Cybersecurity Engineer
Posted
Job Title: Cybersecurity Engineer
Duration: 1 Month
Location: Richmond, VA
Interview Type: Web Cam Interview Only
Work Arrangement: Remote with monthly meetings
Note:
We are seeking an experienced Cybersecurity Engineer to support Security Products for Local Governments. The ideal candidate will possess in-depth knowledge of configuring and administering Security Tools and Products.
Administer and Maintain EDR Tools:
Duration: 1 Month
Location: Richmond, VA
Interview Type: Web Cam Interview Only
Work Arrangement: Remote with monthly meetings
Note:
- Role is 100% remote however if selected candidates will be required to attend monthly meetings onsite in Richmond. For this reason, the preference is for local Richmond candidates.
- This role has the POTENTIAL to go perm after 6 mo. For this reason candidates must be able to be considered (by the agency) and not need sponsorship. US Citizen or Green Card holders only (no EADS).
We are seeking an experienced Cybersecurity Engineer to support Security Products for Local Governments. The ideal candidate will possess in-depth knowledge of configuring and administering Security Tools and Products.
Administer and Maintain EDR Tools:
- Tune detection rules to reduce false positives and improve threat visibility for each covered locality.
- Ensure asset inventory is accurate and up to date for each covered locality.
- Regularly update the EDR platform and agents to the latest versions.
- Review and adjust security policies.
- Conduct health checks to ensure the EDR system is functioning properly.
- Investigate and remediate unexcepted agent behavior Ensure that Integrations are working as required and troubleshoot when issues are identified
- Maintain and update the vulnerability management platform and agents
- Conduct health checks to ensure the VMS system is functioning properly.
- Tune scan policies to reduce false positives and improve accuracy for each covered locality
- Ensure asset inventory is accurate and up to date for each covered locality Configure and schedule scans for each covered locality.
- Investigate and remediate unexpected agent behavior
- Ensure that integrations are working as required and troubleshoot when issues are identified
- Respond to and resolve customer inquiries and issues submitted through the ticketing system and SOC
- Maintain and update the Remote Monitoring and Management platform and agents
- Accurately document customer interactions, troubleshooting steps, and resolutions
- Escalate complex or unresolved issues as needed
- Monitor ticket queues to ensure service level agreements (SLAs) are met and follow up with customers as needed
- Security+
- CrowdStrike Certified Falcon Administrator (CCFA)
- Tenable Certified
- Additional Cybersecurity Related Certifications
- Administer and Maintain EDR Tools
- Administer and Maintain Vulnerability Management System
- Experience in information security, with a focus on security technologies.
- Excellent verbal and written communication skills; ability to convey complex security concepts in a clear and relatable manner.
- Ability to work independently and as part of a team.
- Excellent organizational skills and attention to detail.
- Relevant certifications preferred.
