Apply on Employer Site

AHU Technologies Recruitment · 4 months ago

IA & SS or Security Engineer

Washington , DC 20009

Full-time

Hybrid

Mid Level

$90/hr - $95/hr

AHU Technologies INC. is an IT consulting and permanent staffing firm that provides IT solutions to various industry sectors. They are seeking a Security Engineer to design and develop security architecture patterns that meet regulatory obligations and align with corporate security strategy, while collaborating with other security engineers to build compliant security controls and solutions.

AppsConsultingEnterprise Resource Planning (ERP)OutsourcingStaffing AgencyWeb Development

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Perform security assessments, identify gaps in existing security architecture, and recommend changes or improvements

Design security architecture elements to mitigate threats

Create solutions that align enterprise security architecture frameworks and standards (e.g. SABSA, NIST 800-53, ISO 27002) with overall business and security strategy

Participate in risk assessments for new technologies and projects

Employ secure configuration management processes

Assist in developing a disaster recovery and business continuity plan. Identify and prioritize system functions required to promote continuity and availability of critical business processes such that in the circumstance of system failure critical business functions are restored or recovered promptly

Document security requirements and controls for protecting information, systems, and technology assets

Define and document how the implementation of a new technology impacts the security posture of the current environment

Document and update as necessary all definition and architecture activities

Provide input on security requirements to be included in request for proposals (RFPs), statements of work (SOWs), and other procurement documents

Communicate current and emerging security threats to project team members

Qualification

Security architecture designRisk assessmentCybersecurity certificationsNetwork security methodologiesIdentityAccess managementBusiness continuity planningCommunication skillsDocumentation skillsCollaboration skills

Required

Bachelor's or Master's degree in Information Technology, Cybersecurity, Computer Science or related field

CISSP, CISA, CISM, or other relevant security related certifications is required

Experience in identifying gaps in existing architectures

Experience in designing security architectures to mitigate threats

Knowledge of computer networking concepts and protocols (e.g. TCP/IP, DNS) and network security methodologies

Knowledge of network access, identity, and access management (e.g. public key infrastructure, Oauth, OpenID, SAML, SPML)

Knowledge of capabilities and applications of network equipment including routers, switches, servers, transmission media, and related hardware

Knowledge of remote access technology concepts

Knowledge of application firewall concepts and functions (e.g. single point of authentication enforcement, data anonymization, DLP scanning, SSL security)

Work experience in cybersecurity designs for systems, networks, and multi-level security requirements or requirements for processing multiple classification levels of data

Knowledge of risk management processes and experience in conducting risk assessments

Familiarity with the application of privacy principles to organizational requirements

Knowledge of identity and access management methods

Experience with Windows, Unix, and Linux operating systems

Knowledge of business continuity and disaster recovery operation plans