For fifteen years, INDUS has been a trusted leader of full lifecycle Information Technology solutions and services to the Federal Government. With operations across the nation, and capacity for immediate services in the most secure government locations, INDUS has achieved outstanding results for Federal, Civilian, Homeland Security, Defense, and Intelligence agencies. Recognized as the 8th largest software developer and 15th largest IT employer in the Washington, DC area - INDUS is excited to announce an opportunity for a Security Engineer in Washington, DC. The Security Engineer will work with an existing Security Team to support vulnerability scanning and reporting, product reviews, validating compliance with security baselines, incident response, and operations and maintenance of security products. Responsibilities: • Provide technical security support for enterprise level IT security program • Use existing vulnerability scanning tools to configure and conduct vulnerability scans, prepare scan summary reports, document recommendations, and communicate with System Administrators and managers. Track scan completion and remediation status. • Evaluate software products for security issues by conducting research on the products, vulnerabilities, and installation requirements. Complete reports showing findings and recommendations. • Compare Windows, Linux, Unix server configurations against baseline compliance checklist and document existing configuration and deviations. • Compare Oracle and SQL database configurations against baseline compliance checklist and document existing configuration and deviations. • Research and document security alerts and disseminate to system administrators and management. • Research, respond to and document closure of security incidents based on logs from anti-virus tools, intrusion detection systems, log monitoring systems, and firewalls. Use knowledge of networking protocols to identify malicious traffic. • Support configuration, installation, and operations of security products. Create documentation for testing and implementation planning, configuration, and operational activities. Qualifications: REQUIRED: • Minimum four years experience in a security oversight role providing technical security support for enterprise level IT security program. • Minimum two years experience using vulnerability scanning tools, including configuring scans, modifying scanner policies, preparing scan reports, and communicating reports and recommendations with System Administrators and managers. • Minimum one year of experience evaluating software products for security issues and completing reports documenting findings and recommendations. • Minimum two years experience comparing server and database configurations against security best practices and documenting results for System Administrators and/or management. • Strong understanding of networking protocols. • Minimum two years experience identifying and responding to security incidents by reviewing logs from anti-virus tools, intrusion detection systems, log monitoring systems, and firewalls and using knowledge of networking protocols to identify malicious traffic. • Minimum two years experience tracking and preparing reports for security incident response activities. • Minimum one year experience implementing enterprise level security product, including developing planning, configuration, testing, and implementation documents. • Minimum two years experience completing policy and procedure documents. • Good verbal and written communication skills. DESIRED: • CISSP and/or SANS certification. • Experience implementing secure wireless network. • Experience documenting and or testing disaster recovery and/or contingency plans.