System Security Engineer - Cleared

RDTS is seeking a Cleared System Security Engineer to support the U.S. Dept of Treasury in Washington, D.C. This position shall support one of Treasury\'s mission-critical Information Technology systems. The primary function of the Security Engineer is to maintain the Trellix/McAfee ePO system being utilized. This role is fully onsite in downtown DC, full-time, Monday-Friday with standard office hours (i.e. 8:00am-5:00pm), and available upon a favorable federal background check.

RESPONSIBILITIES:

• Provide daily security oversight for all TFIN systems and network components; Provide configuration management and oversight of security components;
• Provide operational oversight of network security and firewall settings; Provide evaluation and oversight of STIG implementation, compliance, and operations;
• Provide system hardening and vulnerability resolution; Assist in the engineering and maintaining of the antivirus architecture, evaluating solutions, troubleshooting server and client related antivirus incidents, and upgrading servers and clients;
• Provide malware and virus analysis and removal; Create indicators from analysis for use with IDS systems to prevent and to deter future threats; Assist in conducting computer forensic operations;
• Provide operational and maintenance support to Host Based Security System (HBSS) (or its replacement system), Tripwire, Nessus or Retina (or current system), ARC Sight (or its replacement), M3 (or its replacement), any IDS components, and any other security tool that is installed on TFIN as applies to items; Maintain/configuring/monitoring virus protection software and email applications;
• Ensure HBSS set up conforms to requirements and recommendations IAW Intelligence Community Security Coordination Center (ICSCC); Operate and maintain the current HBSS System and provide reports to the ISSOs for evaluation as required;
• Prepare and review test and exercise plans; Support counterintelligence efforts to manage insider threat and other human factors risks;
• Prepare indicator creations for IDS systems; Provide security impact assessment, evaluation, and recommendations to the Architect and TFIN Change Control Board (CCB);
• Provide support for TFIN PKI implementation and operations to include enrollment; Assist in technical incident response exercises and activities.

• Active Security Clearance
• Bachelor\'s degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
• 3-5 years of experience in DoD or federal cybersecurity operations.
• Minimum 3 years of experience working within classified environments.
• Familiarity with Risk Management Framework (RMF) and NIST SP 800-53 controls.
• Core Technical Knowledge Certificates Preferred: Security+ or CISSP certification, CEH, Network+ or CCNA, Linux/Windows.
• Familiarity with McAfee ePO server, Host IPS, and firewall policy tuning.
• Understanding of DISA STIGs and how to implement them across systems; Experience with STIG Viewer and compliance tools.
• Proficiency with Tripwire, Nessus, Retina, and interpreting scan results.
• Experience with ArcSight.

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status.

PI279067640