PBG Consulting is a women-owned small business supporting federal agencies with Strategic Consulting, Program Implementation, and IT Modernization & Digital Transformation. With a relentless commitment to quality and an innovation-first mindset, PBG serves government missions with passion, boldness, and grit.

The Security Engineer will apply expert knowledge to mitigate security risks, conduct security reviews, and manage vulnerabilities across systems. This role involves configuring and maintaining security solutions, including Barracuda WAF, AWS WAF, and other security tools like Splunk, Nessus, and Trend Micro. The Security Engineer will ensure the security posture of both on-prem and cloud environments, focusing on proactive identification and remediation of security threats, and providing oversight for software and hardware upgrades.

Responsibilities:

Identify and mitigate security risks across systems and networks.
Perform security reviews and vulnerability management.
Conduct security control assessments and interpret scan reports.
Troubleshoot and resolve application security issues.
Manage security ticketing, patch management, and system monitoring.
Provide technical support for AWS cloud service administration, Active Directory, and Windows system administration.
Deploy code and manage systems and infrastructure upgrades.
Utilize tools such as Tenable, DbProtect, Trend Micro, Splunk, and AWS WAF for security analysis.
Develop and document security waivers and exceptions.
Perform security risk assessments for third-party vendors and assist in ATO (Authority to Operate) package development.

Qualifications:

Strong expertise in AWS Cloud, with experience in Barracuda Cloud WAF (required).
Experience with security tools like Nessus, DBProtect, Trend Micro, and Splunk.
Proficient in Windows systems administration and cloud security.
Strong knowledge of Active Directory (AD) administration and Microsoft IIS.
Expertise in PowerShell scripting and vulnerability remediation.
Experience with security controls, incident response, and patch management.
US Citizenship is critical for this role

Preferred Skills:

Familiarity with cloud migration, ATO processes, and GRC Archer onboarding.
Experience with Microsoft Sentinel and Defender ATP.
Experience with Unix-based systems (e.g., Ubuntu/Redhat).
Knowledge of compliance and audit frameworks (e.g., OIG audit response).

Additional Information:

AWS Cloud Migration experience preferred.
Ability to respond to system outages and manage queues effectively.

#CJ

#WHYPBG

We have successfully built a company culture based on our single most important asset - our employees. At PBG we are passionate about employee engagement and make it our business to provide our employees a range of challenging and rewarding opportunities that align with business strategy, promote team work and inspire innovation. A job is where you are spending most of your day, so PBG believes in making it a fun, collaborative and productive environment. We want our employees to have the opportunity to grow and be part of a company that is making a lasting contribution to our customers. 

Benefits:

401K Retirement Plan
Medical Plan options with significant financial investments from PBG
Prescription benefit plan
Dental and Vision coverage
Employee Assistance Program
Short term / Long-term disability
Supplemental group life and AD&D options
Yearly Bonuses
Generous Paid Time Off / Paid Holidays
Career/Professional Development Program
Spot Bonus Program

Diversity & Inclusion:

PBG celebrates diversity and is proud to provide Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetics, disability, or protected veteran status. In addition to federal law requirements, PBG complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.

Disclaimer:

This job description reflects management’s assignment of essential job functions but is not intended to be a comprehensive list of all activities, duties and responsibilities required by the job incumbent. Nothing in the herein restricts management’s right to assign or reassign duties and responsibilities to this job at any time.
This document does not create an employment contract, implied or otherwise, other than an "at will" relationship.

Security Engineer

Barracuda WAF & Shield, Aws Waf

PBG Consulting