• InfoSec Engineer II

    Location US-TX-Fort Worth
    Posted Date 3 weeks ago(7/25/2018 10:30 AM)
    Job ID
    # Positions
    Business Unit
  • Overview

    Scope: The InfoSec Engineer II represents mid-level level position for a career in Information Assurance and Security at the ESA, LLC Fort Worth Operations Site.  The position is under the direct supervision of the Chief Information Security Officer.


    The InfoSec Engineer II is a member of the InfoSec organization and works closely with other members of the team to assist in the development and implementation of a comprehensive information security program. The InfoSec Engineer II works with the IT department and the business to configure and deploy technical controls that meet specific security requirements.


    • Responsible for configuration and maintenance of security tools, including but not limited to:
      • Antivirus, endpoint encryption, log monitoring, intrusion detection/prevention, firewall, vulnerability management, SFTP and data loss prevention (DLP) solutions.
    • Identifies relevant audit log sources and configures logging between the source and SIEM solution.
    • Writes, tests, and implements log monitoring correlation rules in the SIEM solution.
    • Works with and coordinates appropriate IT staff to implement security solutions.
    • Creates, documents, and implements security baseline configuration settings for systems in the enterprise.
    • Provides security evaluation and configuration of remote access management solutions.
    • Identifies security requirements for the InfoSec organization and the business, based on need.
    • Develops technology to automate security monitoring.
    • Acts as technical reviewer in the security certification process, making recommendations to the CISO for approval.
    • Develops and maintains documentation to support ongoing security system operations, maintenance and specific problem resolution.
    • Provides technical reviews for risk and vulnerability assessments, incident response, and change requests
    • Provides technical security review of security assessment checklists in the vendor and subcontractor review process.
    • Supports, monitors, tests and troubleshoots security hardware and software problems.
    • Regularly monitor and conduct technical tests of Information Assurance security controls.
    • In coordination with the IT department, test, deploy, and implement patches to vulnerabilities on security-related hardware and software.
    • Researches, evaluates, and recommends information-security-related hardware and software, including developing business cases for security investments.
    • Assists with authoring and maintain the Electronic Communications Plan (ECP) to better meet business needs while ensuring compliance to governing agencies.



    Minimum Qualifications:


    Education (Highest Level Required/Preferred)

    Bachelor's degree preferred.


    Certifications/Licenses: (DoD 8570.01-M IAT Level II certification)

    Required:        CompTIA Security+, GSEC, SCNP or SSCP

    Preferred:       CISSP, CISA, GSE or SCNA


    Experience Required:

    Functional (Using Skill Set): 3-5 years

    Management: 3-5 years

    Industry: 10+ years


    Knowledge, Skills, Abilities Required (Unique and Measurable):

    • Must understand and be able to apply system security design processes, defense-in-depth, system integration, intrusion prevention/detection and certification & accreditation processes Working knowledge of NIST security framework
    • Must have the ability to analyze systems/network security architecture and report findings
    • Ability to conduct research into IT security issues and products
    • 3-5 years of Information Security experience
    • Full working knowledge of Windows, UNIX, and LINUX operating systems
    • Understanding of TCP/IP and other network protocols



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed