View all jobs

Cyber Security Engineer

Bethesda, Maryland
On behalf of a software company located in Rockville, MD, Cordia Resources is seeking a Cyber Security Engineer to engineer and implement their Cyber Security program initiatives.

This role requires the individual to balance the needs of the businesses and available resources while developing and implementing solutions to secure the company. We expect the person in this role to apply cyber security industry best practices (NIST, CSA, OWASP, ISO) to evolve existing processes and technology at the pace of the business growth

The ideal candidate would be well versed in cloud technologies, including IaaS, PaaS, SaaS, hybrid, and multi-cloud. The role requires the individual to understand the different security challenges across the entire technology stack, including physical, networking, and application. We expect the person to have excellent communication skills in order to work with the various business units, team members, and management. We also expect the individual to self-manage his/her time, ask for and provide help when needed, and own the challenge until it is resolved.

What You Will Be Doing
  • Collaborate with business and technical members across to the enterprise to understand the current cyber security state
  • Identify gaps between existing controls and cyber security roadmap
  • Engineer the solutions (processes, technologies) to mitigate the control gaps
  • Present the proposed solutions to the Senior Information Security Officer
  • Document and implement the new security controls
  • Collaborate with IT Support and Site Reliability Engineering (SRE) to operationalize the controls
  • Develop FAQ/Wiki to communicate new security capabilities to the enterprise
  • Take part of on-call rotation to triage any potential security incidents

Who We Are Looking For
  • In-depth knowledge of cloud technology and security (AWS, Terraform)
  • In-depth knowledge of information security domains (physical, networking, application)
  • In-depth knowledge of information security best practices (NIST, CMMC, CSA, OWASP, ISO)
  • Knowledge of application security (static analysis, dynamic analysis, automated testing)
  • Knowledge of operating systems (Linux, Windows)
  • Knowledge of virtualization technologies (Docker/Kubernetes)
  • Knowledge of scripting languages (Powershell, bash)
  • Curiosity and passion for all things security and technology related
  • Willingness to ask for as well as provide help when needed
  • Strong verbal/written communication and presentation skills, including an ability to effectively communicate with both business and technical teams
  • Ability to influence others, strong attention to detail, excellent organization skills, and ability to time manage multiple projects


Share This Job

Powered by