Job Details

Apply Online
Send This Job to a Friend

Requisition Number 18-0083
Post Date 1/7/2019
Title Security Engineer (Active Directory)
Department Dept - IT Infrastructure and Operations
Job Category Full Time Employee
Number of Openings 1
FLSA Exempt
Tier Tier E 1
City Herndon
State VA
Description

The Security Engineer is a member of IT - Infrastructure Operations, and performs technical activities for delivering effective host, network, data, and application security services. This position has a primary responsibility for security platforms in the production environment, as well as development, quality-assurance and staging environments.  This position is a lead in the continuous assessment, design, and enhancement of the organization’s Active Directory environment, that includes performing vulnerability assessments, security testing, and working with operations and development teams on remediation and mitigation of findings.  This position also has a primary role on the Computer Security Incident Response Team (CSIRT) and with Disaster Recovery/Continuity of Operations Planning (DR/COOP).  Lastly, the Security Engineer provides support to planning, designing and implementing security controls which safeguard and monitor events for information systems, enterprise applications and data.

How You Contribute:

  • Analyze, troubleshoot, and investigate security-related, information systems’ anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts, especially as they relate to Active Directory (AD) security policies and enforcing AD privilege user management.
  • Diagnose and troubleshoot complex security and infrastructure issues related to Active Directory services.
  • Evaluate and secure major AD components (such as Domain Controllers) using vulnerability scanners and manual techniques to verify system security settings and configurations.
  • Provide reports on the overall security posture of the AD environment which includes monitoring the AD environment (as well as Azure integrations).
  • Develop and manage processes using C#/PowerShell and Azure Functions to perform system maintenance, system data aggregation, etc.
  • Provide CSIRT support as needed in response to information security related events.
  • Participate in DR/COOP exercises and continuous improvement processes.
  • Maintain and update relevant system and process documentation and develop ad-hoc reports as needed.
  • Assist the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes.
  • Establish and maintain a strong working relationship with all team members.
  • Provide off-hours support on an infrequent, but as needed basis.
  • Successfully manage time and technical responsibilities, set accurate expectations and meet deliverable deadlines while working in a team and information sharing environment.
  • Interact with customers, service managers, and operational support teams to design, test, and deploy security and/or automation solutions to meet business needs.
  • Participate in planning for infrastructure strategy, capacity, and performance.
  • Develop, deploy, support and maintain global application across production environments.

Position may be required to perform other duties as required.

These essential functions are representative of those that must be met by an employee to successfully perform the job. Reasonable accommodations will be made to enable individuals with disabilities to perform these essential functions.

What You Bring to the Table:

  • Bachelor’s degree in Computer Science, Information Technology or related field or a combination of education and experience.  A combination of education and experience, including military service will also be considered.
  • 4-7 years of IT experience; at least 3 of those years focused on IT security and 4 of those years focused on Active Directory.
  • Must possess an active industry recognized information security certification, such as a CISSP, CISM, CEH, or equivalent. 
  • Extensive grasp of the threats and risks posed to on-premises and cloud Active Directory environments, such as “Pass the Hash”, “Pass the Ticket”, lateral movement, credential theft, and abuse of privileged access.
  • Hands-on experience with:
    • Implementing, maintaining, and securing Azure/Active Directory services, ADFS, and the underlying components that support these technologies, such as DNS, Kerberos, LDAP, SAML/OAuth, PowerShell, WMI, and similar network and management protocols.
    • Implementing AD security groups, portioning administrative privileges, Privileged Access Workstations, and Microsoft’s Active Directory Administrative Tier model.
    • Creating PowerShell tasks that can at a minimum enumerate and identify groups within Active Directory based on roles such as nested groups, privileged access, etc.
    • Analysis, design and re-engineering of group policies (GPO), security groups, user and computer objects, logon authentication, scripts, replication, forest and domains, and user/account provisioning, Windows Active Directory or other directory services, Windows server, and workstation troubleshooting.
    • Managing AD groups, permissions, and access to Azure resources.
    • Implementing Multi-factor access solutions by vendors such as RSA, Microsoft, or equivalent.
  • Fundamental or greater understanding of encryption technologies that integrates with AD.
  • Comfortable working on both Linux-based and Microsoft Windows-based system platforms with a strong IT technical understanding and aptitude for analytical problem-solving.
  • Strong understanding of:
    • Enterprise, network, system and application level security issues.
    • Enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks.
  • Experience using Microsoft Office and Visio to create documents, presentations, and detailed drawings.
  • Proficient technical writing, documentation, and communication skills.
  • Live within a commutable distance of Herndon, VA.

Desired:

  • Scripting (PowerShell, VBScript, JavaScript) and programming (C#, Java) skills.
  • Linux security configuration experience (RHEL, Centos, AIX, HPUX, Others).
  • Knowledge of implementing Privileged Access Management solutions such as Microsoft’s Just in Time administration.

Physical Demands:

  • Use of a computer terminal and/or laptop computer for 8 or more hours a day.
  • Use of a copy machine and telephone.
  • Frequently required to sit for 7 or more hours per day in close proximity to others in an open office environment.
  • Occasionally required to use hands and fingers to operate, handle, and reach.
  • Vision abilities include close vision and the ability to adjust focus.
  • Must be flexible to do out-of-town assignments and travel via car, train, and airplane (less than 10%) occasionally when needed.
  • Disaster recovery and/or business continuity efforts may require offsite work or travel and the acceptance of additional responsibilities to facilitate an efficient and effective restoration of operations.  Responsibilities during these efforts may be unrelated to those normally associated with this position.  Travel and offsite work in the event of a declared disaster will likely occur with no prior notice and may be prolonged in nature.
  • Occasionally lift and/or move up to 25 pounds.
  • NSC strives to hire, promote, and retain the best qualified individuals for our employment opportunities. Our policies are intended to provide equal employment opportunity for all employees and job applicants without regard to race, color, religion, gender, gender identity, sexual orientation, age, disability, national origin, protected veteran status, or any other status protected by law. NSC strives to have a culture that is diverse and equally welcoming to all. As a Federal contractor, NSC is subject to requirements to take affirmative action to employ and advance in employment protected Veterans and individuals with disabilities. NSC is committed to its outreach efforts and practices to promote employment and advancement of members of these groups. To read our entire policy, go to: https://studentclearinghouse.info/careers/human-resource-policies
  • PAY TRANSPARENCY POLICY NSC will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by NSC, or (c) consistent with the NSC’s legal duty to furnish information. 41 C.F.R. 60-1.35(c)
  • Please view Equal Employment Opportunity Posters provided by OFCCP here.
Apply On line
Send This Job to a Friend