Intrusion Protection System (IPS) Signature Manager
Quantico, VA
Please go to our website to apply: https://www.caskgov.com/careers/openings/.
POSITION: IPS Signature Manager
LOCATION: Quantico, VA
STATUS: Fully Funded
CLEARANCE: Active Secret Clearance Required
TRAVEL: Up to 25%
DESCRIPTION:
Cask is seeking an Intrusion Protection System (IPS), Signature Manager, to support the Marine Corps Cyberspace Operations Group (MCCOG). The applicant will be responsible for collecting and analyzing network and computing events presented via numerous sources to identify and document malicious or unauthorized activity on the Enterprise Network. Conduct initial, formal incident reporting and use appropriate skills and techniques in scoping, containing, and eradicating incidents based on the processes outlined in CJCSM 6510.01B, “Cyber Incident Handling Program,” dated 10 July 2012 or later.
As an IPS Signature Manager, you will:
Develop IPS signatures
Analyze application traffic
Manage and tune signatures for the appropriate level of detection
Write scripts, policies, and indicators used to identify malicious activity.
Analyze network and application-layer protocols, file format
Research security vulnerabilities and threats
Perform leading-edge exploitation techniques and threat research
Act as subject matter expert on cyber threats
Work with leadership to continuously evolve, inform and guide network defense strategy.
Required Skills / Preferred Qualifications:
Bachelor's degree or combined experience/education as a substitute for minimum education.
Three (3) years of demonstrated experience as an IPS Signature Manager or similar role.
Direct or equivalent experience in areas of vulnerability research and exploit development.
Knowledge of networking and internet protocols (e.g., TCP/IP, HTTP, SMTP, etc.).
Knowledge of network vulnerabilities and threats
Knowledge of the scripting languages such as Perl or Python
IDS/IPS/Snort signature writing, knowledge, and experience
Strong problem-solving, troubleshooting, and analysis skills
Ability to work independently
Excellent written & verbal communication skills
Information Assurance Technical (IAT) Level II certification
Required Security Clearance: Active Secret
About Cask
Cask is a woman-owned small business (WOSB) founded in 2004 by a group of professionals who saw the need to help clients use and unlock the value of technology in more efficient, cost-effective ways. Cask delivers business and technology advisory and consulting services to help our customers succeed.
Cask is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, among other things, or position as a qualified individual with a disability.
EEO/Employer/Vet/Disabled