Bowhead Support Services

Systems Security Engineer

Bowhead Support Services$90K — $120K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • High School Diploma or Bachelor's degree.
  • 3-5 years of relevant experience.
  • Strong understanding of computer networking concepts and protocols.
  • Familiarity with network security architecture and methodologies.
  • Experience with intrusion detection/prevention systems and access control mechanisms.

Responsibilities

  • Conduct vulnerability scans and identify security system vulnerabilities.
  • Utilize DoD network analysis tools (ACAS, HBSS) for vulnerability identification.
  • Perform application vulnerability assessments to enhance security.
  • Analyze vulnerability and configuration data to identify systemic security issues.
  • Provide insights into an organization's threat environment to enhance risk management.
  • Apply cybersecurity and privacy principles effectively within organizational frameworks.
  • Troubleshoot and resolve cyber defense infrastructure anomalies.

Benefits

  • Comprehensive health benefits package.
  • Paid time off and holidays.
  • Professional development opportunities.
  • Supportive work environment promoting innovation.
  • Collaborative team culture focused on cybersecurity excellence.
Full Job Description
Overview

SYSTEMS SECURITY ENGINEER (RDTE)

 

Bowhead is seeking an experienced Systems Security Engineer to join our team in Dahlgren, VA. The ideal candidate will have a strong background in computer networking concepts and protocols, as well as network security methodologies. The Systems Security Engineer will be responsible for identifying and mitigating vulnerabilities in security systems, conducting vulnerability scans, and applying system, network, and operating system hardening techniques.

Responsibilities

Essential functions for the Systems Security Engineer include, but are not limited to:

  • Conducting vulnerability scans and recognizing vulnerabilities in security systems.
  • Using DoD network analysis tools to identify vulnerabilities (e.g., ACAS, HBSS, etc.).
  • Conducting application vulnerability assessments.
  • Identifying systemic security issues based on the analysis of vulnerability and configuration data.
  • Sharing meaningful insights about the context of an organization’s threat environment that improve its risk management posture.
  • Applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • Troubleshooting and diagnosing cyber defense infrastructure anomalies and working through resolution.
  • Performing impact/risk assessments.

Required Skills:

  • Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems.
  • Skill in using DoD network analysis tools to identify vulnerabilities (e.g., ACAS, HBSS, etc.).
  • Skill in system, network, and OS hardening techniques (e.g., remove unnecessary services, password policies, network segmentation, enable logging, least privilege, etc.).
  • Skill in conducting application vulnerability assessments.
  • Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
  • Ability to share meaningful insights about the context of an organization’s threat environment that improve its risk management posture.
  • Ability to cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).Tenable Assured Compliance Assessment Solution (ACAS)
  • Trellix Endpoint Security System (ESS), previously known as McAfee Host Based Security System (HBSS)
  • Skill in applying host/network access controls (e.g., access control list).
  • Skill in using Virtual Private Network (VPN) devices and encryption.
  • Skill in securing network communications.
  • Skill in protecting a network against malware. (e.g., NIPS, anti-malware, restrict/prevent external devices, spam filters).
  • Skill in troubleshooting and diagnosing cyber defense infrastructure anomalies and work through resolution.
  • Skill in performing impact/risk assessments.
  • Skill to develop insights about the context of an organization’s threat environment
  • Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
Qualifications
  • High School Diploma or Bachelor's degree.
  • Three to five (3-5) years of relevant experience required
  • Knowledge of computer networking concepts and protocols, and network security methodologies.
  • Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth & concept of zero trust).
  • Knowledge of basic system, network, and OS hardening techniques.
  • Knowledge of Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications.
  • Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
  • Knowledge of application vulnerabilities.
  • Knowledge of system administration, network, and operating system hardening techniques.
  • Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems.

Preferred:

  • Knowledge of cyber threats and vulnerabilities.
  • Knowledge of specific operational impacts of cybersecurity lapses.
  • Knowledge of host/network access control mechanisms (e.g., access control list, capabilities list).
  • Knowledge of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • Knowledge of network traffic analysis methods.
  • Knowledge of Virtual Private Network (VPN) security.
  • Knowledge of transmission records (e.g., Bluetooth, Radio Frequency Identification (RFID), Infrared Networking (IR), Wireless Fidelity (Wi-Fi). paging, cellular, satellite dishes, Voice over Internet Protocol (VoIP)), and jamming techniques that enable transmission of undesirable information, or prevent installed systems from operating correctly.
  • Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
  • Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
  • Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks).
  • Knowledge of application security risks.

 

Physical Demands:

  • Must be able to lift up to 15-20 pounds 
  • Must be able to stand and walk for prolonged amounts of time
  • Must be able to twist, bend and squat periodically

SECURITY CLEARANCE REQUIREMENTS: Must currently hold a security clearance at the Top Secret level.  US Citizenship is a requirement for Top Secret clearance at this location.

 

#LI-JR1

 

About Bowhead Support Services

Bowhead Support Services is a defense contractor that provides a range of services to the U.S. government and other customers. The company was founded in 1996 and is headquartered in Alexandria, Virginia. Bowhead Support Services provides services in the areas of engineering, logistics, information technology, and security. The company has operations in the United States, Europe, and the Middle East. Bowhead Support Services is a subsidiary of Ukpea?vik Iñupiat Corporation, an Alaska Native corporation.
Learn more about Bowhead Support Services
Size
1,000 employees
Industry
Net Income
$5 million
Founded
1996
5 Year Trend
+5%
Revenue
$100 million
NASDAQ

Similar Jobs

More Jobs at Bowhead Support Services

More Information Technology Jobs

Find similar Systems Security Engineer jobs: