Cyber Security Engineer

JBG SMITH owns, operates, invests in, and develops a dynamic portfolio of high-growth mixed-use properties in and around Washington, DC. Our creativity and scale enable us to be more than owners—we are place makers who shape inspiring and engaging places, which we believe create value and have a positive impact in every community we touch. 

JBG SMITH has been named multiple times as one of the Washington Post’s Top Workplaces in the region and we pride ourselves in both our outstanding work environments and opportunities for career growth and advancement. Our corporate headquarters in Bethesda, MD. was designed to embrace new, modern ways of working in an office – with a variety of indoor and outdoor workspaces made for both privacy or collaboration and easy access to public transportation and all that Bethesda’s vibrant downtown has to offer. 

Our growing Technology team is looking for an ambitious Cyber Security Engineer to help build and secure our overall cloud and cyber security posture. This position will report to the VP of Cloud Infrastructure and Cyber Security and will help transformational infrastructure and IT operational initiatives in addition to playing a key role in maturing our cyber security program.

You will be part of a team of internal and external engineering professionals focused on delivering reliable, secure, scalable, and efficient infrastructure and cyber security services utilizing a cloud first approach.

Responsibilities will include:

• Build, implement, and drive the adoption of cloud security solutions (Azure & AWS)
• Identity and access control for both on-prem and Azure including technologies such as Azure Active Directory / Active Directory / Certification Authority / MFA / PIM / Security Group Management / Group Policy / Kerberos
• Demonstrating a solid understanding of current cloud and datacenter architectures, platforms and solutions and how they support business deliverables, along with the ability to diagnose, triage, and lead teams during critical incidents and outages to ensure rapid restoration of service.
• Support all products within functional area, from build to implementation and ongoing performance according to business and global infrastructure and security needs.
• Experience in managing email security tools at an enterprise level
• Monitor and analyze security events and alerts from multiple sources as well as respond to potential threats and vulnerabilities.
• Ability to script and automate using tools like Python, PowerShell, Bash, etc.
• Promote and drive security awareness (i.e. Phishing simulation) and best practices across the organization.
• Investigate intrusion attempts, perform in-depth analysis of exploits, test defensive controls and security responses.
• Partner with internal IT teams and various departments to deliver infrastructure and network solutions that allow our business to grow and continually enhance our tenant experience.
• Build process and adhere to strict compliance rules and regulations for network operations.
• Continually assess and evaluate our infrastructure to provide continual improvement for the business’s needs, identify cost savings and move more to the cloud.

• Bachelor’s degree in Computer Science, Information Technology or a related discipline, or equivalent experience.
• Experience with Microsoft 0365 suite
• Must be a self-starter with the ability to multi-task, effectively prioritize, and deliver in a fast-paced, dynamic environment.
• Strong experience managing enterprise class infrastructure in a multi/hybrid cloud environment that includes Azure (inclusive of Office365), AWS, and on-premise/colocation data centers. History of prior migration work and supporting transitional environments a plus.
• MS Windows implementation, operations, and security for workstations and servers
• Detailed understanding of, Cloud Service Operations & Controls, network monitoring and management tools, NIST Framework, complex networks and dynamic routing protocols (BGP, EIGRP), SD-WAN, VoIP/Cloud Voice Solutions, SaaS, PaaS, IaaS, SCCM and device/system patching, Building Automation Systems, SIEM, Security tools for network and endpoint security, Firewalls (Cisco ASA, Palo Alto, Meraki), Citrix and WVD/Workspaces
• History of delivering the underlying compute and networking infrastructure to support business initiatives
• Perform initial triage on security events.
• Support transient network issues and make network change decisions to keep the business operational 24/7 while communicating issues in real-time.
• Tracking and reporting on key performance metrics for network and cloud systems availability.
• Excellent oral and written communication skills and the ability to communicate effectively with non-technical people. Must possess influencing ability and can win the confidence of individuals at all levels, both inside and outside the organization.
• Must have ability to prioritize, communicate and organize multiple projects of varying complexity, frequently under deadline pressure.
• Ability to work well independently and in a team environment.
• Must be adaptable to change and quickly learn new software and adapt to new technologies.

OR

• Any equivalent combination of education, training and/or experience that fulfills the requirements of the position will be considered.

The salary range for this position is $135,000 to $165,000 annually. Please note that the salary range information provided is a general guideline. It is uncommon for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on a variety of factors. JBG SMITH considers factors such as (but not limited to) scope and responsibilities of the position, candidate’s work experience, candidate’s work location, education/training, key skills, internal peer equity, external market data, as well as, market and business considerations when making compensation decisions.

JBG is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity Employer, making decisions without discrimination on the basis of race, color, religion, sex, national origin, age, veteran status, disability, sexual orientation, genetic information or any other protected class, in accordance with applicable law.