HUD - Security Tools Engineer
United States of America
Full Time
4 weeks ago
No H1B
Key skills
AWSSplunkServiceNowLeadershipCloud Security
About this role
cFocus Software seeks a Security Tools Engineer to join our program supporting Housing and Urban Development (HUD). The role involves engineering, deploying, configuring, and maintaining security tools across various environments, as well as managing SOC toolsets and supporting incident response activities.
Responsibilities:
- Engineer, deploy, configure, and maintain security tools across cloud (AWS GovCloud), on-premise, and hybrid environments
- Manage and optimize SOC toolsets including SIEM, SOAR, EDR, IDS/IPS, vulnerability management, DLP, and cloud security platforms
- Perform installation, configuration, patching, upgrades, and lifecycle management of security tools
- Integrate multiple security tools and platforms to enable centralized monitoring, automation, and orchestration
- Develop and maintain automation for threat detection, response, and remediation processes
- Support log aggregation, data collection, and tool interoperability across enterprise systems
- Evaluate, test, and implement new security technologies and tools to improve SOC capabilities
- Conduct system reviews and fit/gap analyses to ensure tools align with OEM best practices and federal requirements
- Maintain tool performance, availability, and uptime (targeting 99.95% SOC availability)
- Ensure security tools are compliant with NIST, FISMA, OMB, CISA, and federal cybersecurity mandates
- Support continuous monitoring, vulnerability management, and incident response activities
- Develop dashboards, metrics, and reporting capabilities for security posture visibility
- Collaborate with SOC analysts, engineers, and leadership to enhance detection and response capabilities
- Troubleshoot and resolve issues related to tool performance, integration, and data flow
- Maintain documentation for tools, configurations, integrations, and processes
Requirements:
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field
- 6+ years of experience in cybersecurity engineering, security tools engineering, or SOC engineering roles
- Hands-on experience with enterprise security tools (e.g., Splunk, CrowdStrike, Palo Alto, Tenable, ServiceNow, AWS security services)
- Experience integrating security tools in cloud and hybrid environments
- This position requires a Public Trust clearance