Tenable Nessus Information Security Engineer

HireBlazer - Bethesda, MD

Full-time | Contract
Title :Infrastructure Security Engineer

Duration : Fulltime or Contract

Location : Bethesda, MD

Experience : 5+ Years

Domain : Healthcare

Certifications : (CISSP, CEH, Security +)

Clearance : Must be able to obtain Public Trust

Must have skills :
  • Perform and review Tenable Vulnerability Scans and creating remediation plan
  • Understanding of infrastructure security policies
  • Cloud (AWS) Cybersecurity
Responsibilities

  • Responsible for identifying, monitoring, and defining the requirements for the overall security of infrastructure systems
  • Responsible for securing and monitoring Windows and Linux servers on-premise and in the cloud
  • Plan, evaluate, design, and implement secure solutions for networking, authentication, and
  • authorization with the latest security and infrastructure technologies
  • Perform System security scans. Interpret results and work with System Administrators to remediate
  • vulnerabilities, assess threat advisories to determine vulnerability and impact to enterprise systems
  • Recommend, document and implement policies and procedures to ensure adherence to security
  • standards
  • Collaborate on multiple security-related projects and technologies, interfacing with team members
  • within the organization as well as other developers and external customers/partners
  • Manage projects and tasks in JIRA
  • Generate and maintain security dashboards, reports, and profiles to track the overall infrastructure
  • health and status of the information systems
Qualifications

  • 5+ years of Infrastructure Security experience and administering enterprise or government systems, storage and network in security practices, configurations, and standards. Demonstrated experience in finding and remediating security vulnerabilities
  • Experience working with security cools including Tenable, Tripwire, Splunk and host based anti-virus.
  • Technical writing skills to develop and maintain security documentation
  • Excellent organizational, analytical and problem-solving abilities
  • Expert level knowledge of information security policies, controls, and processes with regard to infrastructure (networks, servers), databases, and Internet technologies including security configurations, log analysis, intrusion detection and mitigation
  • Expert knowledge of cloud (AWS) cybersecurity concepts, including threats, vulnerabilities, security operations, encryption, boundary defense, auditing, authentication, and risk management
  • Knowledge of information security control practices and frameworks: HVA, HHS, NIST 800-53, FISMA, OWASP
Education:
Bachelor’s degree or equivalent work experience
Security certifications (CISSP, CEH, Security +)
Knowledge of Grants Management and Health Care related support activities, processes, and regulations are preferred