**On-Site in Dulles, VA**
The Senior Security Engineer plays a crucial role in maintaining and enhancing the security of the IT infrastructure.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
- Security Protocols: Establish and maintain security protocols to protect sensitive data and systems.
- System Monitoring: Continuously monitor systems for security breaches and respond promptly to incidents.
- Vulnerability Assessment: Conduct regular vulnerability assessments and penetration testing to identify and mitigate risks.
- Security Solutions: Develop and implement security solutions, including firewalls, encryption, and intrusion detection systems.
- Compliance: Ensure compliance with industry standards and regulations.
- Team Leadership: Lead and mentor junior security engineers and other IT staff.
- Incident Response: Develop and manage incident response plans and procedures.
- Security Training: Provide security training and awareness programs for employees;
- Ability to manage and lead a staff of 4 IT professionals with regard to high-priority security management implementation;
- Stay abreast of new and emerging security practices and policies.
QUALIFICATION: Experience, Education, and Certification
- Education: Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
- Experience: Minimum of 5 years of experience in IT security.
- Certifications: Relevant certifications such as CISSP, CEH, CISM, or similar.
- Technical Skills: Proficiency in network architecture, security protocols, encryption, and security audit tools.
- Soft Skills: Excellent problem-solving, analytical, and communication skill Knowledge, Skills, and Abilities
- Network Security: Proficiency in network architecture, firewalls, VPNs, and intrusion detection/prevention systems.
- Operating Systems: Deep understanding of various operating systems.
- Cloud Security: Expertise in securing cloud environments (Azure) and understanding cloud service models (IaaS, PaaS, SaaS).
- Encryption: Knowledge of encryption technologies and secure communication protocols.
- SIEM Tools: Experience with Security Information and Event Management (SIEM) tools for monitoring and analyzing security events.
- Incident Response: Ability to manage and respond to security incidents, including forensic analysis and root cause analysis
