Information Cybersecurity Engineer at Allyon in Atlanta, Georgia

Job Description:

Summary:



Allyon, Inc. is an established IT and Healthcare Services firm and we love what we do! It makes our day when we are able help talented individuals achieve their career goals while at the same time helping our clients build quality teams. If you are interested in joining the Allyon Team, please apply or submit your resume for review today!








Job Title:



Information Cybersecurity Engineer



Location:



Atlanta, GA








Duties & Responsibilities:


• Helps with the validation security control configuration on systems, ensure all systems are configured to necessary controls, such as NIST, DFARS 252.204-7012, CMMC, and other similar requirements.


• Performs day to day analysis of security threats.


• Performs day to day remediation of security incidents.


• Provide leadership to lower-level cybersecurity and IT professionals across the enterprise.


• Assuring implementation of technical solutions supportive of institution information and Cybersecurity systems while identifying potential threatening behaviors through analysis of user compliance.


• Supporting information security operations, Cyber risk & intelligence, data loss and fraud protection, regulatory compliance, policy management and audits and assessment.


• Able to perform root cause analysis to identify and incorporate opportunities for continuous process improvement and future risk mitigation efforts, will be able to comprehend functionality of multiple technical tools and develop understanding of collection techniques and methodologies, recommend and develop requirements, specifications, design and procedures to satisfy security policy and planning and understand and author analytical reports identifying technical and behavioral analysis identified through independent reviews using multiple technology solutions.


• Ensures Cybersecurity needs are established and maintained for operations, security requirements, security risk assessment, information systems analysis, information systems design, information systems hardening, configuration and maintenance of other security boundary devices and vulnerability scanning, incident response, disaster recover, and operations continuity planning.


• Able to provide analytical support for security policy development and analysis identifying countermeasures associated with responsibilities.


• Engineer, implement, and maintain information technology solutions and associated Cybersecurity controls directly supporting the Insider Threat Program.


• Directly support the Insider Threat Program and focus on operational collection methods while performing studies through analysis and provide decision support for potential program enhancements in direct support of guidance derived from contractual requirements outlined in 32 CFR Part 117, National Industrial Security Program Operating Manual (NISPOM), Executive Order (E.O.) 13587, and the National Insider Threat Task Force (NITTF) Maturity Guidelines.


• Through the analytical and behavioral analysis collected through technological solutions, initiate response actions supporting daily operations and compliance to GTRI Information Systems and Cybersecurity policies.


• Provides technical assistance to include the support of unclassified networks and additional duties as required.



Minimum Requirements:



• Must be a U.S. Citizen


• Solid technical understanding of cybersecurity concepts, standards, guidelines, and principles.


• Experience with open-source intelligence (OSINT) tools and data sources in the execution of insider threat inquiries and investigations.


• Experience using one or more Security Information and Event Management (SIEM) tools.


• Experience using one or more endpoint detection and response (EDR) tools.


• Experience using one or more Cybersecurity Asset Management (CSAM) tools.


• Experience using one or more insider threat tools.


• Ability to complete identified Insider Threat Program training requirements prior to obtaining access to Insider Threat Program information.


• Strong written and oral communication skills.


• One or more intermediate cybersecurity certifications such as: Certified Ethical Hacker (CEH), PenTest+, Certified Threat Intelligence Analyst (CTIA), GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Enterprise Defender (GCED), GIAC Certified Forensic Analyst (GCFA), GIAC Certified Incident Handler (GCIH) or equivalent


• Minimum of 5 years of related experience with a Bachelor's degree in Computer Engineering, Electrical Engineering, Computer Science, or Information Assurance/Security or related field. OR



• Minimum of 3 years of related experience with a Masters' degree in Computer Engineering, Electrical Engineering, Computer Science, or Information Assurance/Security or related field. OR



• Minimum of 0 years of related experience with a Ph.D. in Computer Engineering, Electrical Engineering, Computer Science, or Information Assurance/Security or related field.



Other:



• Active Secret Clearance or higher.


• Master's degree.


• Minimum of 8 years of equivalent work experience.


• Expert technical understanding of cybersecurity concepts, standards, guidelines, and principles.


• Experience using open-source intelligence (OSINT) tools and data sources in the execution of insider threat inquiries and investigations.


• Experience in with Splunk applications, tools, and add-ons, including ES and SOAR.


• Experience with CrowdStrike Falcon, Identity Threat Protection, FalconX, and Falcon Recon endpoint detection and response (EDR) suite of tools.


• Experience using Axonius Cybersecurity Asset Management (CSAM) tools.


• Experience with DTEX, Code 42 Incydr, or Fulcrum insider threat tools.


• One or more advanced cybersecurity certifications such as: Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or equivalent.


• Global Counter Insider Threat Professional (GCITP), Insider Threat Program Manager Professional (ITPM), or Insider Risk Management Measures of Effectiveness certifications (IRM-MoE).



What we offer:



• Competitive pay and benefits


• 401k eligibility after 6 months including company match


Allyon, Inc. is an equal employment opportunities (EEO) employer and terms of employment are without regard to race, color, religion, sex, national origin, age, disability or genetics. Allyon, Inc. complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment.