Career Opportunities

Information Systems Security Engineer / Cybersecurity Engineer

Netizen Corporation is actively hiring a mid-level cybersecurity professional to work as an Information Systems Security Engineer / Cybersecurity Engineer on our long-term contract with the Army in Orlando, FL. Successful candidates will possess an understanding of risk management and will be able to apply broad knowledge of cybersecurity engineering, systems engineering, networking, database, software, regulations, policy, and encryption to highly complex training systems. The ISSEs / CEs will work as members of a top-notch team of engineers, working directly with government civilians, military leadership, and other contractors in trusted roles. This role is partially remote and has the capability of being more than 50% remote.

Primary Responsibilities:

· Conduct Federal Information Security Modernization Act (FISMA) and Assessment and Authorization (A&A) audits.

· Apply functional knowledge of DoDI 8510.01, CNSSI 1253, DoD Instruction 8500.01, NIST 800-53 rev4, other NIST Publications, and associated controls.

· Use IA tools including Nessus, ACAS, SCAP, STIG Checker, Vulnerator, Electronic Mission Assurance Support Service (eMASS).

· Perform all steps of the Risk Management Framework (RMF) process, from categorization, control selection, implementation and analysis, authorization, and continuous monitoring.

· Perform all aspects of Systems Development Life Cycle, including contract review and development, change request, technical refresh, and testing and validation.

· Communicate complex technical and programmatic information both verbally and in writing (technical reports and briefings).

· Utilize knowledge of network devices and interconnections (routers, switches, IDS/IPS, firewalls, DNS).

· Identify and mitigate and/or remediate vulnerabilities or misconfigurations.

· Utilize knowledge of operating systems (Server, Windows, Linux, and VMware),

· Maintain and apply current knowledge of emerging cybersecurity threats and trends.

Experience / Skills:

· At least 3  years of DoD cybersecurity experience.

· At least 3 years of experience conducting NIST RMF assessments and security engineering support.

· Functional knowledge of DoDI 8510.01, CNSSI 1253, NIST 800-53 rev4, and associated controls.

· Familiarity with networking, systems administration, and systems engineering practices and technologies.

Minimum Education Requirements:

· An undergraduate degree in Computer Science, Computer Engineering, or related engineering-focused discipline is highly preferred.

Certification Requirements:

· Certified Information Systems Security Professional (CISSP) 

Security Clearance:

· Must possess an Active DoD Secret security clearance. 

Netizen Corporation is an EEO employer - M/F/Vets/Disabled

SECURITY OPERATIONS CENTER (SOC) ANALYST - FULL TIME

Netizen is seeking to hire a talented and experienced SOC Analyst to support our growing Security Operations Center (SOC) in Allentown, PA. This position is a hybrid remote work schedule with occasional after-hours and on-call support for customer projects and/or incident response. The SOC Analyst will perform responsibilities as a technical representative and incident response technician for Netizen's Security Operations Center (SOC). Additionally, the SOC Analyst will support the investigation of security incidents, implement secure and compliant solutions for customer environments, and ensure industry best practices and standards are met for the company and customers.

Candidate Qualifications:

•   At least 2-3 years experience as a SOC Analyst or highly related position supporting a complex mixed technology environment
•   Bachelors degree in a technical field such as Information Science, Computer Science, Cybersecurity (with technical coursework), or related areas.  Alternatively, 3 additional years of full-time relevant industry experience may be substituted for a Bachelors degree.
•   Possess a CompTIA Security+ and/or CompTIA CYSA+ Certification
•   US Citizenship is Required
•   Strong written and verbal communication skills, interpersonal and collaborative skills
•   Up-to-date knowledge of methodologies and trends in both information security and IT
•   Poise and ability to act calmly and competently in high-pressure, high-stress situations
•   Must be a critical thinker with strong problem-solving skills
•   Ability to participate in a project under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives
•   High level of personal integrity, as well as the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity
•   A high degree of initiative, dependability, and ability to work with little supervision while being resilient to change
•   Strong experience working with, configuring, and supporting Linux-based systems and Windows-based systems.
•   Practical experience with security information and event management (SIEM) tools and similar solutions to detect and analyze security threats
•   Expertise in software/script development, cloud computing, virtualization, and networking
•   Strong understanding and practical hands-on experience with vulnerability management and scanning tools
•   The ability to detect, triage, and remediate technical security threats and other issues in customer environments
•   Foundational knowledge of information security concepts and technologies such as: networking, network segmentation, firewalls, IPS/IDS, network analyzers, data loss prevention, encryption technologies, proxies, cloud services, mobile devices, etc.
•   A passion for the cyber security industry and proven dedication to continuous learning and improvement
•   Understanding of compliance standards such as FISMA, NIST 800-53, ISO 27001, NIST RMF/CSF, PCI, HIPAA, and others

Job Responsibilities:

•   24x7x365 Monitoring, investigating, and analyzing intrusion attempts and network traffic alerts in customer environments and performing an in-depth analysis of exploits
•   Provide network intrusion detection expertise to support timely and effective decision-making of when to declare an incident
•   Conduct proactive threat research
•   Create, manage and monitor vulnerability scanners deployed in customer environments
•   Create and deliver technical and executive-level type reports to customers and company management
•   Utilizes technologies such as Firewall/Switches, DLP, DNS, IDS/IPS, virtualization, SIEM, Vulnerability Scanners, and related endpoint, mobile, and cloud controls to manage and maintain customer needs as well as internal IT needs
•   Update incident response plan and procedures as well as SOC playbooks with the Lead SOC Engineer
•   Provide support, maintenance, and development of the Security Information and Event Monitoring (SIEM) platform and Vulnerability Scanning Platform
•   Participate in Social Engineering Exercises with customers and internally
•   Participate in Penetration Tests under the supervision of the Lead SOC Engineer
•   Maintain a working knowledge and understanding of NIST 800-53, NIST 800-171, ISO 27001, PCI-DSS, and HIPAA
•   Support audit and assessment process for IT, including annual ISO 27001 audit, IT general controls review, and any other audits or assessments of security and general IT controls
•   Support forensic investigations and data acquisition supporting legal holds
•   Respond to SIEM, DLP, Endpoint Security, email, HR Separation, Production Calendar tasks, internal tickets, and requests during on-call rotation

The work environment and company culture values flexibility, career growth, and continuous learning. Candidates for this position are expected to have ambition, curiosity, professionalism, and initiative. This position is a hybrid remote working environment with approximately three days remote and two days on-site at Netizen HQ in Allentown. Additional days at HQ or Occasional visits to customer locations may be needed and may require travel outside of the Lehigh Valley Region.

Netizen Corporation is an EEO employer - M/F/Vets/Disabled