Cyber Intrusion Detection & Prevention Systems Administrator - TS/SCI w/Poly
Company: General Dynamics - IT
Posted on: November 11, 2018
Job Description This role utilizes expertise in Network and Host Security Devices to enable visibility, detection, alerting, and reporting for cyber security threats. Cyber security threat types can include external threats, insider threats, and security compliance use cases. Logs sources include but not limited to Intrusion Detection Systems (IDS) or Intrusion Prevention Systems (IPS), malware analysis systems, firewall logs, custom object scanners, endpoint security systems, web logs, and server logsResponsibilities:Configuration of Information Security monitoring systems which provide logging, monitoring, and actionable alertingAssist with the configuration, maintenance, and monitoring of the Security Incident and Event Monitoring (SIEM) systemProvide assistance to the Information Security Architects regarding the design and implementation of security solutions to ensure appropriate configurations, logging, and correlations for network security controlsAbility to design, resource, conduct, status, and complete projects independently, with minimal supervisionPerform data interpretation, classification and enrichmentBuild data modelsManage knowledge objects (e.g. fields, extractions, tags, event types, lookups, workflow actions, aliases, macros, etc.)Configure summary-based reports and data model accelerationRule and content development for alerting, metrics, and/or reportingCollaborating with data owners and customers on understanding data sources and use cases, and successfully translating requirements to actionable contentWork with VMWare vSphere or other virtual technologiesParticipate in on-call and perform appropriate escalation of problems and issuesPerforms other duties & responsibilities as required or assigned by leadership Education Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience. Qualifications 8-10 years of related experience in data security administration.--Advanced skills in below work areas/tasks: Linux/Unix (command line user - proficient and used in last 6 months) Knowledge of Sensors to include signature tuning and deploymentFamiliar with developing and operating within a virtual environmentTroubleshooting/Tuning sensors and network security systemsNetworking knowledge (configuring/reviewing routers/firewalls skills) Experience Scripting: Perl, Python, etcDevelops; refines; and performs advanced analysis techniques to uncover new or potential incidents. Analysis techniques may be refined into training and process improvements that are promulgated back to the CND Watch for sustained operations. Performs in-depth analysis techniques to uncover new or potential incidents. Analysis techniques may be refined into training and process improvements that are promulgated back to the CND Watch for sustained operations. Required Skills:--The successful candidate must have excellent verbal and written communication skills and strong work ethic. He/she must have several years' experience with and be able to analyze Intrusion Detection Systems (IDS) to identify security issues for remediationEvaluate firewall change requests and assess organizational riskCND Incident Response Analyst and perform periodic and on-demand system audits and vulnerability assessments; including user accounts; application access; file system and external Web integrity scans to determine compliance. Position requires candidate to work an on-call rotation schedule. Must possess appropriate current DoD Information Assurance (IA) Certification to be considered for employment; both IAT 2 and CNDSP Analyst. An appropriate IAT 2 certification would be one of the following: GSEC; Security + CE; SSCP; CCNA-Security; CISA; GCIH; GCED; CISSP; or CASP CE. An appropriate CNDSP Analyst certification would be one of the following: GCIA; CEH; or GCIH.--In addition must attain the required DOD 8570 Computing Environment (CE) certification within six (6) months of hire date. Due to the sensitive nature of the work performed for this government customer, candidates must be willing to submit to and pass a polygraph--As part of your role/function on the program, you will be granted privileged user access. Privileged Users are subject to greater scrutiny as a direct result of the significant responsibilities placed upon them. Please be aware that because of these critical duties, you will be subject to additional IT system monitoring, and supervisory evaluation to ensure continuous adherence to Privileged User processes and procedures. Privileged Users are subject to a zero tolerance policy for security violations.--Because of the sensitive nature of the work being done for this government client, all candidates must hold a TS/SCI with Polygraph.----Benefits of this Position:Opportunity for Fast Growth within the programProfessional Development Assistance ----- Covering the Cost of Obtaining Professional & Technical Certifications (depending on program)Educational Reimbursement ----- toward degree programs and individual coursework401K Match --- with 100% vesting on day oneHealth, Dental and Vision Coverage to keep you healthy, starting your first dayWe know work-life balance is important, GDIT offers Paid Time Off, Plus 10 Paid HolidaysParking and transit commuter benefitsWhy Work at General Dynamics IT?Work with top talent and some of the brightest minds in your field--Support missions that make a difference to our NationBecome part of an organization that that is committed to the highest ethical standards in all that we do--Thrive in the stability of a large organization, with the ability to move onto new opportunities, supporting different missions, building your career within GDITWant to move, or find a job close to home? We have positions in several locations in the United States and the worldEnjoy a culture that supports work-life balanceGeneral Dynamics is a--Fortune Blue Ribbon Company--and--Clearance Jobs Top 10 Government Contractor.--#ISDCJ#DPOST#ZRPOST--As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors. With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.--GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.
Keywords: General Dynamics - IT, Chantilly , Cyber Intrusion Detection & Prevention Systems Administrator - TS/SCI w/Poly , IT / Software / Systems , Chantilly, Virginia
Didn't find what you're looking for? Search again!