Cyber Security Engineer

Working across the globe, V2X builds smart solutions designed to integrate physical and digital infrastructure from base to battlefield. We bring 120 years of successful mission support to improve security, streamline logistics, and enhance readiness. Aligned around a shared purpose, our $3.9B company and 16,000 people work alongside our clients, here and abroad, to tackle their most complex challenges with integrity, respect, responsibility, and professionalism.

The Defensive Cyber Operations (DCO) division within the USARCC-SWA is looking for a candidate with strong scripting abilities, experience with systems security administration, and network security technologies. The Cyber Security Engineer will design, implement, automate, maintain, and optimize measures protecting systems, networks, and information. Program: OMDAC-SWACA

This position offers company-paid housing and transportation, a completion bonus and tuition reimbursement program You must satisfy all host country requirements to legally work in the host country in order to be qualified for this position.

• Engineer develops scripts and tooling to verify security platforms and automate security team operations.
• Coordinating and leading the deployment and review of security services, as well as implementing NIST 800-171 compliant systems.
• Defining and validating security controls according to risk level for systems and information.
• Working with vendors to resolve security problems and develop infrastructure solutions.
• Supporting Cyber Security Service Provider (CSSP) accreditation efforts as outlined in DoDI 8530.1.
• Ensuring security policies and procedures are followed, documented, and made available to the USARCC-SWA subscribers.
• Engineer collaborates with the infrastructure, network, endpoint management, and application teams.
• Researching and advocating new technologies. The engineer must have in-depth knowledge of system administration and networking.
• Experience with machine learning and data analytics concepts.
• Knowledge of database, application, and operating system security.
• Synchronizing with higher headquarters on DCO processes, plans, and procedures.
• Developing and maintaining Work Instructions (WIs), Tactics, Techniques, and Procedures (TTP), and Continuity of Operations (COOP)
• Monitor security alerts and logs from various sources to promptly detect and triage potential security incidents, prioritizing based on severity and impact.
• Collaborate closely with cross-functional teams, including IT, security operations, legal, and senior management, to coordinate incident response activities and communicate effectively throughout the incident lifecycle.
• Ensure compliance with relevant regulatory requirements, industry standards, and organizational policies related to incident response, data protection, and cybersecurity.
• Perform trend analysis on events and incidents to identify and characterize threats.
• Conduct open-source research to identify commercial exploits or vulnerabilities, including Zero-Day threats, necessitating prompt response actions.
• Ability to successfully execute many complex tasks simultaneously.
• Assist in Computer Defense Assistance Program (CDAP) missions as requested by clients.
• Stay abreast of the latest cybersecurity threats, technologies, and best practices.
• Collaborate with cross-functional teams to elevate the overall cybersecurity posture.
• Maintain current knowledge of relevant compliance requirements and ensure adherence.
• Mentor and provide guidance to junior team members.
• Collaborate with external organizations and agencies to share threat intelligence and enhance collective cybersecurity capabilities.
• As a Senior member of the Defensive Cyber Operations Team in a 24-hour facility, you will be expected to conduct Incident Response and Incident Handling functions, as well as Cyber Threat Analysis.
• Fulfill any additional duties as assigned.

• Security Clearance: Requires an active Top Secret Clearance with SCI.
• Education / Certifications: One year of related experience may be substituted for one year of education if degree is required.
  • Bachelor's degree or equivalent experience preferably in Computer Science or MIS, IS, Engineering or related field.
  • This position requires candidates to adhere to DoD 8570.01M. All candidates are required to maintain at least one (1) baseline certification and one (1) computing environment (CE) certification. Baseline Environment (BE) certifications cannot also be used as a Computing Environment (CE).
  • The authorized certifications for this job title are listed as follows:
• IAT Level: CSSP Infrastructure Support
• BASELINE:
  • CompTIA: Cloud+ ce
  • CompTIA: CySA+ ce: Cybersecurity Analyst
  • CyberSec: CFR: First Responder
  • EC-Council CEH: Certified Ethical Hacker
  • EC-Council: CHFI: Certified Hacking Forensic Investigator
  • EC-Council: CND: Certified Network Defender
  • GIAC: GICSP: Industrial Cyber Security Professional
  • ISC2: SSCP: Systems Security Certified Practitioner
• COMPUTING ENVIRONMENT (CE):
  • Cisco: CCNP: Certified Network Professional (Any)
  • EC Council: ECIH: Certified Incident Handler
  • GIAC: GCFA: Certified Forensic Analyst
  • GIAC: GCIA: Certified Intrusion Analyst
  • GIAC: GCIH: Certified Incident Handler
  • GIAC: GCWN: Certified Windows Security Administrator
  • GIAC: GDAT: Defending Advanced Threats
  • GIAC: GREM: Reverse Engineering Malware
  • GIAC: GSEC: Security Essentials
  • Microsoft: 365 Certified: Enterprise Administrator Expert
  • Microsoft: Certified: Azure Security Engineer Associate
  • Microsoft: Certified: Azure Solutions Architect Expert
  • Microsoft: MCSE: (2016 or newer)
  • Offensive Security: Certified Expert
  • Offensive Security: Certified Professional
• Experience: One year of related academic study above the high school level may be substituted for one year of experience up to a maximum of a 4-year bachelor's degree in a Business Information Systems discipline for three years general experience.
  • At least five (5) years of practical experience working with various data (network and system) technologies, with a minimum of two of those years focused on information systems security, cyber threats and SIEM event analysis.
  • Experience with a customer service-oriented company.
• Skills & Technology Used:
  • Ability to troubleshoot servers and infrastructure equipment.
  • Ability to assess networking requirements and provide solutions.
  • Ability to make accurate and independent decisions under pressure.
  • Ability to perform comfortably in a fast-paced, deadline-oriented work environment.
  • Ability to successfully execute many complex tasks simultaneously.
  • Visualization of quantitative (numerical) or qualitative information.
  • Excellent interpersonal, organizational, written, verbal communication, and briefing skills.
  • Excellent analytical and problem-solving skills.
  • Threat Intelligence and visualization technologies.
  • Security enclave engineering.

We are committed to an inclusive and diverse workplace that values and supports the contributions of each individual. This commitment along with our common Vision and Values of Integrity, Respect, and Responsibility, allows us to leverage differences, encourage innovation and expand our success in the global marketplace. Vectrus is an Equal Opportunity /Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, protected veteran status or status as an individual with a disability. EOE/Minority/Female/Disabled/Veteran.