Senior Engineering Lead

About Zen:

Own your opportunity to work with a client-focused growing agile small business. Make an impact by advancing our government organizations charged with keeping our country safe, prosperous, and secure. Zen Strategics LLC is a cleared, niche consulting firm, offering innovative Cybersecurity, Cloud/DevSecOps, Information Data Management and Modernization solutions. We are a leading organization committed to delivering innovative solutions and ensuring the highest standards of security for our customers' infrastructure assets. We are dedicated to staying ahead of evolving cyber threats and protecting our clients' data leveraging cutting-edge technologies (to include AI/ML) and proactive security measures. 

Position Description:

We are seeking a highly organized, detail-oriented, Senior Engineering Lead with a proactive mindset and a commitment to quality and accuracy to join our team. In this role, you will be responsible for implementing and maintaining the security posture of our datacenter and cloud infrastructure and applications. You will be responsible for tasking and leading a small team of engineers to accomplish day to day operational engineering requirements of a Security Operations Center. You will collaborate closely with operations and compliance teams to ensure all our environment remains secure, compliant, and resilient.

Responsibilities:

Essential

• Team Leadership: Lead a small team of engineers, promote knowledge-sharing, and help drive a culture of operational excellence and continuous improvement within the IT team.
• Implement Security Solutions: Lead efforts to build, install, configure, maintain software, firmware, security patches, and troubleshoot cyber security applications, ensuring optimal performance and uptime across the enterprise.
• Manage and maintain both physical and cloud infrastructures, including all aspects of application support. Perform system administration functions such as account management, enforcement of Group Policies, oversight of Certificate Revocation Lists (CRLs), and provisioning of user and service accounts. Conduct regular server backups and restoration testing to ensure data integrity and disaster recovery preparedness.
• Tool Management: Manage security tools and technologies, ensuring they are effectively integrated into the physical and cloud infrastructure.
• Compliance Management: Ensure compliance with relevant security regulations and standards such as FISMA, SOC 2, GDPR, and HIPAA. Utilize tools such as Group Policy Objects (GPOs), SCAP tools, and STIGs to ensure infrastructure security compliance and system hardening is properly managed.
• Policy Development: Lead development of processes and procedures for physical and cloud environments. Perform technical analysis and root cause investigations, generating documentation such as Standard Operating Procedures (SOPs), technical reports, and process improvement recommendations.
• Security Assessments: Lead engineers’ participation in new system and ongoing continues monitoring assessments to provide documentation and required evidence.
• Stay Informed: Keep up to date with the latest cloud security threats and trends to proactively enhance our security measures.

Required Education

Education: Bachelors or Masters

Qualifications:

Experience: Requires Bachelor’s degree and 8+ years of prior relevant experience or master’s degree with 6+ years of prior relevant experience, additional years of experience will be accepted in lieu of a degree.

Certifications: Relevant certifications such as CISSP, CCSP, or AWS Certified Security - Specialty are a plus.

Knowledge: 

Strong interpersonal skills: The ability to maintain effective communication and collaborative relationships across technical and non-technical teams.

Technical Expertise: Strong understanding of cloud computing concepts and technologies (e.g., AWS, Azure, GCP). 

Security Tools Knowledge: Experience with firewalls, intrusion detection/prevention systems, vulnerability scanners, and SIEM systems. Solid understanding of network services, including DNS, firewalls, routers, ports, and protocols. Hands-on experience with Windows and Linux administration, including expertise in cybersecurity, including system hardening, patch management, and adherence to DoD or enterprise-level compliance standards. Familiarity with security tools and frameworks such as Security Content Automation Protocol (SCAP), Security Technical Implementation Guides (STIGs), and Information Assurance Vulnerability Management(IAVMs).

Demonstrated troubleshooting and diagnostic skills: Proven track record of the ability to resolve complex technical issues independently and efficiently.

Frameworks & Standards: Knowledge of security frameworks and standards such as NIST, ISO 27001, and CIS.

Communication Skills: Excellent verbal and written communication abilities.

Salary at Zen Strategics is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. 

US Citizenship Required. 

Security Clearance: Must be willing to obtain and maintain a clearance; Public Trust 

Equal Opportunity Employer Veterans/Disabled