability and patch management for enterprise environments.
- Experience with containment and protection tools for OT environments, particularly with tools like Forescout.
Knowledge of:
- BGP, OSPF, and Switching (Cisco) technologies and their application in securing network infrastructures.
- Familiarity with Physical Access Control Systems and Video Management Systems.
- Strong background in virtualization and infrastructure, including VMware and Virtual Switches.
- Hands-on experience with endpoint credential management systems.
- Privileged Access Management (PAM) for securing sensitive resources.
- Experience in cybersecurity incident response planning and execution.
- Familiarity with threat detection and vulnerability assessments to mitigate risks in the environment.
- Ability to implement deception technology such as Honeypots/Honeynets to detect and mitigate cyber threats.
- Experience in data analysis related to cybersecurity threats and vulnerabilities.
- Knowledge of DWDM and SONET technologies and their role in securing communication networks.
- Practical experience with the maintenance and management of Nozomi, TDI, and Gigamon systems.
Qualifications:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent work experience).
- 5 years of experience in a cybersecurity engineer or related role, with hands-on experience in security infrastructure and incident response.
- Advanced knowledge of security protocols, networking, and cybersecurity tools.
- Industry certifications such as CISSP, CISM, Cisco Certified Network Professional (CCNP), or similar are a plus.
Nice to Have:
- Familiarity with emerging cybersecurity technologies and practices.
- Strong analytical, troubleshooting, and problem-solving abilities.
- Experience with cloud security and the integration of cybersecurity tools into cloud environments.