Cyber Security Engineer, Principal

Company: McIntire Solutions
Location: Chantilly
Posted on: March 20, 2023

Job Description:

Title: -Cyber Security Engineer, PrincipalLocation: - Chantilly, VA (on-site)Clearance: -Current and active -TS/SCI with CI Polygraph -(REQUIRED) -McIntire Solutions is seeking a Cyber Security Engineer, Principal to support our Chantilly customer. -In this role, -you'll help protect our national security while working on innovative projects that offer opportunities for advancement. -Responsibilities:

• Maintains an infrastructure of over several hundred virtualized intrusion detection and network traffic analysis sensors located in multiple locations -
• Initiates and oversees the creation, deployment and tuning of thousands of Snort and custom IPS/IDS signatures -
• Remotely manages Red Hat Enterprise Linux (RHEL) servers via UNIX shell, VMWare ESXi, and HP Integrated Lights-Out (iLO) and HP Onboard Administrators (OA) -
• Makes recommendations to improve overall security posture to senior management -
• Creates and customizes ArcSight connectors to maintain the collection and redirection of syslog, HBSS, scanning and other appliance logs from enterprise networks to central manager -
• Troubleshoots physically cabled network connections, network routing protocols, media converters, hardware, and various vendor specific tools -
• Creates Linux BASH scripts to automate administrative tasks -
• Remotely manages Red Hat Enterprise Linux (RHEL) servers via UNIX shell, VMWare ESXi, and HP Integrated Lights-Out (iLO) and HP Onboard Administrators (OA) -
• Performs system administration of specialized CND applications and systems to include installation, configuration, maintenance, patching, and back-up/restore. -
• Manages and administers the updating of rules, signatures, and custom content for specialized CND applications and systems. -
• Administers CND test beds and tests and evaluates new CND applications or tools, rules/signatures, access controls, and configurations of CND platforms. -
• Identifies potential conflicts with implementation of any CND tools within the enterprise and develop recommendations to remediate these conflicts. -
• Creates, maintains, and refines network traffic flow diagrams for the enterprise network which reflect the current state of all security applications. -
• Provides subject matter expertise in creation, editing, and management of signatures, rules and filters for specialized network defense systems including but not limited to network and host-based IDS, IPS, firewall, web application firewall, proxy and SIEM systems.
• Contributes to the completion of milestones associated with specific projects. -
• Provides solutions to a variety of complex technical problems. -Basic Qualifications:
  • Minimum Education: B.S. or relevant experience in related field
  • Minimum/General Experience: 5 years of related experience with Cyber Tools
  • The candidate should possess a working knowledge of Tenable product suite and vulnerability scanning
  • A solid understanding of Windows and Linux systems administration, general operating system security practices, TCP/IP networking, and network security concepts is required
  • The candidate should possess general understanding of ServiceNow
  • Excellent organization, planning, and multi-tasking skills with attention to detail
  • Excellent communication skills
  • Must have or be willing to obtain IAT Level II certifications within 6 months of hire -Demonstrated technical experience:
    • General Knowledge in cybersecurity enterprise scanning and continuous monitoring, enterprise host/network security and intrusion detection
    • General Knowledge on creation of workflows
    • Knowledge with cybersecurity architectural principles such as defense in depth, resilience, and integrated security operations
    • Ability to convert functional cybersecurity requirements into system requirement -Preferred Qualifications:
      • Knowledge of and proficiency in the use of AWS technologies
      • Understanding of federal Cyber Security Guidance such as NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations
      • Ability to function in a fast-paced environment and effectively manage multiple tasks simultaneously; coordinating resources and ensuring scheduled goals are met
      • Ability to effectively interact with various levels of senior management is necessary
      • Ability to make decisions and resolve problems effectively - seek out information and data to evaluate, prioritize and formulate best solution or practice
      • Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities -McIntire Solutions, LLC is a veteran owned small business based in Northern Virginia and provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, McIntire Solutions, LLC complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities.Powered by JazzHR

Keywords: McIntire Solutions, Chantilly , Cyber Security Engineer, Principal, Engineering , Chantilly, Virginia