RT: Information & Network Security Engineer

Location: Harrisburg, Pennsylvania, United States

Apply

Notice

This position is no longer posted.

Requisition Number: 9003

Position Title:

External Description:

The health and safety of our employees is our top priority. Due to the pandemic, all our employees are working remotely and we will be conducting candidate interviews by video. This position will be required to be on client site full time once the COVID-19 crisis has abated.

 

Here’s what you’ll do in this role:

  • Manage and support the security technologies within the team's jurisdiction (to include defensive and offensive security solutions on the perimeter and internal networks such as firewalls, intrusion prevention, data loss prevention, etc.).
  • Participate in security "red" and/or "blue" team efforts to identify security flaws, recommend countermeasures and remediation efforts, and ensure those measures are effective after implementation.
  • Research network security technologies across the Agency's blended cloud and on premise architectural footprint and make recommendations for future implementation.
  • Perform code reviews, review vulnerability scans and penetration tests, and assist the peer Digital Technology Solutions (DTS) teams with security best practices in their respective areas.
  • Provide subject matter technical expertise and recommendations on configuring and securing network and cloud native technologies in the Agency's blended cloud and on premise architecture.
  • Identify information and network security weaknesses and provide appropriate solutions in the Agency's blended cloud and on premise architecture.
  • Automate the deployment, scaling, and management of cybersecurity monitoring and control processes in the Agency's blended cloud and on premises environments.
  • Research and document configuration management best practices across the Agency's blended cloud and on premise architectural footprint for security devices and tools necessary to the function of a robust security program.
  • Research, design, participate in or lead the implementation of low to moderate complexity security initiatives.
  • Identify, implement, and administer the identities, security systems and applications, controls and procedures required to protect the agency's information system assets in a cost-effective and uniform manner.
  • Monitor compliance and adherence to agency security policies and assist with violation investigations.
  • Perform ongoing oversight of the vulnerability and security patch management programs.
  • Deploy and administer vendor and internally developed software and procedures to address security requirements
  • Monitoring and processing of configuration change requests and service desk tickets.
  • Under guidance of senior information and network security engineers and security architects, work to identify threats and vulnerabilities, and collect, correlate, and analyze data to detect actual or potential unauthorized access to the agency's networks and systems in the Agency's blended cloud and on premise architecture.
  • Monitor and report on information usage within the Agency blended cloud and on premise architecture and highlight areas that indicate a requirement for enhanced security monitoring and controls.
  • Assist in the evaluation of the type and severity of security events.
  • Resolve issues by taking the appropriate corrective action or by following escalation procedures.
  • Conduct forensics investigations as required.
  • Brief management on the status of security initiatives and effectiveness of controls.
  • Monitor for and identify deviations from security policy and demonstrated practices and report on risks and exposures needing remediation. Communicate and collaborate with subject matter experts to determine mitigation strategies and recommend remediation solutions and timelines.
  • Provide ongoing information to management about the health of the environment, enhancements, and innovations
  • Provide support and evidence collection for internal and external audits.
  • Assist with maintaining and testing the department's Disaster Recovery and Business Continuity Plan.
  • Remain current with industry specific and information security knowledge.
  • Mentor less experienced team members.
  • Other duties as assigned.

 

Your qualifications:

  • Bachelor's degree with two to five years of relevant work experience in information security administration or any combination of training, experience and/or certifications.
  • Proficient with the implementation of security principles, risk assessment policies and standards, information security best practices, products and technologies, defense-in-depth strategies, and network technologies.
  • Proficient knowledge of the National Institute of Standards and Technology (NIST) security controls family and guidance (especially NIST SP800-53).
  • Experience with securing various operating environments including mainframes, servers, network hardware, and databases.
  • Knowledge and experience in several of the following areas: access control, application development, database, encryption, network, mainframe, security controls, server hardening, and server patching technologies.
  • Demonstrated ability to challenge the status quo, identify issues, and provide viable suggestions to improve procedures.
  • Demonstrated effective skills with time management, prioritization, and attention to detail.
  • Demonstrated analytical, critical thinking and organizational skills
  • Possess a high level of integrity and ethics
  • Proficient in Microsoft Office suite.
  • Preferred Qualifications: Current security-related industry certifications; application development experience, including the ability to create programs and scripts from scratch; experience of cloud computing and cloud native technologies (AWS, Azure); virtualization and container security; experience with DevOps / DevSecOps; automation of business processes; and experience conducting computer forensic investigations using proven principles and techniques.
  • Impeccable integrity. We are team-first at Celerity
  • A positive attitude. We can have fun while we work hard to solve business challenges
  • A heart for people. Excellent relationship-building skills across teams, peers, clients, vendors
  • A head for business. Nothing falls through the cracks on your watch
  • A passion for results. You strive to work complex issues with a strong sense of ownership and urgency.

Remote: 1

City: Harrisburg

State: Pennsylvania

Ext Portal Job Header:

Community / Marketing Title: RT: Information & Network Security Engineer

Company Profile:

Find your home at Celerity

At Celerity, authenticity isn’t just a buzz word. It’s a promise to each other and to our clients that we will bring our true, best selves to every interaction, to every solution. We hire for the person -- not for the role. And we believe in surrounding ourselves with not only the best and brightest innovative thinkers, but with those of highest integrity who are purpose-driven in all that they do. That's how we've come to be known by our clients as the consultancy that delivers impact, not ego.

Our culture attracts people who crave something greater than a job: meaningful opportunities in an environment of mutual respect. Every kind of talent is celebrated here. We look for people who share our values to be bold, innovative, and a transformative force for our clients. Through opportunities to shape skill sets and work with industry-leading consultants and exciting clients, including access to professional trainings and certifications that best align with your career goals, Celerity provides the freedom to grow both personally and professionally.

We offer a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace. Find out more at www.celerity.com/careers.

EEO Employer Verbiage: <p><strong>We Are Celerity<br /></strong></p> <p> </p> <p>Founded in 2002, Celerity <span style="color:black;background:white">is a business and technology consulting firm dedicated to helping businesses respond to change—efficiently, quickly, and with focus on the customer. We specialize in digital experience, change management, operational efficiency, and the integration between them all.</span> Celerity is the premium solutions partner of Randstad Technology Group (RTG US).</p> <p> </p> <p>This is an extraordinary time to be in business. As digital transformation continues to accelerate and businesses are challenged to quickly respond, Celerity is leading the way — supporting transformative change for our clients and offering our professionals exciting career opportunities.</p> <p> </p> <p>We help businesses thrive in a changing environment. Join us.</p>

CountryEEOText_Description: We are proud to be an Equal Opportunity Employer. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Celerity is committed to providing veteran employment opportunities to our service men and women.