NXTKey Corporation

Senior Information System Security Engineer - Arlington, VA

All jobs Print Apply


Active since 31-05-2017 Job category IT - Services & support
Location Arlington, VA Level -
Educational level Bachelor / Graduate Employment type -
Hours 0 Salary -
Contractor must have proven experience (i.e. a minimum of five (5) years) with security engineering. At minimum, an in-depth knowledge and management of one or more Security Event and Incident Management (SIEM) tools required. Additionally, the Contractor shall possess hands-on experience in penetration testing and router/firewall management.

Functional Responsibility:

Define, review and enforce information security policy, standards and guidelines for business operations and technology implementations. Proactively speculate and identify IT security risks from technical and functional perspectives. Conduct technical security assessments, audits, penetration testing, and forensic IT functions. Configure and manage SIEM tools. Coordinate and lead security project implementations.


Must have a minimum of five (5) years of security engineering experience. Minimum Education: B.A. or B.S. in Computer Science, or a related field. The Contractor shall provide services to accomplish the Tasks described.


The Contractor shall develop and implement strategies and tactics necessary to ensure the USMS enterprise network devices are configured to secure to the best extent possible. Provide expert SIEM and security tool support to ensure all products are configured and functioning as designed. Perform router and firewall configuration assessments to ensure least privileged functionality across the enterprise. Ensure all systems throughout the enterprise are fully patched and configured with approved baselines. Provide security consultation and support to other ITD branches in the planning and execution of information technology projects. Some of the support to complete the requirements are, but not limited to:

a. Within the first 180 days of award, conduct thorough analysis of all access control list on edge devices and provide analysis and project plan to enhance security through configuration changes
b. Ensure all security tools (SIEM, scanners, etc.) are functioning properly
c. Provide monthly status on SIEM product health and analytics
d. Ensure all systems are patched in accordance with DOJ and USMS policy
e. Conduct configuration and vulnerability scans with approved automated tools as directed and provide analysis of findings
f. Support annual DOJ Vulnerability and Penetration Testing (VAPT) assessment

More information
This listing is a full-time job

Job category IT - Services & support
Industry / Industries IT
Region United States

Contact information

Name Shivaji Sengupta