Cyber Security Engineer

Job Description

Oteemo is looking for a Mid-level Cybersecurity Engineer who is interested
in working in a fast-paced environment providing cybersecurity support for a cloud-native
DevSecOps platform for a DoD customer. The successful candidate will support
accreditation activities to attain Authority-to-Operate for cloud platforms and services,
analyze security posture of services, secure and harden services, and monitor platforms
and services for vulnerabilities and threats. Our Cybersecurity Engineers are asked to solve
challenging problems for unique customers and have a direct impact on the direction of
software products and solutions used by those customers. This position is located in the
Discovery District of The University of Maryland’s campus.

Key Responsibilities:

1. Assist developing assessment and authorization (A&A) documentation in compliance
   with DoD Cybersecurity policy and agency guidance, including DoD, ICD, CNSS,
   and NIST special publications.
2. Research security standards/tools; review or conduct system security and
   vulnerability assessments of cloud and on-prem environments in a fast-paced,
   demanding environment.
3. Support development and implementation of innovative methods to achieve
   compliance with government and commercial cybersecurity frameworks.
4. Provide continuous monitoring support to on-prem and cloud environments.
5. Perform anti-malware and configuration compliance scans of managed endpoints.
6. Perform vulnerability management and remediation of managed endpoints.
7. Conduct technical evaluation of Windows-, Linux-, and macOS-based information
   system designs, and recommend design and security improvements.

Qualifications:

Required Qualifications:

• Knowledge and experience with NIST SP 800-53, NIST SP 800-171, and DISA
  STIGs.
• Advanced writing skills: able to clearly articulate ideas for executive level
  consumption.
• Advanced problem-solving skills: able to use prior experience and knowledge to
  address new situations; especially during interactions with clients.
• Advanced analytical skills: able to use prior experience and knowledge to seamlessly
  incorporate new knowledge or information during client interactions.
• Ability to work on site in an office environment.
• Experience with endpoint device monitoring.
• Experience with enterprise/fleet configuration and automation.
• Experience with auditing of device activity within a network.
• Experience with IDAM and RBAC/ABAC.
• HS Diploma.
• US Citizenship and an active Secret security clearance.

Desired Qualifications:

• Previous experience with newer ATO strategies such as Fast Track or
  Continuous ATO.
• Experience with IL5 ATO process.
• Knowledge of network engineering best practices.
• Experience with Palo Alto or Cisco devices.
• Experience assessing the security of cloud and Kubernetes environments.
• Knowledge of Platform One Iron Bank secure registry of hardened containers.
• Previous experience as a system administrator or cyber security engineer
  utilizing a Linux or macOS information system.
• Previous experience with ELK (Elastic) stack log monitoring, observability and
  auditing features.
• Experience with IaC and CaC tools such as Terraform, OpenTofu, or Ansible.
• The following certifications are desired: CEH, Security+, CISSP, CISM, CKA.
• Knowledgeable on Zero Trust Architecture concepts and products such as
  Google BeyondCorp or zScaler.
• Bachelor's Degree in Computer Science, Cybersecurity, or related field.

We Value:

• Drive: Passion and energy to implement quality technical solutions. Self-motivation and intellectual curiosity.
• Commitment to Quality: Passion to conceive and produce world-class solutions that drive real-world value for the customer.
• Customer Focus: Consultative approach to solving problems for customers. Expectations management.
• Communication: Superior communication skills. Ability to clearly articulate problems, solutions, risks, rewards etc. (written and verbal).
• Technical Skills: Love for technology. You have to be inherently passionate about technology.
• Business Acumen: Technology ultimately is used to enable the business. We look for people who understand how the businesses can be enabled through their technical solutions.

What we offer:

• Ability to make a noticeable difference for the organization and our customers.
• Tremendous growth opportunity by becoming part of a rapidly growing organization. It’s not your tenure but what you can bring to the table that defines how your career will be shaped. You control your growth.
• Complex but interesting challenges to improve the depth and breadth of your technical and business skills. Our consultants are business technologists and understand how technology drives business.
• Competitive pay and benefits.

Work authorization requirement: US Citizen & DOD Secret Clearance

Oteemo is an equal employment and affirmative action employer. We evaluate qualified applicants on merit and business needs and not on race, color, religion, creed, gender, sexual orientation, national origin, ancestry, age, disability, genetic information, marital status, veteran status or any other factor protected by law. Oteemo complies with the law regarding reasonable accommodations for handicapped and disabled employees.