Lead Cybersecurity Engineer

JOB TITLE: Lead Cybersecurity Engineer

LOCATION: 100% Remote

EXPECTED PAY: $55 Hr W2 $65 Hr C2C MUST be USC only with SECRET CLEARANCE

Client : BigBear.ai

Due by Tomorrow

LINKEDIN Matching to the resume is mandatory for submissions.

Work Auth: NOT OPEN TO SPONSORSHIP Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Clearance not initially required however must be clearable to SECRET. May need a TOP SECRET later.

Duration: 6Month C2H

Interview Process/# of Rounds: 3 Rounds 45 min with Hiring Manager > Technical Panel > Final Round

They have been building out their cyber department. Recent reorgs created the need for this position. Lead cyber engineer will oversee fols on cyber ops team (2 analysts) as well as cyber engineers.

Notes:

• Looking for hands on technical engineering with some operations experience. Will be leading 2 analysts.
• Someone with 25 years in lead role preferred someone with extensive experience ready to make the jump to leadership could be a fit.
• Federal experience is great must be clearable.
• More important is strong engineering/hands on keyboarding/programing background. Proficient in the like to haves is more important that the strong cybersecurity knowledge assuming they have worked within highly regulated environment with NIST frameworks.
• Currently setting up DLP Purview Zscaler

Hoping to do a 6month contract to hire

Overview

This position of Cybersecurity Lead Engineer presents an exciting opportunity to play a pivotal role in safeguarding BigBear.ai systems. In this position you will collaborate closely with a talented group of engineers analysts and specialists to design deploy and support robust cybersecurity measures that protect the organization from everevolving threats. The Lead Engineer will leverage expertise and foster a culture of teamwork to enhance proactive defense strategies streamline incident response and ensure the continuous improvement of the security posture. Together the team will build a resilient framework that not only defends against attacks but also promotes a shared commitment to cybersecurity excellence across the organization.

We are a remote team of high performers. While prior experience working remotely isnt required you must perform well given a high level of independence and autonomy while collaborating asynchronously within and across teams.

What you will do

• Design robust cybersecurity measures and access management solutions to protect the organizations systems and data.
• Lead the implementation operationalization or optimization of projects in support of the cybersecurity program.
• Advise on a wide range of engineering and operational security issues i.e. security detection and response procedures ensuring that the organization can swiftly detect and respond to potential threats. By establishing clear playbooks for incident response you will help the team efficiently address vulnerabilities and mitigate risks in real time.
• Assist the Security Operations team in responding to security incidents ensuring a swift and effective resolution.
• Routinely collaborate with IT and business units to manage access control processes and application integration. Works with business to ensure access control is integrated with business requirements for any new application
• Work closely with the GRC team on the development and implementation of standards operating procedures and controls. You will also coordinate and document exemptions to established security controls.
• Assists with external information security audits for regulatory compliance and assessments such as penetration testing.
• Other duties as assigned.

What you need to have

• Clearance not initially required however must be clearable to SECRET. May need a TOP SECRET later.
• 10 years of experience in implementing and supporting cybersecurity programs.
• Proficient understanding of Information technology systems and processes network infrastructure data architecture data processes and protocols.
• Excellent written communication skills. Must be able to clearly communicate risks at both strategic and tactical level.
• Experience operating within NIST 800171 NIST 80053 CMMC or equivalent cybersecurity frameworks.
• 3 years in a role performing Threat Detection Incident Response Threat Intelligence or Abuse Mitigation
• 3 years in implementing and supporting Identity and Access management products and processes
• Experience with data security solutions such as database activity monitoring encryption obfuscation and/or tokenization.

What wed like to have

• Okta Workforce Identity experience
• SailPoint or comparable IGA solution experience
• Hands on experience with SIEM engineering
• Purview Information Protection or comparable data protection solution experience
• Proficient in scripting languages including Python and PowerShell