IT Engineer / Network Security

SYSCOM, Inc. provides specialized information technology resources that possess the requisite skills and capabilities to deliver enterprise level solutions that help our client’s achieve their objectives. At SYSCOM, we have a proven process that brings the best and brightest resources into our organization. Our teammates have excellent verbal and written communication skills as well as coordination and organization skills. The objective of our approach is to ensure a high level of customer satisfaction. We are seeking several motivated and adaptable

• Graduation from an accredited college or university with a bachelor's degree in Computer Science or a related field preferred.
• Three years of experience within the network and application security fields, preferred.
• Five years of experience with Windows Server and Internet Information Services, preferred.
• Knowledge of Information Security and Auditing is preferred.
• General understanding of security practices in a medium-large scale enterprise environment consisting primarily of Windows and Cisco equipment, preferred.
• Note: Other combinations of applicable education, training, and experience that provide the knowledge, abilities, and skills necessary to perform effectively in the position may be considered.
• Licenses and Certifications: Information Security Certifications COMPTIA Security+, CISSP, or MSCE with security emphasis is preferred.

• Lead the development and documentation of security policies for BCPS and assist with the implementation and enforcement of policies and procedures.
• Uses technical skills, knowledge and abilities to diagnose and resolve security related issues.
• Participates in all security related incident responses. Coordinates with other IT groups to develop and implement a security incident response plan in collaboration with a Critical Incident Response Team (CIRT) and Security Incident Response Team (SIRT).
• Works with management and other stakeholders to evaluate security requirements and make recommendations.
• Reviews State of Maryland Security Technical Information Guides (STIGS) and makes recommendations for ensuring compliance.
• Proactively monitors and manages the overall BCPS security posture.
• Monitors firewall and incident detection (IDS) and incident prevention (IPS) logs to identify potential attacks or weaknesses.
• Assist with the implementation of new network and server systems to ensure compliance with industry standard best practices pertaining to security topics.
• Works in cooperation with the Network Support Services team to schedule and manage the implementation of penetration testing and vulnerability assessments.
• Develops plans to address gaps in infrastructure security in order to establish procedures to ensure a secure IT environment.
• Generates high-level reports for senior executives detailing the current security posture within BCPS.
• Assist in the development and implementation of Identity and Access management systems.
• Remains current with regards to industry standards concerning security risks, concepts, and approaches.
• Perform other duties as assigned.

• Broad understanding of security protections typical in enterprise environments, including: application protection techniques such as servers/application hardening and firewall ACL configurations.
• Solid understanding of the commonly[1]used information security concepts, practices, and procedures including, but not limited to, operating systems and network security, application security, vulnerability management, intrusion detection and prevention, incident response, denial of service protection. Understanding of common web vulnerabilities, including OWASP Top 10.
• Familiarity with common security tools, including vulnerability scanners, Security Incident and Event Management, Intrusion Detection/Prevention Systems, and Application Firewalls.
• Ability to understand and communicate the business impact of information security risks to technical and/or leadership staff.
• Effective verbal and written communication skills and effective interpersonal skills. Strong problem-solving skills. Knowledge of security relating to VoIP preferred, but not required.
• Must be able to work off hours as needed.