Jobs at ORock Technologies

View all jobs

Information Security Engineer

Reston, VA · Information Technology
About ORock Technologies  
ORock Technologies is a small business Cloud and Infrastructure as a Service (IaaS) provider that supports the specialized needs of organizations with the highest data security requirements, including Independent Software Vendors (ISVs), solution providers, and enterprise end users in such markets as Defense, Intelligence, Government, Financial Services, and Healthcare. 
As a Red Hat Certified Cloud & Service Provider (CCSP), ORock owns and operates a carrier-grade private fiber optic network with multiple data centers and a secure, open source, “pure-play” Red Hat cloud. Our state-of-the-art IaaS and Cloud solutions offer superior levels of security, performance, compliance, flexibility, and control for ORock customers, channel partners, and software vendors. 

Currently we have a need for an Information System Security Engineer to work out of our Reston, VA HQ. YOU MUST BE A US CITIZEN and be eligible for a clearance of Secret level or above. 

The Information System Security Engineer opening is a full-time position with responsibilities for development and management of information security operations and maintenance activities; assists in design/implementation of emergency/incident response processes, oversight of log monitoring processes and analysis, and vulnerability scanning. The engineer is responsible for developing security control implementation plans and coordinating the development of advanced security signature or access control mechanisms that can be implemented on security systems such as intrusion prevention/detection systems, firewalls, routers or endpoint in response to new or observed threats within the enterprise.  The engineer will review and approve firewall policy rules and perform signature and policy updates. The engineer will assist in Information Management, as well as other audits, surveys and assessments and maintain security-related procedures applied to new and ongoing projects, applications and network services. 

Primary Duties and Responsibilities: 
  • Performs day to day configuration and operation of security products in production and test networks from Firewalls to end point security applications 
  • Leads the identification of advanced security systems and controls to ensure the monitoring and configuring of security appliances 
  • Analyzes information security problems based on knowledge of the major information security products and services 
  • Conduct Security Testing and Evaluation support for applications, systems, and networks in accordance with NIST guidance 
  • Perform implementation of security and compliance-based use cases based on the NIST 800-53 Rev4 security controls 
  • Enable the Nessus product to effectively scan the network for vulnerabilities 
  • Support the development and maintenance of Security Operations Center dashboards 
  • Support incident handling and response, triage of events, network analysis and threat detection, trend analysis, metric development, vulnerability information dissemination 
  • Assist in the investigation and reporting of security incidents 
  • Leads or assists with security project implementation including DLP, SIEM, Vulnerability Scanning Solution 
  • Support incident tracking, POA&M management, and ticket resolution 
  • Assist with security strategic planning and architecture roadmap 
  • Assist in developing risk assessment strategy and implementation 
Those successful in this position will have: 
  • Hands on experience configuring Palo Alto Firewalls 
  • Hands-on experience with and knowledge of IT security architecture and design (e.g., firewalls, intrusion detection systems, virtual private networking, virus protection technologies, LAN/WAN design, and/or general internetworking technologies). 
  • Full understanding of IP network and security engineering experience including a understanding of IP routing, quality of service mechanisms, MPLS, and IPsec architectures. 
  • Hands on experience configuring, deploying, and managing mission critical network appliances such as routers, firewalls, IDS/IPS, DPI, etc. 
  • Proven hands on experience working with ArcSight, Splunk, QRadar, or equivalent toolsets  
  • Proven hands on experience with Red Hat LINUX 
  • SIEM experience from the perspective of creating searches and understanding how to pivot in the data fields to follow an investigation 
  • Knowledge of Cyber intrusion vectors, malware, networking, and monitoring 
  • Knowledge of threat and vulnerability analysis, routing protocols, routing, intrusion detection systems, intrusion protection systems, Domain Name Service, or network traffic analysis. 
  • Leverages knowledge of computer and network architecture to provide analysis during investigations identifying adversarial activity and methods for future detection and prevention 
  • Knowledge of host and network log sources to apply to investigation, IR methodology in investigations, and the groups behind targeted attacks and tactics, techniques, and procedures (TTPs) 
  • BA or BS in Information Security, Information Assurance, Computer Science, Engineering or related field 
  • Ability to write concise analytical products and assessments 
  • Strong written and verbal communication skills including the ability to explain technical matters to a non-technical audience 
 
Employment Eligibility 
ORock Technologies requires the candidate to prove eligibility to work in the United States. All final candidates will be asked to complete a background check. These record checks can include any or all of the following: education verification, employment verification, drug screening, criminal record check, and/or driving record check. 

ORock Technologies is an equal opportunity employer and considers qualified applicants for employment regardless of race, gender, gender identity, gender expression, age, color, religion, disability, veteran’s status, sexual orientation, or any other protected factor.
Powered by