Job#: 2040321
Job Description:
Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, various cloud environments, security devices, servers and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates, and reports any suspected and confirmed security violations.
Primary Responsibilities:
The General Security Engineer Jr will support the full system engineering life cycle, including requirements analysis, design, development, test, implementation, maintenance, integration, and documentation of SOC infrastructure and SOC tool suite.
The Security Engineer will be installing, configuring, monitoring, and troubleshooting network security solutions and related monitoring tools including L2/L3 network security devices, IDS/IPS, Full packet capture, DLP, Endpoint (AV, DLP, Endpoint Detection & Response), and infrastructure supporting SEIM (Splunk).
The Security Engineer must have understanding and knowledge of LAN/WAN security solutions including creating and maintaining LAN/WAN security standards and design documentation.
Knowledge and understanding of new LAN/WAN security applications and hardware as assigned.
Strong written and oral communication with the ability to communicate with team members, management, and customer.
Below are some qualifications, tools/skills the candidate should have knowledge or experience on:
• 2-3 years’ experience in Systems Engineer/Admin role or an equivalent of 2-3 years in Cybersecurity.
• Basic knowledge and familiarity with AWS – Majority of the environment systems are in AWS. These may include EC2, Storage, Lambda, S3, VPC, Storage Gateways
• Basic knowledge and familiarity with Linux – More than half of the systems being managed are Linux. This ranges from CentOS, Amazon Linux 2, RHEL, Kali Linux, and Rocky Linux. Knowledge/experience in patching and updating these will be key.
• Basic knowledge and familiarity with Windows Operating System and Troubleshooting – Need knowledge in setting up and building using images. Someone who knows the ins and outs of where logs and other locations of data are on a windows system is a plus.
• Basic knowledge and familiarity with Networking and how it all ties together (VPNs, DNS, DHCP, AWS VPCs, Firewalls).
• Basic knowledge and familiarity with some Antivirus software such as McAfee and CrowdStrike. Any HIPS software and how it works.
• Basic understanding and knowledge of SOPs, Playbooks, and experience in creating documentation.
Basic Qualifications:
• Bachelor’s degree in computer science, Engineering, Software Development, Information Technology, Cyber Security, or related field and 6 years of related experience. Additional years of experience and cyber certifications may be considered in lieu of degree.
• Familiar with the management, operational, and technical aspects of IT Security in a complex enterprise environment. Additional experience in cyber risk management and assessments will be considered.
• Basic knowledge and familiarity with in-depth analysis of Zero Trust Capabilities, Infrastructures and Architecture.
Clearance:
• All Department of Homeland Security CBP SOC employees are required to favorably pass a 5-year (BI) Background Investigation.
Preferred Qualifications:
• Ability to learn and support new systems and applications.
• Redhat, Cisco or Microsoft, Security+, Linux+, or Network+ certifications
• Cisco Hardware and Storage
• Expertise in Networking, Linux and Windows
• Sourcefire (snort) or RSA Security Analytics (network) experience a plus
• Ability to script in one more of the following computer languages Python, Bash, Visual Basic or Powershell
1 of the following certifications;
CCIE Security
Cisco Certified Network Professional (CCNP)
CCNP Security
CCSP – Certified Cloud Security Professional
CEH – Certified Ethical Hacker
Certified Data Administrator Professional
Certified Implementation Engineer Specialist
Splunk Certified Architect
Certified Storage Associate
CISSP – Certified Information Systems Security
CompTIA Advanced Security Practitioner (CASP)
CompTIA Security+
Converged Infrastructure Specialist
CSSLP – Certified Secure Software Lifecycle Professional
ECSP – EC-Council Certified Secure Programmer
ENSA – EC-Council Network Security Administrator
GCIH – Incident Handler
GCWN – Windows Security Administrator
GICSP –Cyber Security Professional
GISF – Security Fundamentals
GSSP – Secure Software Programmer
MCSE – Microsoft Certified Solutions Expert (Server)
RHCA – Red Hat Certified Architect
RHCE – Red Hat Certified Engineer
SEI (Software Engineering Institute)
SSCP – Systems Security Certified Practitioner
VCA (Certified Associate)
VCAP (Certified Advanced Professional)
VCDX (Certified Design Expert)
VCIX (Implementation Expert)
VCP (Certified Professional)
CompTIA Linux Network Professional (CLNP)
Microsoft 365 Fundamentals
Microsoft Certified Azure Fundamentals
MS 365 Certified: Security Administrator
Microsoft Certified Azure Security Engineer (Associate)
RHCSA – Red Hat Certified System Administrator
Splunk Enterprise Certified Architect
Splunk Enterprise Security Certified Admin
Splunk IT Service Intelligence Certified Admin
Splunk Enterprise Certified Administrator
Splunk Cloud Certified Admin
Splunk Core Certified Consultant
Splunk SOAR Certified Automation Developer
Splunk Certified Developer
AWS Certified Solutions Architect - Associate
AWS Certified DevOps Engineer - Professional
The Linux Foundation Certified Kubernetes Administrator (CKA)
The Linux Foundation Certified Kubernetes Application Developer (CKAD)
Swimlane Certified SOAR Developer
ISACA Certified Data Privacy Solutions Engineer (CDPSE)
ISACA Certified Information Security Manager (CISM)
Swimlane Certified Administrator
Swimlane Certified SOAR Developer
#cleared #clearance
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico.