Position Summary

The Cyber Security Analyst and Network Engineer is a part of the Effectual Public Sector team. The candidate must be proficient with related automated tools including but not limited to: the Enterprise Mission Assurance Support Service (eMASS), SCAP compliance tools, and Assured Compliance Assessment Solution (ACAS) (also known as Tenable Security Center, Tenable.SC, or Nessus). IT professional with technical experience in design/project implementations, service requests, Tier two-thirds escalation support/ticket resolution, policies and procedures, analysis and troubleshooting of various technologies which includes proficiency in routing, switching and firewalls.

A Glimpse into the Daily Routine of a Cyber Security Analyst and Network Engineer

Monitor the network for security threats, conduct vulnerability assessments, and analyze potential risks. Update firewall rules, implement access controls, and ensuring network devices are up to date with the latest firmware and patches. Configure, maintain, and optimize the network infrastructure. Network monitoring and performance management while analyzing traffic patterns, identifying bottlenecks, and fine-tuning network configurations for efficiency. Respond to security incidents, handle forensics, and enforce compliance with security policies. Collaborate with teams, troubleshoot network issues, and optimize network performance are essential tasks, along with documenting all activities and findings. Reporting to higher-ups and remaining vigilant for emergencies.

Essential Duties and Responsibilities

• Performing and assessing vulnerability scans.
• Application and system assessment, determination of accreditation requirements (Assess Only, ATO, IATT, etc.).
• Evaluation of security controls per NIST SP 800-53A.
• Monitoring/Data Center/Servers/APPS - Wireshark, Cacti, Nagios, SolarWinds, Cisco Security Manager Suite, Remedy – VMWare, F5, Citrix NetScaler, Cisco Prime, Meraki, SNMP, DNS, DHCP, FTP, Telnet, HTTP(S), SMTP, PTP, SFTP, RDP, AWS
• Selection of security controls per NIST SP 800-53 and CNSSI 1253.
• Implementation of continuous monitoring solutions per NIST SP 800-137.
• Establishment of Security Requirements Traceability Matrix which identifies applicable DISA STIGs and SRGs.
• Security Technologies - Cisco ISE, AAA - TACACS+/RADIUS, Cisco IPS/IDS, SSH, VPN, IPSec, SSL/IPSec, MAC Address Filtering
• Routing/Switching Technologies - Cisco Routers ASRs/ISRs, Cisco Catalyst/Nexus, Juniper, Routers & Switches, WAN, LAN, TCP/IP, Cisco IOS, Spanning Tree Protocol, BPDU, CDP, ACL, NAT, PAT, OSPF, EIGRP, BGP, MPLS, VTP, SNMP, SMTP, ARP, TCP, UDP, Static Routing, VLAN Trunking, VXLANs, Multicast routing, HSRP, SVI, CEF, EtherChannel, Portfast, VSS, VPC
• Categorization of information systems and/or data types IAW NIST SP 800-60 Vol II.
• Management of security controls assessment artifacts in DoD eMASS in preparation of packages for RMF (DoDI 8510.01, NIST SP 800-37) processes.
• Application of DISA STIGs and SRGs.

Qualifications

REQUIRED CERTIFICATIONS/CLEARANCE:

• Public Trust
• Cisco Certified Network Associate - Routing & Switching
• Cisco Certified Network Professional - Routing & Switching
• ISC2 Certified Authorization Professional (CAP)
• CompTIA Advanced Security Practitioner (CASP +)
• One DOD 8570.01-M IAM Level II certification such as:
  • ISC2 Certified Authorization Professional (CAP)
  • CompTIA Advanced Security Practitioner (CASP +)
  • CompTIA Security Plus
• CompTIA Security Plus

Nice-to-Have Skills and Experience

• Experience in Engineering Cyber Tools
• Cisco Certified Network Associate - Routing & Switching
• Military service

Company Offered Benefits

Full-time employees are eligible to participate in our employee benefit programs:

• 401k with Company match
• Medical, dental, and vision health insurances,
• Paid time off for major holidays (14 days per year)
• Paid time off (PTO) (120 hours PTO that accrue over one year)
• These and any other employee benefit offerings are subject to management's discretion and may change at any time.
• Short term disability, long term disability and life insurances,

Physical Demands and Work Environment

The work is generally performed in an office environment. Physical demands include sitting, keyboarding, verbal communication, written communication. Employees are occasionally required to stand; walk; reach with hands and arms; climb or balance; and stoop, kneel, crouch, or crawl. The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodation may be made to enable individuals with disabilities to perform the functions. Fully vaccinated for COVID-19 or received approved exemption status.

Salary Range for this position: 1099 Contractor Position

"Salary ranges provided are for informational purposes only and may vary depending on factors such as experience, qualifications, and geographic location. The final salary offer will be determined based on the candidate's skills and alignment with the role requirements."

This job description may not be inclusive of all assigned duties, responsibilities, or aspects of the job described, and may be amended anytime at the sole discretion of the Employer. Duties and responsibilities are subject to possible modification to reasonably accommodate individuals with disabilities. To perform this job successfully, the incumbents will possess the skills, aptitudes, and abilities to perform each duty proficiently. This document does not create an employment contract, implied or otherwise, other than an "at will" relationship. Effectual Inc. is an EEO employer and does not discriminate on the basis of any protected classification in its hiring, promoting, or any other job-related opportunity.