Cyber Security Engineer



  full-time   employee

District of Columbia
United States

Job Description:

Designs and develops new systems, applications, and solutions for external customer's enterprise-wide Cyber systems and networks. Ensures system Security needs established and maintained for operations development, Security requirements definition, Security risk assessment, systems analysis, systems design, Security test and evaluation, certification and accreditation, systems hardening, vulnerability testing and scanning, incident response, disaster recovery, and business continuity planning and provides analytical support for Security policy development and analysis. Integrates new architectural features into existing infrastructures, designs Cyber Security architectural artifacts, provides architectural analysis of Cyber Security features and relates existing system to future needs and trends, embeds advanced forensic tools and techniques for attack reconstruction, provides engineering recommendations, and resolves integration and testing issues. May interface with external entities including law enforcement, intelligence and other government organizations and agencies.


The successful candidate will work with systems, applications, and solutions for AOTO?s enterprise-wide Cyber systems and networks. This is a hands-on role that requires deep technical knowledge of systems, networks, and application Security along with a solid understanding of enterprise-level Security frameworks, policies, processes, and standards. The position requires strong critical thinking and analytical skills, attention to detail, and excellent oral and written communication skills.

  • Performs all tasks to align with Information Security Program direction provided by ISO, AOTO
  • Follows SecOps guidance provided by the AOTO SecOps Government Lead
  • Performs day-to-day operations of Security tools, including but not limited to:
  • Web Gateways/Proxies
  • Endpoint Protection
  • Intrusion Detection and Prevention
  • Network and Application Vulnerability Scanning
  • Patch Management
  • Log Aggregation/SEIM
  • Next Generation Firewalls

Required Skills:

  • At least 8 years total IT experience, with 2-5 years of experience as a Security administrator, Engineer, or analyst in an enterprise environment
  • Experience with Vulnerability Management Systems (e.g. Nessus)
  • Experience with Patch Management Systems (e.g. Quest/Dell Kace 1000, Bigfix)
  • Experience coordinating and overseeing the implementation of Security patches.
  • Experience with remediation of Security vulnerabilities.
  • Knowledge of the operating characteristics of various operating systems, e.g. Windows 7 and 10, Windows server 2008/2012/2016, iOS.
  • Knowledge of general management and auditing techniques for identifying problems, gathering and analyzing pertinent information, forming conclusions, developing solutions and implementing plans consistent with management goals.
  • Plan, manage and provide guidance pertaining to IT Security to include all phases of computer Security (i.e., hardware, software, and telecommunications equipment, installation and evaluation). Work frequently requires the candidate to be involved in diverse projects simultaneously, several of which may have equally high priority.
  • Excellent oral and written communications skills. Interaction and information gathering with coworkers and customers.

BS or equivalent + 9 yrs related experience, or MS + 7 yrs related experience


Save This Job

Email This Job to a Friend