Job Title: Cyber Security Engineer
Role Overview:
We are committed to doing the right thing for our customers, people, and community. Our mission and values guide how we do business. We select, recognize, and reward employees based on our Values, Beliefs, and Expectations.
We are passionate about customer success and understand and respond to our customers' needs as if they were our own. We are united as a team, bound together by our conviction that ethics and integrity are core to how we operate.
Key Job Responsibilities:
* Protect THOR IT infrastructure using technical expertise and strategic planning to ensure digital security from various types of attacks and vulnerabilities.
* Plan and implement appropriate security controls to keep information within THOR secure.
Main Objectives:
Vulnerability Scanning & Reporting:
Perform regular vulnerability scans and generate reports using tool sets such as Code Scans, Vulnerability Management Tooling, and Reporting. Ensure scans are performed regularly to assist the Vulnerability and Patch Manager in identifying weaknesses in the system.
Endpoint Security:
Ensure Endpoint Protection by performing regular updates to Endpoints, deploying Antivirus and Anti-malware Protection, and performing compliance checks and regular audits of network controls (i.e. firewall rules) to block unauthorized access and threats.
Incident Management & Tickets:
Respond to potential security breaches or cyber-attacks, containing and mitigating damage, investigating the root cause, and restoring normal operations. Respond to and resolve tickets raised to the Leidos Security group on SD+ requiring Cyber Security Engineering input.
System Hardening:
Evaluate and impact assess system change to security posture of environments. Perform Security Evaluation, Testing, and Assurance activities for new changes planned in PI Planning. Assist in design, reviews, and updates to security enforcing functions (i.e. GPOs or System Policies) and system controls to ensure they are compliant and fit for purpose.
Change Work:
Assist in evaluation and impact assessment of system change to security posture of environments. Perform Security Evaluation, Testing, and Assurance activities for any new changes planned in PI Planning.
Participation in Regular Meetings:
Lead or attend meetings requiring input, including the Security Working Group, Vulnerability Triage, Security Workshop, PI Planning, Daily Standups (Blue/Green Team).
Documentation:
Create, maintain, and review detailed documentation, including High-Level & Low-Level Designs (HLD/LLD), Standard Operating Procedures (SOP), and compliance reports, and other ad-hoc security documentation.
Clearance Requirements:
Clearance to Start SC, Clearance for Role DV.