MAD Security has an opportunity to hire a Network Security Engineer based at our offices in Arlington, VA supporting a mission critical, government-wide cybersecurity program.  By supporting this program, you will be contributing to the development, implementation, and assessment of new defensive measures that protect the entire .GOV and critical infrastructure communities.

The scope of the position includes security engineering, testing, analysis, documentation, and design assurance of complex, carrier grade networks designed to provide boundary defense from sophisticated threat actors. You must have a strong understanding of modern network technologies, protocols (e.g. TCP, SMTP, DNS, SSH, etc.), and security practices.  Candidates must well versed in reviewing, analyzing, and commenting on secure network design, federal security and operational requirements (e.g. NIST SP 800-53r4, CNNSI 1253, etc.).  Candidates must be able to adopt a threat actor’s perspective when performing design assurance to ensure these systems are not only compliant, but offer effective security measures against advanced threats.  You will be required to develop clear, thoughtful, and actionable recommendations to improve the security of these systems and must be able to communicate these recommendations effectively through verbal and written means.  There is a small amount of travel (less than 10%) expected.

Day-to-Day Responsibilities include:  
•Act as network security subject matter expert working on behalf of the customer to review system designs submitted for approval by the government
•Participate and lead Technical Exchange Meetings with the government Program Management Office (PMO) and commercial service providers to discuss system designs and provide recommendations 
•Review, evaluate, and recommend action for change requests and plans of action and milestones (POA&Ms)
•Utilize knowledge of NIST 800-53 Rev 3&4 and CNSSI 1253 controls to evaluate system compliance
•Review and evaluate systems security documentation, software code, configuration files, SSPs, SECONOPS for compliance and vulnerabilities
•Design, build, and operate virtualized environments used to simulate commercial service provider systems prior to onsite assessment
•Work with red team and penetration testers to develop detailed test and assessment plans to be used during onsite security assessment 
•Leverage systems and networking skills to evaluate and exploit vulnerabilities from insider threat and external threat perspective
•Participate in the design and implementation of reference models and security architectures for prototyping new countermeasures and capabilities
 
Job Requirements 
You must be a results-oriented professional with a proven ability to overcome challenges and a passion for excellence. 

In order to be successful in this job, we expect you to have the following skills and experience:
•Bachelor’s Degree in an Information Technology related field and/or applicable equivalent work experience
•Minimum of seven (7) years of progressive experience in one or more of the following areas:
o    Penetration testing
o    Security assessments
o    Code Analysis
o    Advanced network protocol manipulation
o    Development and operation of COTS and custom security tools used to support security assessments
•Demonstrated experience and proficiency in operating common, enterprise grade technologies from major vendors (Cisco, Juniper, Palo Alto, FireEye, HP, Dell, and VMware etc.)
•Demonstrated experience and proficiency in administering and configuring operating systems (including Windows, Linux, Unix, and VMware), layer 2/3 network technologies (routers, switches, appliances, and firewalls), and computer hardware
•Familiarity with federal information security standards (NIST SP 800-53r4, FedRAMP, CNNSI 1253, etc.) and practical experience implementing solutions that comply with these standards
•Ability to multi-task in a deadline oriented environment
•Demonstrated ability to work well independently with little input, and as a part of a team
•Excellent work ethic and a high commitment to quality
 Additionally, this position requires the following:
•Final Top Secret clearance with eligibility for SCI access is required to support the contract
•DHS suitability is required to support the contract