Security Tools Engineering Lead - TMC TECHNOLOGIES

TMC Technologies is in search of a Security Tools Engineering Lead to join our team within the Enterprise Security Services (ESS) division, focusing on the NOAA Cyber Security Center contract.  Due to federal contract requirements, the candidate must be a US citizen and possess a minimum of an active Secret security clearance with the ability to obtain a Top Secret clearance in order to start. 

The Security Tools Engineering Lead will have the following responsibilities: 

- Perform development on cybersecurity system components as assigned, to include Security Orchestration, Automation, and Response (SOAR) and Security Information and Event Management (SIEM) tools. 
- Develop integrations between cybersecurity stack components as assigned. 
- Draft and maintain system design documentation for all assigned system components according to system design life cycle (SDLC) best practices. 
- Analyze customer requirements and provide best approach, feasibility of implementation, level of effort feedback as necessary. 
- Serve as liaison for professional services engagements, where available and as needed, to define and translate customer requirements.

- US Citizen and Top Secret Clearance required
- Requires a technical BS degree and 4-8 years of prior relevant experience or master's with 2-6 years of prior relevant experience. 
- Software/product development skills in multiple languages (Python, Javascript (React Framework), Powershell, etc.) 
- Have strong communication skills 
- Ability to work autonomously with minimal oversight 
- Knowledge of development on classified systems and the required security guidelines associated with secure facilities 
- Experience with Information Assurance (IA) hardening and compliance (STIG, CIS, DSS compliance, documentation, etc.) 
- Experience with load balancing, reverse proxy setups, and ensuring high availability and security for web applications using tools such as nginx. 
- Experience in designing, deploying, and managing containerized applications using Docker or Podman. Familiarity with container orchestration tools, CI/CD integration, and maintaining container performance and health. 

Preferred Qualifications:
- Distributed event streaming platforms (Apache Kafka, Cloudera, Informatica, etc.) 
- Working knowledge of SIEM platforms (ArcSight, Elasticsearch, Splunk, etc.) 
- Experience supporting Infrastructure-as-Code (IaC) transformations. 
- Provided direct support to a Security Operation Center environment 
- Familiarity with task automation 
- Must be able to work collaboratively with other system administrators, system engineers, and network engineers in a team environment 

*Will be required to attain basic cybersecurity skills certification within 90 days of hire (CySA+, etc)