IA-HHS-ITSA2-Sr. Incident Response Cybersecurity Engineer (699863) - REMOTE - 13 JAN 2023

Agency Interview Type:

Web Cam Interview Only

Short Description:

The Sr. Security Incident Response Engineer, you will perform duties such as review existing architecture to plan, deploy, and aid in enhancing secure solutions to protect HHS data within the environment.

Complete Description:

The Security Incident Response Engineer develops and maintains standard operating procedures (SOPs) and condition the environment according to the security and compliance requirements of HHS and the eligibility system. This person will collaborate with the compliance team to develop security control implementation descriptions to meet compliance requirements. Additionally, monitors, investigates, and responds to threats and cybersecurity incidents in HHS infrastructure. The engineer should be comfortable working independently with guidance from a project manager and amongst a team.

The Sr. Security Incident Response Engineer will:
Review existing security documentation and processes to provide areas of improvement.
Provide investigation and remediation support to mitigate security threats and incidents.
Work with various teams to ensure best practices regarding information security

Responsibilities:
Detect and respond to agency wide security incidents, coordinating cross-functional teams to mitigate and eradicate threats.
Monitor and analyze emerging threats, vulnerabilities, and exploits.
Aid in developing and implementing scalable preventative security measures (detection, monitoring, exploitation)
Develop, execute, and track the performance of security measures to protect information and network infrastructure and Computer systems.
Design computer security strategy and engineer comprehensive cybersecurity architecture.
Identify, define, and document system security requirements and recommend solutions

Desired Background:
Possess a breadth of knowledge and experience across the information security domain, such as endpoint security, identity management, cloud security, detection engineering, vulnerability management, incident response, and threat intelligence.
Hands-on experience investigating security events and incidents across complex and heterogeneous environments, preferably including Microsoft Defender.

Certifications:
Security + Required*
CeH
CISA
CISM

Needed Soft Skills:
Time management skills with the ability to operate under short deadlines
Self-starter with minimal management supervision
Ability to work under pressure and manage fluctuating workloads
Work in a team setting
Ability to gain consensus
Maintain confidentiality
Excellent written and verbal communication skills

Skills : SOAR,SIEM