Consulting Linux Security Engineer Professional Multiple Cities

Responsibilities

• Perform security hardening and rule creation in Linux environment. This includes reviewing new and re‑evaluating existing configuration settings and rules to verify USCIS’ security posture and eliminate unnecessary risk.
• Review existing configuration settings to identify potential security vulnerabilities and propose settings or architectural changes to address these vulnerabilities.
• Audit firmware versions and configuration settings for all Linux endpoints to eliminate vulnerabilities and ensure network devices are deployed in accordance with vendor recommendations, industry best‑practices, DoD Security Technical and Implementation Guides (STIG), and DHS configuration guidance.
• Analyze security incidents and provide recommendations for improvement.
• Deliver consulting services to help clients achieve a superior security posture and effectively manage security incidents.
• Create remediation recommendations and roadmaps to address identified security vulnerabilities and incidents.
• Work with clients to identify and define security goals and implement appropriate solutions.

Required Education

Bachelor’s Degree

Desired Education

Bachelor’s Degree

Required Technical and Professional Expertise

• Expertise in installing, configuring, operating, and patching Linux servers and managing Linux‑based applications.
• Advanced knowledge of configuration management tools (e.g., Ansible, Chef, Puppet, SaltStack) and Linux/Windows administration in medium–large enterprises.
• Strong shell scripting experience (ssh, scp, rsync, sudo) with hands‑on work in containerization and orchestration tools (Docker, Podman, Kubernetes, ECS/EKS, Fargate, Singularity).
• Advanced understanding of clustering, load balancing, replication services, and automation using Python with frameworks such as Flask, Django, or FastAPI.
• Familiarity with container security tools (Twistlock, Falco, Clair) and possession of an active RHCE or equivalent certification/experience.

Preferred Technical and Professional Experience

• Able to perform security hardening, reviewing new and re‑evaluating existing configuration settings and rules to verify organization’s security posture and eliminate unnecessary risk in all environments.
• Experience supporting federal agencies.
• Ability to demonstrate and explain technical concepts to both technical and non‑technical audiences.
• Able to clearly communicate with both customers and teammates and provide recommendations for improvements to existing software applications.
• Understanding of New Relic, Nagios or similar monitoring.

Security Clearance

Ability to obtain and maintain Public Trust clearance

Equal‑Opportunity Employment Statement

IBM is proud to be an equal‑opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, neurodivergence, age, or other characteristics protected by the applicable law. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.