{"schemaVersion":"jobsearcher.job.v1","id":"4de5522f33aeae2e9ea8ffbf","url":"https://jobsearcher.com/jobs/4de5522f33aeae2e9ea8ffbf","canonicalUrl":"https://jobsearcher.com/jobs/4de5522f33aeae2e9ea8ffbf","title":"Information System Security Engineer","description":"Job Title: Information System Security EngineerLocation: Suffolk, VA (Onsite 5 days per week)Duration: Contract to Hire (6 months)Citizenship: is able to obtain clearanceTop Skills:Strong in ElasticsearchVulnerability experienceLevel II IAT CertServe as the primary Subject Matter Expert (SME) for all aspects of the Continuous Network Defence cybersecurity tools in accordance with all applicable DoD Instructions (DoDI), policies and regulations.Utilise Tenable and Nessus to perform regularly scheduled discovery and vulnerability scans, provide analysis of results, and development mitigation strategies to reduce overall risk surface.Manage Trellix ePO and deploy endpoint products such as ENS, PA, DLP, etc., to implement and enforce endpoint security policies in accordance with the response to and mitigation of potential threats.Implementation of ForeScout policies for the Comply-To-Connect (C2C) initiative, to ensure continuous compliance and quarantining of unauthorised, noncompliant devices.Monitoring of Cortex Xpanse to identify and assess external-facing assets and respond to alerts with corrective action to mitigate the findings.Ensure continuous data flow is active for the Continuous Monitoring and Risk Scoring (CMRS) DoD system, including endpoint security data (Trellix), vulnerability and flaw remediation (Tenable), and security compliance data (ForeScout).Configuration, modification and deployment of security policies on Cisco Firepower Management Console (FMC) to ensure intrusion prevention (IPS) is enforced at the network security level.Utilise and validate DNS and DHCP data within Infoblox, monitoring for anomalous records, unauthorised entries, and removal of duplicate records.Implementation of AD Audit Engine to detect and investigate anomalous, malicious or malformed activity within Active Directory, to identify potential insider threats and/or compromised accounts.Conduct threat hunts and active/passive reconnaissance using network traffic analysis, heuristic analysis, and cybersecurity data analysis to identify and mitigate indicators of compromise (IoC), misconfigured systems, and advanced persistent threat actors (APTs).Certifications (IAT Level II)One of the following:CySA+Security+CCNA SecurityGICSPGSECSSCPRequired Skills and ExperienceA master's degree in Cybersecurity or related degree, or 10 years of experience in cybersecurity engineering focused on Government-approved cybersecurity tools.At least 5 years of experience related to DoD cybersecurity vulnerability detection and response utilizing tools within FISMA compliance.Experience with big data analytical tools such as Elasticsearch and Splunk.Thanks and Regards, Murali Sharma","company":"Nastech Global","rawCompany":"nastech global","city":"Suffolk","state":"VA","isRemote":false,"isActive":false,"createdAt":"2026-06-30T05:47:31.960Z","occupations":[{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"},{"code":"15-1212.00","title":"Information Security Analysts","slug":"information-security-analysts"},{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541519","title":"Other Computer Related Services","slug":"other-computer-related-services"},{"code":"541690","title":"Other Scientific and Technical Consulting Services","slug":"other-scientific-and-technical-consulting-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Information System Security Engineer","description":"Job Title: Information System Security EngineerLocation: Suffolk, VA (Onsite 5 days per week)Duration: Contract to Hire (6 months)Citizenship: is able to obtain clearanceTop Skills:Strong in ElasticsearchVulnerability experienceLevel II IAT CertServe as the primary Subject Matter Expert (SME) for all aspects of the Continuous Network Defence cybersecurity tools in accordance with all applicable DoD Instructions (DoDI), policies and regulations.Utilise Tenable and Nessus to perform regularly scheduled discovery and vulnerability scans, provide analysis of results, and development mitigation strategies to reduce overall risk surface.Manage Trellix ePO and deploy endpoint products such as ENS, PA, DLP, etc., to implement and enforce endpoint security policies in accordance with the response to and mitigation of potential threats.Implementation of ForeScout policies for the Comply-To-Connect (C2C) initiative, to ensure continuous compliance and quarantining of unauthorised, noncompliant devices.Monitoring of Cortex Xpanse to identify and assess external-facing assets and respond to alerts with corrective action to mitigate the findings.Ensure continuous data flow is active for the Continuous Monitoring and Risk Scoring (CMRS) DoD system, including endpoint security data (Trellix), vulnerability and flaw remediation (Tenable), and security compliance data (ForeScout).Configuration, modification and deployment of security policies on Cisco Firepower Management Console (FMC) to ensure intrusion prevention (IPS) is enforced at the network security level.Utilise and validate DNS and DHCP data within Infoblox, monitoring for anomalous records, unauthorised entries, and removal of duplicate records.Implementation of AD Audit Engine to detect and investigate anomalous, malicious or malformed activity within Active Directory, to identify potential insider threats and/or compromised accounts.Conduct threat hunts and active/passive reconnaissance using network traffic analysis, heuristic analysis, and cybersecurity data analysis to identify and mitigate indicators of compromise (IoC), misconfigured systems, and advanced persistent threat actors (APTs).Certifications (IAT Level II)One of the following:CySA+Security+CCNA SecurityGICSPGSECSSCPRequired Skills and ExperienceA master's degree in Cybersecurity or related degree, or 10 years of experience in cybersecurity engineering focused on Government-approved cybersecurity tools.At least 5 years of experience related to DoD cybersecurity vulnerability detection and response utilizing tools within FISMA compliance.Experience with big data analytical tools such as Elasticsearch and Splunk.Thanks and Regards, Murali Sharma","datePosted":"2026-06-30T05:47:31.960Z","dateModified":"2026-06-30T05:47:31.960Z","hiringOrganization":{"@type":"Organization","name":"Nastech Global","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Suffolk","addressRegion":"VA","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"4de5522f33aeae2e9ea8ffbf"},"url":"https://jobsearcher.com/jobs/4de5522f33aeae2e9ea8ffbf"}}