SOS International LLC System Hardening Engineer in Raleigh, North Carolina

System Hardening Engineer

Information Technology
Raleigh, North Carolina

Job ID: 2017-864



About the Team

STG, Inc. is a leading provider of mission-critical technology, cyber and data solutions to more than 50 US Federal Agencies. STG has been consistently listed amongst Washington Technology’s Top 100 Government Technology Contractors. We provide performance-oriented solutions in cyber security and secure information systems, software development, systems and services, and intelligence and analytics. We serve our customers at more than 250 locations at home and overseas.

About the Job

STG, Inc. is seeking a professional and experienced System Hardening Engineer to join our team. The successful candidate will serve as principal responsible for ensuring system hardening occurs in a methodologically and repeatable process to achieve cyber resiliency in as quick an efficient manner as possible. The candidate will work with Corporate Information Security Office (CISO) team members to improve the overall Cybersecurity plans and act as a liaison and evangelist to encourage strong security practices across all projects, code development, infrastructure, and operations.

This position is located in Morrisville, North Carolina.

Responsibilities Include

  • Assess process for inefficiencies, identify unnecessary processes and functions of a given system or platform

  • Work with CISO leadership in a consultative manner, effectively translating technical information into to business decisions.

  • With expert skill provide written recommendations and evaluations to CISO leadership.

Required Skills

  • 5+ years demonstrated experience in enterprise security architecture including security architecture review, design, implementation, and operations experience.

  • Bachelors Degree in Information Security or related field

  • Strong expertise in large networks and systems (servers, operating systems, virtualization, cloud services, and storage) and networking technologies (communication protocols, infrastructure).

  • Knowledge of industry standards including but not limited to:

  • DISA Security Technical Implementation Guides (STIGs)

  • Information assurance vulnerability alert (IAVA)

  • NIST 800 Series, NIST Cybersecurity Framework

  • Center for Internet Security (CIS) Benchmarks

  • Vendor Best practice documentation

  • Thorough understanding of ports, protocols, and services and interactions within systems.

  • Must be able to understand the effects and application of policy on enterprise critical systems.

  • Deep understanding and established methodologies of securing technologies in all layers of the OSI Layer.

  • Experience methodically securing and hardening enterprise level systems platforms.

  • Must be able to identify unnecessary processes and functions of a given system or platform.

  • Ability to effectively communicate technical knowledge and translate to business leadership.

  • Ability to communicate technical knowledge effectively through writing.

The employment policy of STG, Inc. is to provide equal employment opportunity for all qualified employees and applicants without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status and to ensure affirmative action is taken in fulfillment of this policy.