SeKON is looking for an IT Security Engineer to join our talented and innovative team supporting the U.S. Department of Veterans Affairs (VA) in Reston, VA. With over 20 years of experience, SeKON specializes in providing large-scale health IT programs in support of federal government customers including the Centers for Disease Control (CDC), Centers for Medicare and Medicaid Services (CMS), Defense Health Agency (DHA), and National Institutes of Health (NIH). Our vision “To be the premier management and technology consulting firm providing solutions that improve quality of life and work”.
The IT Security Engineer is responsible for creating and implementing vulnerability solutions by taking into account the security considerations. The Engineer should review the requirements of the Vulnerability Management by evaluating business needs and technical feasibility to generate deliverables. The professional must play an active role in designing web application to support VM dashboarding and reporting.
Review, analyze, and engineer security measures for the protection of computer systems, networks and information for the adoption of the EHR
Identify and validate system security requirements
Design computer security architecture and develop detailed cyber security designs
Support configuring and troubleshooting security infrastructure devices
Recommend technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement
Proven work experience as a system security engineer or information security engineer
Experience in building and maintaining security systems
Thorough understanding of the latest security principles, techniques, and protocols for securing medical devices
Detailed technical knowledge system security standards in accordance with FISMA, FedRAMP, NIST Special Publications, NIAP, etc.
Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, access & authentication systems (OAUTH, RBAC, ABAC), log management, content filtering, etc.
Experience with network security and networking technologies and with system, security, and network monitoring tools
Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols
Problem solving skills and ability to work under pressure
BS degree in Computer Science or related field
CISSP, GSEC, CASP, CISA, GCIH, or equivalent technical security certifications