Lead Cyber Security Engineer / Section Supervisor
The Johns Hopkins University Applied Physics Laboratory (APL), a national leader in scientific research and development, is located midway between Baltimore and Washington, DC is seeking a Lead Cyber Security Engineer.
Under the direction of the Information Security (ISA) Group Supervisor, the Cyber Security Engineering Section Supervisor will serve as a security engineering architect to lead, coordinate, and deliver information assurance capabilities in support of IT security operations.
Duties (Listed in order of importance with the estimated amount of time spent at each task):
- Perform supervisory duties to include recruiting, evaluating, coaching and career development of direct and indirect reports whose responsibilities support Cybersecurity Engineering initiatives. (10%)
- Establish, manage, and meet information security goals and objectives related to security systems. Develop, disseminate, and produce reports, trends, and situational analysis on information assurance activities. Configure and troubleshoot security infrastructure devices. Identify and define system security requirements. Apply technical expertise in a variety of Information Security tools in complex network environments. (30%)
- Architect, develop, and engineer solutions to support Computer Network Defense. Develop technical solutions and deploy new security tools to help mitigate security vulnerabilities and automate repeatable tasks Analyze information regarding cyber threat tactics, techniques, methodologies, and vulnerabilities that present threats to IT operations. Create, support, and monitor information assurance services to mitigate risks to IT operations. Collaborate with other organizations to maintain situational awareness, stay ahead of threats, and leverage best practices (40%)
- Participate in project and cross-functional security teams requiring interaction with system administrators, networking staff, application developers, IT operations staff, and cyber research and development areas within the organization in order to identify and implement information assurance controls and risk mitigation techniques for IT operations. (20%)
Note: This job summary and listing of duties is for the purpose of describing the position and its essential functions at time of hire and may change over time.
- Bachelor’s Degree in Information Security, a security related discipline, or equivalent years of professional work experience that provides the necessary knowledge, skill, and abilities.
- 7 years of experience:
- Working in a complex network environment
- In an information systems security engineering role
- 3 years of experience managing and leading a small team of up to 8 security engineers
- Work effectively with all levels of management and staff
- Proven project management and process improvement methodologies
- Current knowledge of threats and information security trends
- Operational knowledge of enterprise architecture and security engineering best practices
- Hands-on working knowledge of networking and protocol analysis
- Working knowledge of Windows, Unix and Linux operating system security requirements
- Strong analytical, problem solving skills and decision making skills with ability to develop solutions
- Excellent verbal, written and diplomacy skills with the ability to multi-task, and work well under pressure
- Mentor and develop skills and abilities of early career security engineers
- Ability to lead others and effectively; prioritize and execute tasks in a high pressure and fast paced environment
- Technical expertise in some of the following areas:SIEM, Splunk, IPS/IDS, Firewall, Proxy, Full Packet Capture technologies, Sandbox technologies (static and inline), Memory analysis, Host based anomaly detection, and Netflow anomaly detection techniques
- Master’s Degree in Information Security/Assurance or security related discipline
- CISSP, GIAC and PMP Certification
- Experience with FedRAMP security controls for an Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) cloud paradigms
- Experience with cyber incident response management, intrusion detection, server/host-based security systems, risk assessments, and penetration testing
Special Working Conditions:
Flexibility to work outside of normal business hours, to include some overnight and/or weekend work at least once a month?.
Ability to travel regionally to attend industry meetings (i.e., Baltimore / DC / Virginia) and CONUS travel ~3-4 times per year.
Applicant selected will be subject to a government security clearance investigation and must meet the requirements for access to classified information. Eligibility requirements include U.S. citizenship.
APL offers a comprehensive benefits package including a liberal vacation plan, a matching retirement program, significant educational assistance, a scholarship tuition program for staff with dependents, and competitive salaries commensurate with skills and experience. For more information about our organization, please visit our web site at www.jhuapl.edu.
Equal Employment Opportunity:
Johns Hopkins University/Applied Physics Laboratory (APL) is an Equal Opportunity/Affirmative Action employer that complies with Title IX of the Education Amendments Acts of 1972, as well as other applicable laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
Back to top