Sr System Security Engineer - EIA ITICPS

Sr. System Security EngineerThe Sr. System Security Engineer will be essential in safeguarding the client's critical systems and infrastructure by spearheading the design, implementation, and management of comprehensive security strategies. In this role, the Sr. System Security Engineer will be the hands-on and the sole System Security Engineer which demands a self-motivated and highly proactive individual capable of proactively ensuring and maintaining system and security integrity of client systems by engaging and driving efforts forward in an independent manner. Responsibilities include: Leverage deep technical expertise to build and secure robust systems that protect against evolving threats. Develop security solutions, ensuring the hardening of network, Linux-based, and Windows systems. Strong problem-solving abilities enabling the ability to diagnose complex security issues and deliver timely, effective solutions. Secure cloud environments such as AWS, Azure, or GCP, as well as containerized platforms like Docker and Kubernetes, and ensure that all systems meet DISA-STIG security standards. Work directly with other security team members in ensuring uptime and compliance of the various security tools and processes. Exceptional analytical and problem-solving skills is required to diagnose complex security issues and deliver robust, timely solutions. Resource must also have excellent verbal and written communication skills to effectively report security findings, communicate risk, and collaborate with diverse teams and leadership. Minimum Qualifications: Bachelor's Degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience. Master's Degree preferred. 10+ years of experience in information systems security. Candidates must be US citizens with ability to pass a federal government background investigation for access to sensitive information. No dual citizenship allowed per agency requirements. Other Job Specific Skills: Excellent verbal and written communication skills. Deep, hands-on experience with Linux operating systems (e.g., RHEL, CentOS, Ubuntu), including system internals, administration, Linux template hardening, and troubleshooting. Hands-on Microsoft Windows knowledge such as Active Directory Security, System Hardening & Configuration, Windows Security Stack, and Logging and Monitoring (Windows Event Logs, Sysmon, and integration with SIEM systems for threat detection). Hands-on experience with Infrastructure Hardening and Configuration of on premise and cloud based servers, network devices, and hypervisors. Includes engineering and maintenance of secure networks through use of firewalls, VLAN segmentation, and ACLs configuration. Advanced proficiency in scripting languages such as Python and Bash to automate tasks and build security tools. Experience securing cloud environments (e.g., AWS, Azure, GCP) and containerization technologies like Docker and Kubernetes. Strong understanding of network security, protocols (TCP/IP), firewalls, encryption, and authentication systems. Proficiency with industry-standard security frameworks like the PCI-DSS, SOC 2, NIST, ISO etc. Proficiency with tools for vulnerability scanning (Tenable Nessus), network tools (Cisco FMC, Extrahop, etc), SIEM (Splunk), EDR (Trellix) and other various toolsets. Compensation Ranges: Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements: It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment. Physical Requirements: The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. (For example, "light office duties' or "lifting up to 50 pounds" or "some travel" required.) Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions. Disclaimer: The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. $150k - $175k