Founded in 2017 and headquartered in Manassas, Virginia, Toomey Technologies is a SBA HUBZone & WOSB Certified Small Business that provides customer focused professional services and solutions. Toomey focuses on forging strong relationships with our customers and internally fostering a culture of continuous improvement of our management and technical processes. Our aim is to leverage our knowledge and skills to work with our clients, offering professional and impartial advice. Due to technology's constant changing landscape, we make it our mission to bring our customers vendor agnostic solutions that are specifically designed to meet the needs of our clients. Toomey's strategic goal is to become a trusted advisor to our customers while assisting to create innovative solutions and to find new ways to solve customer-specific problems.

Toomey Technologies is seeking an Information Systems Security Engineer (ISSE) to support our customer in the NCR.   The qualified candidate will provide the following: 

• Familiar with the following products within the IA arena of expertise: McAfee and Norton Nessus, Host-Based Security System (HBSS)
• Experience in implementing, monitoring, and troubleshooting the following operating systems and devices: Microsoft XP Workstation, Microsoft NT Workstation / Server, Windows 95/98, Windows 2000 Workstation / Server, CISCO firewalls, switches, and routers.
• Ability to manage HBSS servers in the enterprise network.
• Able to troubleshoot, resolve and provide technical guidance for IT security incidents and provide forensic analysis.
• Configure and administer McAfee ePolicy Orchestrator (ePO) and McAfee host based IDS and IPS systems.
• Develop network based applications and databases.
• Maintain and update all Microsoft and Confidential security updates for the HBSS infrastructure to include all the HBSS servers, consoles, and remote servers throughout the network.
• Support network infrastructure, analyze gaps, and assist with future network design and architecture. Identify potential risks to systems, networks, and controls before they become incidents.
• Analyze and develop current and future security requirements based on mission need.
• Execute processes to analyze and meet system security requirements as part of a formal and accreditation process.
• Develop detailed engineering plans and designs for security features, controls, and systems within the enclave boundary.
• Provide security design and planning during the design, development, and maintenance of infrastructure environments
• Provide cyber engineering expertise to determine security requirements by evaluating best practices; researching security standards/tools; conducting system security and vulnerability analyses and risk assessments; identify integration issues
• Evaluate network and security technologies
• Working knowledge of current government mandated cybersecurity policies and procedures.
• Develop Information Assurance (IA)/Cybersecurity strategies for both new systems and enhancements/overhauls of existing systems.
• Influence the system requirements and design processes to incorporate the identification of cyber requirements early in these processes.
• Suggest architecture solutions to these systems that support both the functional requirements of the systems and the cyber/information assurance requirements.
• Identify poor cyber designs in systems and offering alternative designs.
• Support the development of Risk Management Framework (RMF) packages for the certification and accreditation of both new and existing networks.

• U.S. Citizen
• Active TS/SCI Clearance
• Minimum related bachelor’s degree and 8+ years of experience.
• Experienced in client administration tools:  Active Directory, File sharing, and Windows Firewall
• Adept in system configuration tools: E-policy Orchestrator and MS Client PC
• Familiarity with network engineering tools: OSI and Data communications
• Specialist in network environment tools: Win2K, VWin9X, HBSS
• Solid understanding of security forensics:
• Must have direct cyber systems engineering experience where you have been a lead/key player in defining the cyber requirements of a system.
• Experience with the analysis, systems design, implementation and testing of secure enterprise information systems.
• Expertise in all areas of network and computer hardware and software interconnection and interfacing, such as routers, multiplexers, firewalls, hubs, bridges, gateways, etc.
• In-depth familiarity with TCP/IP network protocols, application layer protocols (e.g., HTTP, SMTP, DNS, etc.), and general techniques for parsing network protocols.
• Experience in information security, risk management with a focus on security, performance, and reliability.
• Solid understanding of USG IA/Cybersecurity Directives, security protocols, authentication, and authorization.
• ·Experience with the development of Certification and Accreditation packages under RFM.

• Required:  DoDD 8570 IAT II or IAM II

• Desired:  CISSP, CASP, CISA, SSCP, CISM, CEH, MS Security

• Toomey Technologies is an Equal Opportunity Employer, making decisions without regard to race, color, religion, sex, national origin, age, veteran status, disability, or any other protected class.
• U.S. Citizenship is required for all positions