This position will be accountable for performing a wide range of complex security procedures and processes necessary
to ensure the safety of information systems and assets and protect systems and data from intentional or inadvertent
access or destruction. Ensures that users understand and adhere to the necessary procedures and processes to
maintain security. Conducts complex IT data and security forensic investigations. Conducts internal vulnerability
management to meet regulatory and standards compliance. Requires knowledge of domain structures, user
authentication and digital signatures. Requires in-depth knowledge of intrusion detection and internet architecture.
Implements and administers Cybersecurity related systems.
Required Skills/Experience
Provide the minimum required skills and/or experience the contractor must possess to qualify for this position. These
requirements will be transferred to the Score Sheet and candidates without these requirements reflected on their resume will
NOT be presented to the manager for consideration.
5+ years of Cybersecurity related experience.
Tenable/Nessus or other vulnerability scanning experience.
Endpoint protection, AV/XDR, AV/XDR policy config, endpoint agents.
SIEM, logging/syslog, Alerting.
Windows/Linux Server administration of on-premise Cybersecurity applications.
Experience with cybersecurity tools used for routine security related tasks. Example: Nmap, Wireshark, phishing sim.
Experience participating in situational tabletop exercises (malware, phishing, ransomware).
Experience with vulnerability scanning, identification and remediation, penetration testing, endpoint
protection/hardening, CIS benchmarks, NIST/Cybersecurity frameworks, MITRE ATT&CK Matrix, IRS 1075, SSA, PII,
threat vectors, threat hunting, incident response and remediation.
Experience with common IT infrastructure found in most large organizations including but not limited to load balancers,
network LAN/WAN, firewall, email, AV, SIEM, GPO, web proxy, web, application development processes, database,
Windows/Linux server, Windows workstation, wireless, 365 ATP/DLP.
Strong written and verbal communication. Office (Word Excel Outlook One-Drive SharePoint).
Preferred/Not Required
Provide any skills/experience that would be helpful for the candidate to possess but not required. Examples: Previous supervisory
experience, WebLogic experience helpful, etc.
XQL, Python, PowerShell
Cybersecurity certification
Beginner: 1-2 years
Skill Set
Operating Systems
Windows Server
Windows 10-11
Linux
Python
PowerShell
Framework/SLD/Methodology
NIST CSF
MITRE
Pub 1075/SSA/PII
Skill Level
Advanced
Advanced
Intermediate
Programming Language/Development Tools
XQL
Database Systems/Database Tools
Cybersecurity Tools
Intermediate
Intermediate
Intermediate
Advanced
Advanced
Advanced
Advanced
QA/Testing – Approaches, Application
Vulnerability Scanning
Endpoint Protection
SIEM