Cyber Security Engineer, Mid-level

Dark Wolf Solutions is looking for a Mid-level Cybersecurity Engineer who is interested in working in a fast-paced environment providing cybersecurity support for an on-premises & cloud-native DevSecOps platform for a DoD customer. The successful candidate will support accreditation activities to maintain Authority-to-Operate for on-prem networks and services, analyze security posture of services, secure and harden services, monitor platforms and services for vulnerabilities and threats, and aid in the continual iteration and integration of on-premises & cloud networks to further meet engineering requirements. Our Cybersecurity Engineers are asked to solve challenging problems for unique customers and have a direct impact on the direction of software products and solutions used by those customers. This position is located in the Discovery District of The University of Maryland’s campus. Responsibilities include, but are not limited to:

• Assist with maintenance of assessment and authorization (A&A) documentation in compliance with DoD Cybersecurity policy and agency guidance, including DoD, CNSS, and NIST special publications.
• Research security standards/tools; review or conduct system security and vulnerability assessments of on-prem and cloud environments in a fast-paced, demanding environment.
• Support development and implementation of innovative methods to achieve compliance with government and commercial cybersecurity frameworks.
• Provide continuous monitoring, auditing, and integration support for on-prem and cloud environments.
• Perform anti-malware and configuration compliance scans of managed endpoints.
• Perform vulnerability management and remediation of managed endpoints
• Conduct technical evaluation of Windows- and Linux-based information system designs, and recommend design and security improvements.

Required Qualifications:

• Knowledge and 3+ years of experience experience with NIST SP 800-53, the Risk Management Framework, and DISA STIGs
• Advanced experience securing and maintaining Linux devices
• Advanced knowledge of day-to-day Linux operations such as service restarts, user account management, full-disk encryption requirements, and networking
• Advanced troubleshooting skills and abilities. Ability to think critically and creatively about presented problems and proposed solutions
• Advanced analytical skills: able to use prior experience and knowledge to seamlessly incorporate new knowledge or information during client interactions.
• Experience with endpoint device monitoring
• Experience with enterprise/fleet configuration and automation
• Previous experience with ELK (Elastic) stack log monitoring, observability and auditing features.
• Experience with vulnerability management tools such as Tenable Nessus, ACAS, GVM/OpenVAS, or equivalent
• Experience with IDAM and RBAC/ABAC
• HS Diploma
• US Citizenship and an active Secret security clearance
• Ability to work 3 days a week on-site in an office and lab environment

Desired Qualifications:

• Knowledge of newer ATO strategies such as Fast Track or Continuous ATO.
• Knowledge of Defense Counterintelligence and Security Agency (DCSA) security best-practies. Knowledge of the DCSA Assessment & Authorization Process Manual (DAAPM)
• Previous experience with a System-of-Record such as eMASS or XACTA
• Knowledge of  network engineering best practices
• Experience with Palo Alto or Cisco devices, such as firewalls, security appliances, routers, and switches
• Experience assessing the security of cloud and Kubernetes environments
• Previous experience as a system administrator or cyber security engineer utilizing a Linux information system.
• Experience with IaC and CaC tools such as Terraform, OpenTofu, or Ansible
• The following certifications are desired: CEH, Security+, CISSP, CISM, or CKA
• Bachelor's Degree in Computer Science, Cybersecurity, or related field