303-Network Security

Job Description Summary

Leads and conducts vulnerability assessments and penetration testing of target systems and environments for multiple and undefined interfaces. Performs assessment planning. Analyzes architecture and system functionality for a broad range of technologies. Defines develops integrates and maintains security technical controls in a variety of IT environments and systems. Assists with the efforts to define security product specifications tools and techniques for intrusion detection intrusion prevention data loss prevention Encryption of data Identity/Access management and authentication methods. Assists with and performs the analysis of security designs and assists with the creation of recommendations on design solutions. Assists with creating designs and recommendations that lower or eliminate security risk. Reviews or prepares and presents technical reports and briefings. Leads customer remediation reviews.

Job Description

Safeguards information system assets by identifying and solving potential and actual security problems.

Protects system by defining access control privileges control structures and resources.

Recognizes problems by identifying abnormalities reporting violations.

Implements security improvements by assessing current situation evaluating trends anticipating requirements.

Determines security violations and inefficiencies by conducting periodic audits.

Upgrades system by implementing and maintaining security controls.

Keeps users informed by preparing performance reports communicating system status.

Maintains quality service by following organization standards.

Contributes to team effort by accomplishing related results as needed.

Additional Job Description

Bachelors degree in Cyber Security Computer Science Information Systems or equivalent education or work experience

4 years of prior relevant experience

Advanced certifications such as SANS GIAC/GCIA/GCIH CISSP CEH or CASP and/or SIEM-specific training and
certification

Hold DoD-8570 IAT Level 2 baseline certification Security CE or equivalent within 6 months of start date
Advanced understanding of TCP/IP common networking ports and protocols traffic flow system administration OSI model
defense-in-depth and common security elements.

Hands-on experience analyzing high volumes of logs network data and other attack artifacts in support of incident
investigations

Experience with vulnerability scanning solutions

Experience with penetration testing desired

Familiarity with the DOD Information Assurance Vulnerability Management program.

Proficiency with any of the following: HIPS IDS/IPS Full Packet Capture Host-Based Forensics Network Forensics and RSA Security

Knowledge of architecture engineering and operations of at least one enterprise SIEM platform e.g. Nitro/McAfee Enterprise Security Manager ArcSight QRadar LogLogic Splunk

Experience developing and deploying signatures e.g. YARA Snort Suricata HIPS

Understanding of VMware technology and Unix and basic Unix commands

SECRET or higher clearance required within six months of start date

- Must be able to sit walk and stand during a large portion of the day.

Resume review 1-2 rounds of interviews likely via Phone/WebEx screen.

Successful completion of training is a contingency for this assignment - OJT or formal classroom training.

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.