CenturyLink Senior Information Security Engineer - Federal Practice in Herndon, Virginia
CenturyLink (NYSE:CTL) is a premier network solutions provider and trusted partner to our customers. As part of our recent acquisition of Level 3 Communications, our portfolio has expanded. More customers. More network. More locations. More opportunities for you. With a global presence in 60 countries, service to more than 350 metro areas domestically, and more than 200,000 miles of fiber; CenturyLink is going places. At CenturyLink, we believe in growth and innovation, for our customers and our employees. Discover how CenturyLink can expand your potential and take your career to new places if you’re looking to join a company that celebrates diversity and creativity, with industry-leading benefits and commitment to employee advancement. We’re committed to bringing great talent to our team to help us change the world. One network connection at a time.
We are in the process of filling open positions for the combined company following CenturyLink’s acquisition of Level 3 Communications. All qualified candidates who express interest by submitting an application to an open posting will be considered. However, based on business needs, preference may be given to internal applicants on certain positions. We still welcome, and encourage, all application submissions while we continue our integration process. Internal applicants are current, active CenturyLink employees, including Level 3 employees who have transitioned to CenturyLink as part of the acquisition.
The Senior Information Security Engineer is a member of the Government Services Information Security team that is responsible for delivering Information Technology (IT) services and coordinating with Information Assurance (IA) personnel to ensure compliance with corporate and/or government policy, standards, procedures and industry best practices. The Sr. Engineer is responsible for developing and maintaining program networks while working with the IA personnel and system owner to ensure the systems comply with applicable government policies. The Sr. Engineer will also be responsible for supporting equipment hosted on corporate network.
Design, build and manage an internal network to support the program and a 24/7 NOC with the management and monitoring of other program resources. The network will span multiple geographic locations and consist of approximately 65 users.
Assist the Lead InfoSec Engineer to develop, implement, and evaluate the System Security Plans to satisfy Certification and Accreditation requirements in accordance with ICD 503 and other government guidelines
Provide technical support for continuous monitoring activities to include but not limited to performing security scans, coordinating findings with engineering team and Lead Infosec Engineer, maintaining auditing tools, audit reports and reviewing audit logs.
Conduct periodic reviews to ensure compliance with established policies and procedures ensuring all software, hardware and firmware changes recorded as required by established configuration management procedures
Ensure systems are operated, maintained and disposed of in accordance with applicable governing policies and procedures
Perform IS security briefings, report all security incidents to the ISSM, and investigate, document and report, as well as provide protective and corrective measures in response to such incidents
Coordinate and participate in special projects concerning information security, including testing and implementation of security software enhancements
Provide some day-to-day support for security operations including: visitor control, courier support, classified document/media/FAX control, access control and alarms, personnel database activities, lock and combination changes and control, and COMSEC custodial duties
Develop, facilitate, and present information security awareness and security training on various customer and corporate security policies
Maintain a broad knowledge of technology, equipment and/or systems to include the configuration, maintenance, analysis and use of computer forensics tools, steganography and metadata tools, audit reduction tools, firewalls, various operating systems, and phone switches
Support and maintain the physical security standards for Sensitive Compartmented Information
Interface with appropriate government agencies, company management and employees, customers, vendors, and suppliers to ensure understanding of and compliance with security requirements
5+ years of relevant system administration, user support and security control implementation work experience.
Undergraduate degree in Computer Science Engineering, related field, or equivalent experience.
Considered expert in one (or more) of the following areas: Networking, Operating System (MS/Unix/Linux), Security hardening.
Self-starter with strong self-management skills, with an ability to organize and manage multiple priorities.
Ability to apply professional judgment in critical thinking and problem solving.
Active DHS Suitability with SCI or TS/SCI with current SSBI Security Clearance is required.
5+ years of dedicated system administration supporting all levels from tier 1 user desktop support to tier 3 backend server and network support.
Hands on experience managing Active Directory, Exchange, DNS, File servers, Print servers, Backup systems, Anti Virus systems
Hands on experience using information security tools such as NESSUS, HBSS, ACAS, SCAP.
Hardware troubleshooting and repair, evaluate and recommend new products
Professional/technical certifications, such as A+, Network+, Security+, MCSA, MCSE, CCNA or equivalent IT or Information Security related certifications.
Bachelors or Equivalent in Computer Science or Other Technology
Alternate Location: US-Virginia-Arlington; US-Virginia-Herndon
Requisition # : 165116
This job may require successful completion of an online assessment. A brief description of the assessments can be viewed on our website at http://find.centurylink.jobs/testguides/
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions.