Cybersecurity Engineer
Title: Sr Cybersecurity Analyst
Duration of Role: 6-12 months with possibility of full-time employment
Work hours: 8AM-5PM Monday-Friday;
Flexibility of work hours while in contract status
On-call: rotating
Location: Required to be on site; Potential flexibility while in contract status
Provided Equipment: laptop and mobile phone
Summary of Responsibilities
Security Architecture & Engineer
Design and implement secure architectures for applications, networks, and cloud
environments.
Design, implement, tunes, maintains and administers corporate cybersecurity stack
including, SIEM, EDR and Firewall
Develop and maintain security baselines, hardening guides, and configuration
standards for enterprise security stack
Lead threat modeling and security design reviews for new systems and major
changes.
Threat Detection & Incident Response
Build and tune detection rules, alerts, and automated response playbooks
Lead proactive threat hunting operations to identify unknown threats, anomalous
behavior, and early indicators of compromise
Develop hypotheses, hunt methodologies, and repeatable procedures based on
threat intelligence and environment-specific risks
Analyze telemetry from SIEM, EDR, network sensors, and cloud logs to uncover
stealthy adversary activity
Lead investigations of security incidents and coordinate response, containment,
remediation and recovery
Perform root-cause analysis and drive long-term corrective actions
Vulnerability & Risk Management
Oversee vulnerability scanning, prioritization, and remediation projects and
workflows
Creates on demand ad-hoc assessments of computing environment for exposure to
threat intelligence reports
Conduct risk assessments for systems, vendors, and new technologies
Partner with IT infrastructure and other internal and third-party teams to remediate
findings and reduce attack surface
Governance, Compliance & Policy
Models and promotes adherence to security policies, standards, procedures and
best practices.
Has working knowledge of PCI-DSS requirements as applies to MNAA scope.
Supports PCI-DSS audit and compliance eU orts by gathering PCI-DSS requirement
evidence.
Has working knowledge of TSA EA-23-01in order to support regulatory compliance.
Assists with executing remediation plans for any gaps reported in audits or
recommended process improvements that aU ect core information security
services.
Knowledge, Skills, Abilities and other Characteristics
Working knowledge of Unix, Linux and Windows operating systems
Supports Client's commitment to its culture and values, including Respect,
Integrity, Service and Excellence (RISE).
Relationship Building: Skill in establishing and maintaining eU ective and
professional working relationships with others.
Certifications, Education and Experience
Not required but highly preferred certifications: CISSP, GSEC, GCIA, GCIH, GCFA or
other security related certifications.
Bachelor's degree in computer science, Management Information Systems, or
relevant field of study. 7-10 years of relevant work experience with minimum of a
high school diploma may be considered in lieu of educational requirement
2-4 years of progressive experience in computing and information security, including
experience with Internet technology, security technology, issue resolution and
leading teams in a cross functional.
Duration of Role: 6-12 months with possibility of full-time employment
Work hours: 8AM-5PM Monday-Friday;
Flexibility of work hours while in contract status
On-call: rotating
Location: Required to be on site; Potential flexibility while in contract status
Provided Equipment: laptop and mobile phone
Summary of Responsibilities
Security Architecture & Engineer
Design and implement secure architectures for applications, networks, and cloud
environments.
Design, implement, tunes, maintains and administers corporate cybersecurity stack
including, SIEM, EDR and Firewall
Develop and maintain security baselines, hardening guides, and configuration
standards for enterprise security stack
Lead threat modeling and security design reviews for new systems and major
changes.
Threat Detection & Incident Response
Build and tune detection rules, alerts, and automated response playbooks
Lead proactive threat hunting operations to identify unknown threats, anomalous
behavior, and early indicators of compromise
Develop hypotheses, hunt methodologies, and repeatable procedures based on
threat intelligence and environment-specific risks
Analyze telemetry from SIEM, EDR, network sensors, and cloud logs to uncover
stealthy adversary activity
Lead investigations of security incidents and coordinate response, containment,
remediation and recovery
Perform root-cause analysis and drive long-term corrective actions
Vulnerability & Risk Management
Oversee vulnerability scanning, prioritization, and remediation projects and
workflows
Creates on demand ad-hoc assessments of computing environment for exposure to
threat intelligence reports
Conduct risk assessments for systems, vendors, and new technologies
Partner with IT infrastructure and other internal and third-party teams to remediate
findings and reduce attack surface
Governance, Compliance & Policy
Models and promotes adherence to security policies, standards, procedures and
best practices.
Has working knowledge of PCI-DSS requirements as applies to MNAA scope.
Supports PCI-DSS audit and compliance eU orts by gathering PCI-DSS requirement
evidence.
Has working knowledge of TSA EA-23-01in order to support regulatory compliance.
Assists with executing remediation plans for any gaps reported in audits or
recommended process improvements that aU ect core information security
services.
Knowledge, Skills, Abilities and other Characteristics
Working knowledge of Unix, Linux and Windows operating systems
Supports Client's commitment to its culture and values, including Respect,
Integrity, Service and Excellence (RISE).
Relationship Building: Skill in establishing and maintaining eU ective and
professional working relationships with others.
Certifications, Education and Experience
Not required but highly preferred certifications: CISSP, GSEC, GCIA, GCIH, GCFA or
other security related certifications.
Bachelor's degree in computer science, Management Information Systems, or
relevant field of study. 7-10 years of relevant work experience with minimum of a
high school diploma may be considered in lieu of educational requirement
2-4 years of progressive experience in computing and information security, including
experience with Internet technology, security technology, issue resolution and
leading teams in a cross functional.
