T
The CyberSecurity / Network Engineer position is responsible for the internal IT infrastructure and device security. This position will assist IT Technicians, System Administrators and other administrators with the delivery of cloud and on-prem infrastructure solutions. This position will bridge the gap between internal and external IT efforts including communicating with customers on select projects. Responsible for implementing NIST 800-171 controls in a small business environment.
Essential Duties and Responsibilities
TECHNICAL WRITING
· Document system design, configuration changes, IT-related SOPs, and administrative policies and procedures
· Create clear and detailed guides for end users and system deployment strategies
· Create and revise internal security policies. Explain necessity of policies to leadership
· Create technical documentation for systems and applications designed for customers
RESEARCH
· Support the research and troubleshooting of IT-related issues
· Assist in implementation of IT process improvements
· Investigate new technologies and techniques to enhance system performance
· Find cost-effective ways to implement organization's IT requirements
CONFIGURE/EVALUATE
· Evaluate and complete daily IT tasks and ensure task completion
· Configure backup, storage, and recovery procedures
· Configure Azure, O365, Nessus Tenable, Veeam, & Microsoft Sentinel security configurations
· Perform server/device health checks and proactive issue remediation
· Troubleshoot and configure Certificate Authority for the organization’s network.
· Implement security controls in compliance with NIST 800-171
· Configure and deploy new technologies to meet business needs
MONITOR
· Perform system monitoring and oversee system monitoring protocols daily
· Verify the integrity and availability of hardware, network, and server resources/systems
· Analyze system logs and identify potential issues with computer systems
SUPPORT
· Research, troubleshoot, and recommend solutions to reported or discovered IT issues
· Provide end user training where necessary
· Respond appropriately to system alerts
· Ensure end users can perform tasks required of them
INCIDENT RESPONSE AND MANAGEMENT
· Incident Handling: Assist in responding to and managing security incidents, including data breaches, malware infections, and unauthorized access.
· Investigation: Help in investigating security incidents to determine the cause, impact, and remediation steps.
· Documentation: Maintain detailed records of incidents, responses, and resolutions for future reference and compliance.
CONFIGURATION AND MAINTENANCE OF SECURITY TOOLS
· Tool Management: Assist with the configuration and maintenance of security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and antivirus solutions.
· Updates and Patches: Support the application of security patches and updates to keep systems secure.
· System Hardening: Contribute to system hardening efforts by applying security best practices and configurations.
SECURITY POLICY AND PROCEDURE SUPPORT
· Policy Compliance: Assist in implementing and enforcing security policies, standards, and procedures.
· Documentation: Help maintain and update security documentation, including system security plans, risk assessments, and compliance reports.
· Audit Preparation: Support preparation for internal and external security audits by providing required documentation and evidence.
TECHNICAL SUPPORT AND TROUBLESHOOTING
· Support: Provide technical support for security-related issues, including troubleshooting security incidents and system issues.
· End-User Assistance: Assist end-users with security-related inquiries and issues, ensuring adherence to security policies.
TECHNOLOGIES
Windows Server (including Hyper-V)
Microsoft Cloud Services (Office 365, Microsoft Entra ID SSO, Azure, Microsoft Sentinel)
Cisco Networking (including AnyConnect, Umbrella, site-to-site VPN, Meraki, and Cisco FMC)
Windows, MacOS, and Linux workstation troubleshooting and configuration
Endpoint/patch management: Intune, Conditional Access Policy
Azure Blob Storage
Microsoft Defender
Microsoft Sentinel (SIEM)
Tenable Vulnerability Management
Education:
Bachelor’s degree in a relevant field, such as Computer Science, IT, or Systems Engineer
Minimum Qualifications (Knowledge, Skills, and Abilities)
· CySA+ Certification, Security +, CCNA
· OS Administration: Windows 10, Windows Server, Linux (Ubuntu, Debian), MacOS: 2 years (Required)
· Network Administration/Network Engineering: 2 years (Required)
· Cisco ASA configuration & maintenance: 2 Years (preferred)
· Azure & O365 Administration: 2 years (Required)
· Microsoft Sentinel / SIEM: 2 years (preferred)
· Hyper-V Management
· Intune MDM & Endpoint Management
· Backup & Recovery: 2 years (preferred)
· Scripting Languages: Python, PowerShell
· HT Condor Experience/OpenTDA configuration, Mac Mini cluster design experience (preferred)
· Familiarity with regulatory compliance (CMMC 2.0/NIST 800-171)
· Resourcefulness and problem-solving attitude
· Employee onboarding experience
· Passion for Cybersecurity: Demonstrated interest in cybersecurity and a commitment to ongoing professional development.
· Adaptability: Ability to adapt to new technologies and changing security threats
· Office environment: On-site
· Work Hours: 9 – 5 Monday to Friday
· Weekend work and overtime may be required. Candidate should be prepared to perform weekend work and/or overtime to meet the needs of the company.
Physical Demands and Work Environment
· Able to lift up to 50 lbs
· Work in a business office space that includes a lab and production environment
· Adhere to all safety and regulatory protocols
Integrity Requirement This role involves handling sensitive information and making critical decisions. We expect the highest standards of honesty, responsibility, and ethical behavior. Candidates must demonstrate unwavering integrity in all interactions, as it is essential for success in this position and foundational to our company’s culture and reputation.
Benefits