Cybersecurity Engineer - In-Depth Engineering : Job Details

Job DetailsLevel Experienced Job Location Syracuse LM Offsite - liverpool , NY Position Type Full Time Education Level 4 Year Degree Salary Range $85000.00 - $120000.00 Salary/year Job Category Engineering DescriptionCybersecurity Engineer - Syracuse, NY Generous PTO, 401K, Health Insurance Package Annual Salary Range: $85,000 - $120,000 In-Depth seeks Cybersecurity Engineers to support our work on the BLQ-10 digital Electronic Warfare (EW) system for the US Navy. The Cybersecurity Engineers will have experience with operating systems, networking, vulnerability management, security principles, and design for secure Information Systems. The work is performed in Syracuse, NY. Work schedule - Flex 4/10 Schedule or Flex 9/80 w/every other Friday off - or a straight 5/8. Qualified candidates must have an active DoD Secret Level Security Clearance. In-Depth Engineering provides a competitive package of salary and benefits, including medical, dental, and vision coverage, a Safe Harbor 401(k) program, generous Paid Time Off (PTO), STD, LTD, life insurance, and tuition assistance for higher education. Prospective employees will receive consideration without discrimination because of race, creed, color, sex, age, national origin, or handicap. We are an Equal Opportunity Employer. Duties

• Perform Cybersecurity Engineering duties on Navy Control Systems/Platform Information Technology
• Integrate Cybersecurity clients on servers running the Red Hat Enterprise Linux Operating System with the ability to make configuration changes and to write Linux scripts
• Perform duties as necessary to harden Linux and Windows Operating Systems for target applications.
• Conduct security scanning and apply security patches to 3rd party software to manage vulnerabilities and reduce Cybersecurity residual risk
• Conduct Performance Verification Testing to ensure that Cybersecurity functionality, patches, and hardening perform as expected.
• Knowledge, application, and securing of Kubernetes:
• Protecting containerized applications and the underlying infrastructure from vulnerabilities and threats throughout their lifecycle, from build to runtime.
• Container orchestration within Kubernetes, to include deploying, managing, and securing containerized applications.
• Securing RHEL hosts and containers utilizing dynamic firewall rules and API's to support container migration in a live environment.
• Knowledge, application, and securing of Red Hat Enterprise Linux (RHEL):
• Experience with automating the deployment of Red Hat Enterprise Linux using tools such as Ansible, Kickstart, and Satellite.
• Experience with SELinux, fapolicy, nftables, and other RHEL security-based integrations.
• Implementing robust system hardening measures, such as configuring secure boot, encrypting data at rest and in transit, and managing user authentication, authorization, and access.
• Automating patch management and vulnerability remediation using tools such as Ansible and Red Hat Satellite, to ensure timely and consistent application of security updates.
• Ensuring compliance with security standards and regulations, utilizing NIST cybersecurity frameworks.

Preferred Skills

• Familiarity with software lifecycles, CI/CD pipelines, and Git-based workflows
• Implementing network segmentation using VLANs, VXLANs, etc. isolating network traffic.
• Configuring and managing routing protocols to ensure secure and efficient routing of traffic.
• Utilizing Quality of Service (QoS) policies in a containerized environment, ensuring that security and management traffic is properly prioritized.
• Deploying Access Control Lists (ACLs) to filter and restrict traffic based on source and destination IP addresses, ports, and protocols, and to enforce security policies and prevent unauthorized access to network resources.
• Designing and implementing management networks to securely manage and monitor network devices, including using out-of-band management and secure protocols to prevent unauthorized access.
• Implementing secure network configurations, including configuring network interfaces, DNS, and NTP, to ensure secure communication between systems.

QualificationsQualifications

• Must be a US Citizen
• Must have an Active DoD Security Clearance
• Bachelor's degree in Computer Science, Computer Engineering, Software Engineering
• 2+ years' experience working in a Cybersecurity Engineering environment.
• Security+ certification
• Linux Operating System experience or certifications desired
• Kubernetes experience or certifications desired
• Navy electronics and/or combat systems experience desired
• DOD 8570 Information Assurance Technician (IAT) or Information Assurance Manager (IAM) certifications desired