Reference #: 917299 REMOTE-Sr Information Security Engineer Category: Information Technology Employment Type: Direct Hire Reference: BH-373297 As an Information Security Engineer, you will play a vital role in safeguarding our digital assets, protecting against cyber threats, and ensuring compliance with rigorous security standards and regulations. You will work closely with our engineering and operations teams to design, implement, and maintain robust security measures that support the mission-critical nature of our aerospace and defense projects. Responsibilities * Develop and implement security policies, procedures, and standards to protect against cyber threats, unauthorized access, and data breaches. * Research, build, and maintain security solutions to support log aggregation, threat analysis, and incident response capabilities. * Participate in security reviews and audits, ensuring compliance with industry regulations (e.g., NIST, CMMC) and customer security requirements. * Collaborate with Infrastructure teams to integrate security controls into system architecture, ensuring security-by-design principles are followed throughout the project lifecycle. * Stay abreast of emerging cyber threats, vulnerabilities, and industry trends, and recommend proactive measures to enhance security posture and resilience. * Provide expert guidance and support to internal stakeholders on security-related matters, including threat intelligence, incident response, and security best practices. * Continuously assess and improve security controls, processes, and procedures to adapt to evolving threats, technologies, and business needs. PUBLIC Qualifications Required: * High School or GED graduate and 5+ years in Information Technology in Windows or Linux server administration, or network engineer. * 5+ years of proven experience in information security engineering. * This position requires access to technology, materials, software or hardware that is controlled by US export laws. In order to be eligible for this position, you must be a “US Person” under US export laws (or eligible for approval under a U.S. Government export license). A US person is defined as a lawful permanent resident, refugee or asylee. * Ability to obtain and maintain a security clearance Preferred: * Advanced degree in Information Security or related field * Relevant certifications (e.g., CISSP, CISM, GCIH) are preferred. * Strong understanding of security principles, standards, and regulations relevant to aerospace and defense, such as NIST SP 800-171 and NIST SP 800-53. * Experience with Palo Alto firewalls inclusive of IDS/IPS. * Experience with SIEMs and their log collection infrastructure. * Experience with Linux administration and hardening best practices. * Experience with building automations using common scripting languages such as PowerShell and Python, and API integrations. * Excellent analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions in high-stakes environments. * Strong communication and interpersonal skills, with the ability to collaborate effectively with technical and non-technical stakeholders. * Ability to obtain and maintain security clearances as required by specific projects and contracts. Note: Any pay ranges displayed are estimations. Actual pay is determined by an applicant’s experience, technical expertise, and other qualifications as listed in the job description. All qualified applicants are welcome to apply. Yoh, a Day & Zimmermann company, is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Visit to contact us if you are an individual with a disability and require accommodation in the application process. Y h, a Day & Zimmermann company, is an Equal Opportunity Employer, M/F/D/V.
Intrusion Detection System (IDS) powershell Analytical skills Problem-solving Establishing interpersonal relationships Python Intrusion Prevention System (IPS) Linux Certified Information Security Manager (CISM) Information security Certified Information Systems Security Professional (CISSP) Communication Network Engineer Windows API Integrations