SECURITY TOOLS Engineer -

Location: WASHINGTON, DC, United States
Clearance Level Must Be Able to Obtain: Public Trust
Potential for Remote Work: Hybrid Remote

Target Salary: $145,000 plus benefits
Description

We are seeking a technical Security Tools Team Lead to join our dynamic team in supporting a critical US government agency in the National Capital Region. This role presents an exciting opportunity to lead the operation, maintenance, and modernization efforts of various security tools within a collaborative environment, reporting directly to the Security Operations Manager.

Responsibilities:

Lead a team of security tool administrators responsible for the management and operation of key security technologies, including but not limited to AV / EDR, DLP, Web Proxy, Email Security, IDPS, and SIEM Technologies.
Oversee deployment, update, and upgrade plans for security tools and execute tasks accordingly.
Evaluate routine health checks reports, maintenance activities, updates, upgrades, and implementation of new capabilities.
Troubleshoot security tools issues, escalate as necessary, and collaborate with vendors to resolve technical challenges.
Support the deployment of new security tools as required.
Develop, execute, and enhance work instructions and technical documentation related to security tool updates, upgrades, and health checks.
Analyze performance issues of security tools using various diagnostic tools.
Maintain accurate and comprehensive documentation of work activities in diverse formats, including work instructions, change management requests, incident tickets, and email communications.
Drive efficiency improvements through process enhancements and automation initiatives.

This role does require 2 days per week in office.

Qualifications

Requirements:

Bachelor’s degree in a relevant field plus seven (7) years of related information security experience, or ten (10) years of relevant work experience.
Five to seven (5-7) years of hands-on experience working with various security tools and technologies, including SIEM platforms, antivirus solutions, endpoint detection and response solutions, DLP systems, web proxies, and intrusion detection/prevention systems.
Proficiency in operating systems administration (Windows and Linux) and scripting/automation (e.g., Python, PowerShell) with at least two (2) years of relevant experience.
Demonstrated experience in developing, executing, and enhancing work instructions and technical documentation pertaining to security tool administration.
At least two to three (2-3) years of experience in a leadership or supervisory role, overseeing a team responsible for managing security tools and systems.
Experience in mentoring and guiding junior team members, delegating tasks, and providing feedback on performance and development.
Familiarity with relevant cybersecurity regulations, standards, and frameworks (e.g., NIST, FISMA, HIPAA, GDPR) and experience ensuring compliance with regulatory requirements.
Possess industry-standard cybersecurity certifications such as Security+, CASP, CISSP, as well as vendor certifications from Cisco, Juniper, Palo Alto, Splunk, Microsoft, Red Hat, and others.
Must be able to communicate effectively, both verbally and in writing, and work autonomously with minimal supervision.
Proficiency in using Microsoft Word, PowerPoint, and SharePoint.

Clearance Requirement: All candidates must be eligible to obtain a US Public Trust Clearance.