Sr. Cybersecurity Engineer III (5727)

AsSr. Cybersecurity Engineer, you'll play a critical role in safeguarding digital assets by designing, implementing, and maintaining robust cybersecurity infrastructure. You will work collaboratively with cross-functional teams to identify vulnerabilities, develop solutions, and ensure compliance with security protocols and industry standards. Staying informed about emerging trends and threats in the cybersecurity landscape, you will proactively enhance defenses through innovative tools and methodologies. Additionally, you will conduct risk assessments, implement security controls, and support incident response efforts to minimize risks and maintain the integrity of our systems and data.

We know that you can't have great technology services without amazing people. At MetroStar, we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers.

If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!

What you'll do:

• Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure.
• Conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications.
• Develop and implement incident response plans to effectively address security breaches, incidents, and breaches.
• Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures.
• Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents.
• Analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks.
• Work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity.
• Maintain thorough and accurate documentation of security processes, procedures, and configurations. Prepare detailed reports on security findings, incidents, and actions taken.

What you'll need to succeed:

• Active TS/SCI clearance with CI poly (REQUIRED)
• A minimum of 10 years of experience as a cybersecurity engineer with a specialization in designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.
• A working knowledge with creating SMG's (Security Management Guides)
• A working knowledge with AWS services, their usage, APIs, CLI/SDKs and patterns
• Expert in AWS IAM policy creation, including condition keys and "not" usage
• Expert-level skills in specifying and implementing log collection into tools such as Splunk, and performing querying and analysis of aggregated logs to identify security-relevant anomalies or risks
• Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP).
• Demonstrated and repeat experience implementing controls for cloud, container, and DevSecOps services and solutions from IL5 to IL6+ on NIPR, SIPR, and JWICS.
• Strong understanding of network protocols, operating systems, and infrastructure components.
• Expert proficiency in incident response, security incident handling, and forensic analysis techniques.
• Expertise with security tools such as Fortify, Acunetix, and Prisma Cloud
• Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
• CISSP or equivalent certification to support DoD 8140 requirements