Position: Senior Network Security Engineer
Contract Details: 6 Months with a potential extension. 40-hour work week.
Location: Hanover, MD

DK Consulting Overview:
Founded in May 2003, DK Consulting, LLC, a woman-owned small business, was formed to provide management and technology solutions based on industry best practices. DK Consulting, LLC works with multiple State, Federal, and Commercial customers and our services range from providing customers with that one ‘critical resource’ to assuming responsibility for an entire IT project. We maintain exceptional past performance and provide a personal touch to account management that is rarely seen in the industry today. Some of our awards include: Position Overview:  The successful candidate will be primarily responsible for deploying, configuring, maintaining, and troubleshooting various security technologies on a large enterprise network. Technologies include, but are not limited to, firewalls, intrusion prevention systems (IPS), vulnerability scanners, web filters, two-factor authentication systems, wireless controllers, network access control (NAC), and security information and event management (SIEM) solutions. Responsibilities also include analyzing logs, alerts, and reports generated by multiple security technologies. In addition to performing technical tasks, the candidate will be expected to advise management and clients on IT security issues, the threat landscape, and industry trends. Strong communication and thought leadership skills are therefore essential.

Responsibilities:

• Deployment, administration, and troubleshooting of numerous security technologies
• Assessment of new security technologies and design of solutions to improve the security posture of the environment.
• Development and review of information security requirements and impact plans for existing and emerging technologies.
• Conduct ongoing risk assessments and provide risk mitigating solutions, security designs and engineering support for customer’s network, system and application environments.
• Lead Incident response cases to closure with full documentation including a lessons learned debrief.
• Conduct continuous analysis of security logs, alerts, and reports to ensure the integrity of the enterprise is maintained.
• Provide guidance and consultation support to clients on cybersecurity matters.
• Develop security policy documents
• Serve as lead engineer on cybersecurity projects adhering to best practice project management principles
• Provide after hours on-call support on a rotation basis

Requirements:

• Ten (10) years' of experience designing, implementing, and operating several of the following technologies: Firewalls and Proxy servers, Intrusion Detection Systems, Vulnerability Scanning, Remote Access and VPN, ISMS/GRC.
• Five (5) years’ experience with performing IT security audits, developing IT security policies and procedures
• Experience in developing, implementing, and maintaining an enterprise IT Security risk management program, where the establishing risk and compliance related policies and procedures.
• Experience in producing security engineering and architecture documentation for IT projects to include as-built, process, procedure, life cycle management, and other relevant documents
• Understanding of the PCI (Payment Card Industry) data security standard and other regulatory concerns (SOX, FCRA, FISMA, etc.)
• Able to manage and work through assigned projects under a standard framework (e.g. develop project plans, schedules, test documentation, etc.).
• Excellent communication skills (written and verbal) required.
• Ability to communicate using a variety of workgroup tools including Visio, Project, and PowerPoint.
• Industry recognized certifications such as CISSP, CCNP Security, etc.

Desired Qualifications:

• Desired qualifications include the following:
• Palo Alto Networks firewall
• Cisco ASA (including site-to-site and remote access VPN)
• Pulse Secure SecureAccess
• Forescout CounterACT
• Entrust IdentityGuard
• Rapid7 Nexpose vulnerability scanner
• Aruba Clear Pass Policy Manager
• McAfee Network Security Platform
• McAfee Endpoint Security modules
• IBM QRadar
• Strong foundation in routing technologies
• Strong Linux and Unix skills
• Strong Microsoft skills

Education:
Bachelor's degree (B.S.) or higher from an accredited college in engineering, computer science, information systems, or mathematics OR
10 years related experience and/or training; or equivalent combination of education and experience including one or more IT certifications in security and/or firewalls.