Senior Security Engineer - Remote

Job Description

Job Description

DirectViz Solutions, (DVS) is a rapidly growing government contractor that provides strategic services that meet mission IT needs for government customers.

DVS provides innovative information technology solutions to government clients through the knowledge and expertise of our dedicated employees.

DVS is an employee-centric employer that provides competitive compensation, comprehensive medical plans, 401k match, PTO accrual, professional development reimbursement, corporate-funded technology certifications, and employee recognition and appreciation programs.

At DVS, we recognize that our employees are our number one resource. If you are a problem-solving people-person, apply today!

Position Overview :

We are seeking an experienced Senior Security Engineer to join our team supporting an Enterprise Security Operations Center (ESOC) and Computer Security Incident Response Capability (CSIRC).

In this role, you will manage and maintain security documentation, develop robust security policies, conduct risk assessments, and ensure compliance with government standards.

As the Senior Security Engineer, you will play a critical role in protecting sensitive information, including Personally Identifiable Information (PII), across various Department of Labor systems.

Key Responsibilities :

Documentation and Compliance : Manage and maintain security documentation, including privacy assessments and system security plans.

Oversee security policies and ensure all systems comply with government and organizational standards.

Security Control Assessments (SCAs) : Conduct annual SCAs for approximately 63 systems, testing a third of the security controls each year.

Document and resolve issues identified during assessments, ensuring new systems undergo thorough security evaluations.

Cybersecurity Incident Response : Operate the Department of Labor's CSIRC 24 / 7 to monitor, detect, and respond to security incidents.

Train analysts on incident handling, focusing on incidents involving PII.

• Cyberthreat Dashboard Development : Build and maintain a Cyberthreat Dashboard to report on real-time cyber activities, enhancing ESOC's visibility into emerging threats.
• Vulnerability Management Program : Manage the Vulnerability Management Program, identify potential security weaknesses, and ensure timely remediation to maintain network integrity.
• Network Monitoring : Monitor the network for unauthorized activities and manage security tools to maintain and protect ESOC operations.
• Financial Systems Security : Ensure the security of financial systems for the Office of the Chief Financial Officer (OCFO), meeting all accounting and accessibility standards.
• Support for Applications and Databases : Provide security support across a range of applications and databases, ensuring compliance with government regulations and best practices.

Required Qualifications :

• Education : Bachelor's Degree in Computer Science, Information Management, Information Technology, Engineering, or equivalent field.
• Experience : Minimum of 10 years of enterprise experience in IT or technology, with at least 5 years of experience within the past decade supporting large government technical contracts.
• Certifications :
• Certified Information Systems Security Professional (CISSP) - Required
• Information Systems Security Engineering Professional (ISSEP) - Preferred
• Project Management Professional (PMP) - Highly Recommended
• Information Technology Infrastructure Library (ITIL) 4 Foundation - Desired

Preferred Skills :

• Strong technical experience in IT solutions at the senior management level.
• Experience building and maintaining dashboards or similar reporting tools.
• Familiarity with government security and compliance standards, such as NIST, FISMA, and FedRAMP.
• Proficiency in cybersecurity incident handling, risk management, and vulnerability assessment.

Physical and Mental Qualifications :

• Be able to maintain awareness during scheduled working hours.
• Prolonged periods sitting or standing at desk and working on a computer (mouse and keyboard)
• Able to lift up to 15 pounds.
• Excellent verbal and written communication; good command of the English language
• Execute tasks independently and work as a team.
• Learns and memories routine tasks.
• Strong organizational, grammar, business correspondence, and self-management skills
• Candidates must be able to perform the essential functions of the position satisfactorily. If requested, reasonable accommodation will be provided for employees with disabilities.
• DVS retains the right to change or assign other duties to this position.

DirectViz Solutions, LLC (DVS) is an equal opportunity employer and prohibits discrimination and harassment against any employee or applicant for employment because of race, color, sex (including pregnancy), age, gender identity, creed, religion, national origin, sexual orientation, marital status, genetic information, disability, political affiliation, protected veteran status, or any other status protected by federal, state or local law.

DVS has a zero-tolerance policy for harassment, threats, coercion, discrimination, and intimidation. Employees may file a complaint or exercise any right protected by Executive Order 11246, Section 503 of the Rehabilitation Act of 1973, as amended, Section 4212 of the Vietnam Era Veterans Readjustment Assistance Act of 1974, or the Veterans Employment Opportunities Act of 1998.