Friday, February 29, 2008

Certification & Accreditation Lead - DC Metro Area

We are looking for a Certification & Accreditation (C&A) Lead.

This position is located in Crystal City and does require U.S Citizenship. If you are interested in learning more about this opportunity or know of anyone who may be, please feel free to forward this site.

Wednesday, February 13, 2008

Security Engineer, Bethesda MD

  • Responsible for managing and maintaining IT security safeguards deployed across diverse network environments. 
  • Also include the configuring, installing, tuning and auditing of multiple firewall policies and IDS/RNA systems to prevent, or detect network intrusions. 
  • Create and maintain comprehensive and current documentation on security system architecture and configuration. 
  • Investigate, validate and mitigate if necessary; security alerts that are generated from various sources. 
  • Submit weekly status reports of all activities.
  • Working with various teams on designing, planning, and implementing future security enhancements, in efforts to continuously enhance the overall security of the network.
 
Required Skills
 
  • Must possess; strong written and oral communication skills, strong customer service qualities and the ability to work in a team environment
  • Must be task oriented and able to work with limited supervision
  • Demonstrated hands on experience with firewalls, IDS, and IPS systems
  • Must possess a solid understanding of the IT security concepts and methodologies, and be able to display solid networking knowledge
 
Required Experience
 
  • Knowledge of the principals of IT security Architecture and network design
  • Experience with patch management planning, implementation and
  • validation processes
  • Experience with IT security system analysis, tuning, configuration and auditing
  • Experience using security penetration testing tools, vulnerability scanners or network packet analyzers.
  • Experience with enterprise anti-virus system planning, implementation and validation processes
  • Knowledge of the security certification and accreditation process for federal information systems - a plus
  • Project management experience - a plus
 
Skills Candidate should possess:
 
  • At least (1) of the following - CISSP, CISM, CISA, CCNA or an MCSE Security.
  • ITIL foundations certification - a plus
  • Position located in Bethesda , MD

Tuesday, February 12, 2008

NETWORK SECURITY ENGINEER

Job Title:  Systems Mgmt Specialist Cisco
Location:  MANASSAS, VA 
Duration:   1 YEAR

Job Description:
Our client is looking for Systems Management Specialist Cisco Networks

(Nokia/Chkpt. PIX), LBs (F5 & Cisco), Rtrs & Switches (Cisco). A professional (working closely w/Customers) & work diligently within a highly structured change mgmt process environ. Working knowledge of Visio, ss (excel), SNA a plus. On site support at either the Manassas, Va loc. or possibly a Phily loc. - individuals willing to work at either loc. should be submitted. This position involves day-to-day OPs support, 24x7 rotating coverage, PD skills & project related work (some travel). Secondary skills requested The secondary/complementary skills below were also requested. Skill name Level requested Systems Management Specialist Manage System Change 2 Significant job experience Systems Management Specialist Perform Problem Management 2 Significant job experience Systems Management Specialist Manage Performance/Capacity 1 Knowledge/some job experience Systems Management Specialist Perform Availability Management 1 Knowledge/some job experience Systems Management Specialist Develop Systems Operating Procedures 1 Knowledge/some job experience Systems Management Specialist Use Systems Monitor Tools 2 Significant job experience Systems Management Specialist Perform System Performance Tuning 1 Knowledge/some job experience Systems Management Specialist Implement System Mgmt/Monitor Systems 1 Knowledge/some job experience Systems Management Specialist Implement Cisco 2 Significant job experience

Friday, February 8, 2008

Network Engineer

Job Description:

Specific responsibilities of the Government Security Team include:
-Supporting the 7x24 Security Operations Center (SOC) with security incident handling.  (SOC is in a different location.)  A real-time log of observed security events is published and available in real-time throughout the federal government organization.
-Correlation and analysis of security inputs from multiple sources including but not limited to IDS/IPS consoles, firewall logs, real time packet traces, host logs, for profit intelligence services.
-Vulnerability management.  Using multiple tools such as the ISS Enterprise Scanner, MetaSploit, Core-Impact, WebInspect and custom developed tools, perform an iterative technique of testing, notifying, escalating and retesting to manage a vulnerability detection and remediation program for the customer.  The vulnerability management program includes custom remediation advice for System Administrators.
-Linux and Windows web service and server support, to include building servers and recommending to customers methods to secure web servers.
-Management hotspots detailing serious security incidents detected at the National Gateways.
-Change management of key security configuration items such as documentation, firewall policy and IDS/IPS signature sets.
-Patch management with audit trail support for infrastructure servers installed at that National Gateways.
-Publish weekly significant actions and monthly summaries of detected activity and responses.
-Implementation of an extensible secure knowledge base that details specific threats, security controls and procedures.
Required & Desired Skill Sets:
-This position is located in Washington, DC near Union Station (accessible by train, light rail & metro). Individual will work on-site with the customer on projects.
-US citizenship is required.
-There is NO Government security clearance requirement (candidate is subject to Sprint¿s background employment check)
-The work hours are: arrive between 7am and 9am and work 5 days a week OR work an AWS (Alternate Work Schedule)¿9 hours/day and have every other Friday or Monday off.
-The Senior Security Engineer candidate must have a minimum of four years in the network security field, within the focused security arena of intrusion detection.
-The Engineer must have hands-on working skills in the use and administration of security tools to include the 1) Internet Security Systems (ISS) RealSecure product line and/or the Cisco Intrusion Prevention System (IPS) product line, 2) the use of MetaSploit and 3) WebInspect.
-Experience in working with, supporting and troubleshooting Linux and Windows web servers and securing web services is desired.
-Five years of HANDS-ON WORK Experience in network security.
-Other Requirements.  Scripting programming experience
-Education Requirements:  No 4-year College Degree required
-Preferred: CISSP, GIAC or other security certifications.

Information Assurance Engineer Opportunity - Washington, DC

JOB DESCRIPTION: The Information Assurance Engineer analyzes and defines security requirements for computer systems which include network layer hardware, workstations and servers. Designs, develops, engineers, and implements solutions that meet security requirements. Responsible for integration and implementation of the computer system security solution. Gathers and organizes technical information about an organization's mission goals and needs, existing security products, and ongoing programs in computer security. Performs risk analyses of computer systems and applications during all phases of the system development life cycle.

REQUIRED EDUCATION: Bachelor's degree in related field or equivalent and 7+ years of related experience. 13 years of experience to include 7+ in related field will be considered in lieu of 4 year degree.

REQUIRED EXPERIENCE: Requires substantial experience providing information system security support, information system requirements analysis, system design, implementation, and testing. Must demonstrate a complete understanding of and the ability to implement business security practices; current security tools; including Cisco Security Manager & ACS; hardware/software firewalls and their implementation; different communications protocols; encryption techniques/tools and current internet technology. Must demonstrate a complete understanding of Microsoft server operating systems, Active Directory (AD), and Group Policy Objects (GPOs). Must have strong verbal and written communication skills. U.S. Citizenship is required and the ability to obtain a Top Secret Clearance.

DESIRE SKILLS: Experience in the design and development of secure systems.

Thursday, February 7, 2008

Network Engineer

Job Description:
 
Job Title: Network Engineer III (Senior Security Engineer)
Pay Rate:  TBD
Job Location: One Columbus Circle, NE , Washington , DC 20002
 
Duration:  12/31/2008 or Longer       Date Req Opened:  02/05/08
 
Job Description:  
 
This is a high-level Senior Security Engineer position which requires in-depth hacker incident detection, investigation and prevention across a large government customer network
 
Specific responsibilities of the Government Security Team include:
- Supporting the 7x24 Security Operations Center (SOC) with security incident handling.  (SOC is in a different location.)  A real-time log of observed security events is published and available in real-time throughout the federal government organization.
 
- Correlation and analysis of security inputs from multiple sources including but not limited to IDS/IPS consoles, firewall logs, real time packet traces, host logs, for profit intelligence services.
- Vulnerability management.  Using multiple tools such as the ISS Enterprise Scanner, MetaSploit, Core-Impact, WebInspect and custom developed tools, perform an iterative technique of testing, notifying, escalating and retesting to manage a vulnerability detection and remediation program for the customer.  The vulnerability management program includes custom remediation advice for System Administrators.
 - Linux and Windows web service and server support, to include building servers and recommending to customers methods to secure web servers.
- Management hotspots detailing serious security incidents detected at the National Gateways.
- Change management of key security configuration items such as documentation, firewall policy and IDS/IPS signature sets.
- Patch management with audit trail support for infrastructure servers installed at that National Gateways.
- Publish weekly significant actions and monthly summaries of detected activity and responses.
- Implementation of an extensible secure knowledge base that details specific threats, security controls and procedures.
 
Required & Desired Skill Sets:
- This position is located in Washington , DC near Union Station (accessible by train, light rail & metro). Individual will work on-site with the customer on projects.
- US citizenship is required.
- There is NO Government security clearance requirement (candidate is subject to Sprint's background employment check)
- The work hours are: arrive between 7am and 9am and work 5 days a week OR work an AWS (Alternate Work Schedule)¿9 hours/day and have every other Friday or Monday off.
- The Senior Security Engineer candidate must have a minimum of four years in the network security field, within the focused security arena of intrusion detection.
- The Engineer must have hands-on working skills in the use and administration of security tools to include the 1) Internet Security Systems (ISS) RealSecure product line and/or the Cisco Intrusion Prevention System (IPS) product line, 2) the use of MetaSploit and 3) WebInspect.
- Experience in working with, supporting and troubleshooting Linux and Windows web servers and securing web services is desired.
- Five years of HANDS-ON WORK Experience in network security.
- Other Requirements.  Scripting programming experience
- Education Requirements:  No 4-year College Degree required
- Preferred: CISSP, GIAC or other security certifications.

Wednesday, February 6, 2008

Sr Security Engineer

**U.S. Citizenship is REQUIRED - No H1B Candidates**

DESCRIPTION:

This is a high-level Senior Security Engineer position which requires in-depth hacker incident detection, investigation and prevention across a large government customer network.

Specific responsibilities of the Government Security Team include:

o Supporting the 7x24 Security Operations Center (SOC) with security incident handling. (SOC is in a different location.) A real-time log of observed security events is published and available in real-time throughout the federal government organization.
o Correlation and analysis of security inputs from multiple sources including but not limited to IDS/IPS consoles, firewall logs, real time packet traces, host logs, for profit intelligence services.
o Vulnerability management. Using multiple tools such as the ISS Enterprise Scanner, MetaSploit, Core-Impact, WebInspect and custom developed tools, perform an iterative technique of testing, notifying, escalating and retesting to manage a vulnerability detection and remediation program for the customer. The vulnerability management program includes custom remediation advice for System Administrators.
o Linux and Windows web service and server support, to include building servers and recommending to customers methods to secure web servers.
o Management hotspots detailing serious security incidents detected at the National Gateways.
o Change management of key security configuration items such as documentation, firewall policy and IDS/IPS signature sets.
o Patch management with audit trail support for infrastructure servers installed at that National Gateways.
o Publish weekly significant actions and monthly summaries of detected activity and responses.
o Implementation of an extensible secure knowledge base that details specific threats, security controls and procedures.
Required & Desired Skill Sets:
o This position is located in Washington, DC near Union Station (accessible by train, light rail & metro). Individual will work on-site with the customer on projects.
o There is NO Government security clearance requirement (candidate is subject to Sprint's background employment check)
0 The work hours are: arrive between 7am and 9am and work 5 days a week OR work an AWS (Alternate Work Schedule)¿9 hours/day and have every other Friday or Monday off.
0 The Senior Security Engineer candidate must have a minimum of four years in the network security field, within the focused security arena of intrusion detection.
0 The Engineer must have hands-on working skills in the use and administration of security tools to include the

1) Internet Security Systems (ISS) RealSecure product line and/or the Cisco Intrusion Prevention System (IPS) product line,
2) the use of MetaSploit and
3) WebInspect.

o Experience in working with, supporting and troubleshooting Linux and Windows web servers and securing web services is desired.

o Five years of HANDS-ON WORK Experience in network security.

o Other Requirements. Scripting programming experience

o Education Requirements: No 4-year College Degree required

o Preferred: CISSP, GIAC or other security certifications.

Security Engineer

Senior Security Engineer
Responsibilities:
Provisioning: This engineer will work directly with clients to understand their environments and determine how selected MSS solutions will integrate in to them. Upon acceptance by the client of the solution, the engineer will be required to provision the devices that are part of the design. This will require provisioning of firewalls (primarily Checkpoint, NetScreen (Juniper) and Cisco PIX/ASA) devices.

Installation support: This position also requires working with the clients as they install the security equipment and troubleshoot as necessary to ensure that services are activated in accordance with the original design.

Offering support: Perform Code upgrades during schedule work windows. Provide 3rd level support for Firewall and related offerings including Checkpoint Firewall-1, Cisco PIX/ASA, ISS Proventia-M, Netscreen & SideWinder. Provide technical authority, vision, documentation of operational procedures, and guidance to ensure the continued evolution of our Client's Managed FW Offerings.

- Provide technical support for our Client's Managed Security Services on a 7x24x365 basis. This involves identifying customer issues, extensive troubleshooting, and coordinating resolution or restoral using a variety of applications and testing tools. These events can include hardware/software failures as well as security breaches and threats.
- Professionally and courteously answer inbound calls, authenticate callers, create tickets, fill out necessary checklist paperwork, generate CRM tickets for all work and informational requests, handle customer complaints, and escalate according to established procedures.
- Demonstrate excellent communication and customer care skills by documenting all activities within our customer delivery systems and communicating with customer representatives in a timely manner.
- Regularly provide high level proactive technical support including device upgrades, IDS signature revision, VPN configuration, and hot sparing.
- Stay informed of current events in the security industry including the latest exploits and threats, as well as, preventative measures, remediation and restoral techniques.
- Create new and update existing shared documentation that includes network diagrams, instructional guides, customer facing documentation, process and procedures and troubleshooting tips.
- Responsible for backups and recovery procedures including disaster recovery testing and configuration.
- Lead Technical projects and be able to delegate as well as work with a team of engineers to accomplish large scale projects goals such as upgrades, migrations and establishing new offerings.
- Introduce new offerings as a central technical role through interactions with customers project managers developers and peers.
- Responsible for the maintenance and support of existing offerings back-end processes such as managing central management consoles upgrades of management consoles, health monitoring, reporting, patching, establish and maintain standards, documentation and automation.
- Provide training to peers, Junior engineers, SOC analysts and partners.
- Generate Unix and PERL scripts and tools to automate and accomplish a variety of configuration and update tasks as well as assist in the functional operation and maintenance of MSS Engineering architecture
Qualifications:
- Bachelors Degree, or equivalent experience
- CCSE, CCNP Certification (preferred)
- 4-6 years functional experience
- Strong background in network security management and internet firewalls
- Excellent written,verbal communication and organizational skills
- Knowledge and experience with PC's, LAN and WAN topologies, routers, hubs, and terminal servers.
- Knowledge of firewall applications such as Check Point, Netscreen, Sidewinder, ISS Proventia M and Cisco PIX/ASA or knowledge of intrusion detection such as Snort, Manhunt, Sourcefire, AirMagnet and Real Secure.
- Knowledge of VPN technology.
- Ability to read, edit, create network diagrams
- Thorough understanding of the OSI model
- Strong interpersonal and customer service skills
- Knowledge of Unix Operating Systems
- Experience with processes in functional area (i.e. trouble management, fault management, and provisioning