[Hiring] Security Tools Engineer @cFocus Softwareorporated

Role Description

cFocus Software seeks a Security Tools Engineer to join our program supporting Housing and Urban Development (HUD). This position is remote and requires a Public Trust clearance.

• Engineer, deploy, configure, and maintain security tools across cloud (AWS GovCloud), on-premise, and hybrid environments.
• Manage and optimize SOC toolsets including SIEM, SOAR, EDR, IDS/IPS, vulnerability management, DLP, and cloud security platforms.
• Perform installation, configuration, patching, upgrades, and lifecycle management of security tools.
• Integrate multiple security tools and platforms to enable centralized monitoring, automation, and orchestration.
• Develop and maintain automation for threat detection, response, and remediation processes.
• Support log aggregation, data collection, and tool interoperability across enterprise systems.
• Evaluate, test, and implement new security technologies and tools to improve SOC capabilities.
• Conduct system reviews and fit/gap analyses to ensure tools align with OEM best practices and federal requirements.
• Maintain tool performance, availability, and uptime (targeting 99.95% SOC availability).
• Ensure security tools are compliant with NIST, FISMA, OMB, CISA, and federal cybersecurity mandates.
• Support continuous monitoring, vulnerability management, and incident response activities.
• Develop dashboards, metrics, and reporting capabilities for security posture visibility.
• Collaborate with SOC analysts, engineers, and leadership to enhance detection and response capabilities.
• Troubleshoot and resolve issues related to tool performance, integration, and data flow.
• Maintain documentation for tools, configurations, integrations, and processes.

Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
• 6+ years of experience in cybersecurity engineering, security tools engineering, or SOC engineering roles.
• Hands-on experience with enterprise security tools (e.g., Splunk, CrowdStrike, Palo Alto, Tenable, ServiceNow, AWS security services).
• Experience integrating security tools in cloud and hybrid environments.

Company Description