Position Description
Defense Digital Service - Cyber Security Engineer
Come do impactful work with a brilliant, motivated team.
Position Description
This position is being recruited as a GS-15 Cyber Security Engineer in the Excepted service. We are looking for a great hands-on engineer who can also help with securing and enhancing our resilient cyber security posture within the Department of Defense ( D o D). This position will serve in the Defense Digital Service under the C hief Digital and Artificial Intelligence Office (CDAO) .The work that you do here will directly contribute to our national security, improve the lives of those who serve, and make an impact that spans the globe. If you love cutting-edge security research, implementing modern security solutions, hunting for vulnerabilities and fixing them, and interacting with security researchers, vendors, and government partners, you should apply! We are solving a diverse set of problems, and we need a diverse team to do it.
About Defense Digital Servic e
DDS is on a mission to deliver better digital services to the warfighter through design and technology. DDS transforms how the DoD designs, builds, buys, and deploys technology to improve lives and stay ahead of our adversaries. This organization touches on a wide range of issues from cybersecurity to human resources ; crisis response to data-wrangling. These complex challenges are tackled head-on by recruiting exceptional tech talent from industry and government to our talented team for a two-year term (with the option to renew for a second term).
About the Chief Digital and Artificial Intelligence Office
The Chief Digital and Artificial Intelligence Office (CDAO) is an Office of the Secretary of Defense organization leading efforts to accelerate the adoption of data, analytics, and Artificial Intelligence (AI) across the DoD.
Position Duties/Responsibilities
Roles and Responsibilities
- Facilitate the technical components of running bug bounties in DoD environments - configure the environment for a bounty event, evaluate reported vulnerabilities, and aid with remediation.
- Plan, implement, manage, monitor, and upgrade security measures for the protection of the organization's security boundary including our data, systems, and networks.
- Engineer, implement, and monitor security measures for the protection of computer systems, networks, and information
- Identify and define system security requirements and troubleshoot security and network problems.
- Ensure that the organization's data and infrastructure are protected by enabling the appropriate security controls.
- Design computer security architecture and develop detailed cyber security designs
- Prepare and document standard operating procedures and protocols
- Configure and troubleshoot security infrastructure devices
- Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
- Lead incident response efforts for the organization and communicate incident status effectively.
- Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement
Technical Experience
- 5+ years of proven work experience with defensive cyber operations
- Experience with red team efforts, offensive security, or penetration testing is required.
- Proficiency in Python, Bash, and/or Powershell.
- Detailed technical knowledge of database and operating system security
- Experience in building and maintaining enterprise security systems
- Hands-on experience in security systems, including firewalls, intrusion detection systems, endpoint security software, authentication systems, log management, content filtering, etc.
- Experience with network security and networking technologies and with system, security, and network monitoring tools
- Thorough understanding of building resilient and hardened enterprise environments and deep knowledge and appreciation for the latest security principles, frameworks techniques, and protocols
- Familiarity with web-related technologies (Web applications, Web Services, Service Oriented Architectures) and network/web-related protocols
- Problem-solving skills and ability to work under pressure
Key Requirements
- U.S. Citizenship.
- Must be able to obtain and maintain a Top Secret/SCI clearance.
- Candidate is encouraged to provide e-portfolio, project samples, Github, etc. with their submission package