We are seeking an experienced Security Operations Engineer to fortify our organization's IT defenses. Responsibilities include implementing and maintaining firewall architectures, ensuring compliance with security policies, conducting security reviews, and recommending improvements. Expertise in cybersecurity, firewall technologies, and compliance standards is essential. Top Secret security clearance preferred.

Experience Required:

• Eight (8) years of experience in Information Technology, Cybersecurity, or related fields.

• A minimum of six (6) years of experience configuring and administering firewall technologies, including carrier class Checkpoint Firewalls, Palo Alto, and Network Security Policy Management.

• In depth knowledge of security operations, including firewall rules and security policies.

• Strong networking ability and familiarity with firewall platforms to aid in the swift identification and isolation of issues during incidents and outages.

• Experience with RMF and NIST SP 80053 (Rev 4/5), including expert knowledge of RMF accreditation packages and all steps of the RMF process.

• Knowledge of cyberattack patterns, tactics, techniques, and procedures, along with the ability to adapt security processes/tools to changing landscapes and risk scenarios.

• Proficiency in Checkpoint firewall hardware modifications, iBoss Cloud IPS and IDS configurations, and SSLV Symantec security application.

• Capability to work independently or within a team, demonstrating flexibility in a fast paced environment while upholding excellent customer service skills.

• Ability to explain complex policies and protocols in simple terms.

Preferred Skill:

• Experience in ensuring compliance with security policies and developing/updating IT security documentation.

• Ability to plan and implement security reviews for changes impacting hardware, software, baselines, connections, or applications.

• Experience collaborating with staff to plan and implement new firewall architectures, upgrades, and features.

• Proficiency in assisting in the administration of firewalls, including updates, upgrades, policy administration, and validation.

• Familiarity with performing security related tasks such as vulnerability scanning and log management.

• Ability to review and implement customer changes consistent with existing policies.

• Experience managing and tuning additional software blades associated with firewall architecture (IPS, URL, Application Control, AV, Advanced Malware detection).

• Knowledge of industry best practices, NIST SP 80053, and agency security policy standards to identify gaps and inefficiencies in the security infrastructure and provide solutions.

• Capability to make recommendations to modernize security infrastructure effectively and efficiently.

• Ability to explain new security requirements to staff and contractors to support implementation.

• Availability to work outside of normal business hours to support outage resolution, planned maintenance, or upgrades.

Tasks:

• Ensure compliance with security policies, develop and update IT security documentation, provide related status reports, briefings, schedules, and project plans in written form.

• Plan and implement security reviews for changes impacting hardware, software, baselines, connections, or applications.

• Collaborate with staff to plan and implement new firewall architectures, upgrades and features as necessary.

• Assist in the administration of all firewalls to include updates, upgrades, policy administration, and validation.

• Perform other security related tasks, including vulnerability scanning and log management.

• Assist in reviewing and implementing customer changes consistent with existing policies.

• Review and update documentation to ensure consistency with current procedures.

• Manage and tune additional software blades associated with firewall architecture (IPS, URL, Application Control, AV, Advanced Malware detection).

• Follow industry best practices, NIST SP 800-53, and agency security policy standards to identify gaps and inefficiencies in the security infrastructure and provide options for resolving them.

• Make recommendations to modernize CBO’s security infrastructure in a more effective and efficient manner.

• Explain new security requirements to IRM&TS staff and contractors to support implementation.

• Work outside of normal business hours to support outage resolution, planned maintenance, or to implement an upgrade.

• Perform other related duties.

Educational Qualifications: Bachelor's degree in an IT-related field