Zero Trust Cybersecurity Engineer Job Listing at Tetra Tech EGlobal in Washington, DC (Job ID 4031)

Description

About the Role

EGlobalTech, a Tetra Tech Company, is looking for a Zero Trust Cybersecurity Engineer to join

our Cyber Solutions Practice (hybrid role) and support a federal customer located in Washington, DC.  This is a hybrid role and currently requires 3 days on-site support. 

Qualified candidates should have experience with Zero Trust, have familiarization with Insider Threat detection, Privileged User Management, as well as technical hands-on expertise; Must possess an active Top-Secret clearance with the ability to obtain SCI. This role offers excellent compensation, career growth potential, and a total rewards package that includes PTO, paid holidays and corporate events, continuing education reimbursements, 401K, an Employee Stock Purchase Plan (ESPP) through Tetra Tech, and more!  

• Develop Zero Trust implementation roadmaps. 
• Design and implement technical Zero Trust security solutions.
• Work to infuse Zero Trust design principles across all pillars in a Zero Trust model (e.g. Users, Devices, Networks, Applications, Data, etc.). 
• Coordinate with appropriate organizational stakeholders to ensure Zero Trust is implemented broadly, end-to-end across customer environments.
• Support the design and implementation of the client provided Privileged Access Management (PAM) system (currently CyberArk). Troubleshoot where necessary and install and develop new plug-ins and connectors for PAM solutions. Document technical processes and procedures and provide revisions of support documents as necessary.
• Support the design and implementation of client selected endpoint security tools (currently Tanium), to include research, analysis, design, implementation, and documentation of new configurations to improve ZT maturity and reduce cyber risk. Troubleshoot where necessary.
• Develop, design, and maintain dashboards and analytics with client provided tools (currently Tableau) and integrate with existing governance, risk, and compliance (GRC) tools (currently Archer) to collect, refine, and prepare data for analytics and visualization. Manage and utilize the platform to extract meaningful insights. Prepare reports using various visualization and data modeling methods.
• Provide engineering and administration of the client provided Splunk environment consisting of search heads, indexers, deployers, deployment servers, heavy/universal forwarders, and Splunk Enterprise Security premium app, spanning security, performance, and operational roles. Identify and onboard new data sources into Splunk, analyze the data for anomalies and trends, and build dashboards highlighting the key trends in the data. Edit and maintain Splunk configuration files and apps.
• Develop and implement security policies (aka “rules”) in tools (e.g., Kion) and programming languages (e.g., Python) for cloud-based resources (e.g., Azure and Amazon Web Services (AWS)) to support configuration monitoring and ongoing understanding of risk. Develop integrations necessary to produce dashboards and cyber “heat maps”.

• Perform Zero Trust security readiness assessments (e.g. gap analyses, maturity assessments)
• Minimum of 8 years of experience in enterprise-wide architecture, engineering, implementation, and integrations.
• Minimum 8+ years of experience with enterprise security architecture and designing, building and implementing enterprise IT security systems.
• Hands on knowledge of Zero Trust technologies covering IAM, Network Segmentation, and Encryption.
• Experience working with cloud-based network infrastructures such as AWS or Azure or Google Cloud. Scripting experience in Python is desired.
• Hands on experience with Insider Threat Management, Privileged User Management and metrics generation.
• Practical experience with CyberArk, Tanium and Splunk.  Linux experience is desired but not required.
• 5 years' experience in engineering enterprise IT solutions using NIST SP (e.g.: SP800-60, SP800-64, SP800-80, SP800-122, SP800-137, SP800-146, SP800-160, SP800-204, SP800-207, SP800-213, etc.)