DO NOT APPLY UNLESS YOU HAVE A CURRENT SECRET OR TS INVESTIGATION THAT IS ACTIVE.

 

Secured Cyber is looking to fill IMMEDIATELY several Engineer, PenTest & SOC analyst positions (including evening and overnight) to perform duties related to Tools Administration, Penetration Testing and Incident Response at the Drug Enforcement Administration Security Operation Center in Sterling, VA. These are direct-hire positions with our company and do require a current SECRET clearance, eligible for upgrade to TS.

 

MUST HAVE RELATED EXPERIENCE TO APPLY


Please understand that these positions will allow for significant growth with the ability to gain training and experience in several Cyber Security tools.

 

TWO POSITIONS:


Senior IDS Engineer (Wed-Sat) 0600-1600 (4 x 10hrs) mixture of onsite and remote work.

Intermediate IDS Engineer / Incident Response (Sat-Tue) 2200-0800 (4 x 10hrs) mixture of onsite and remote work.


 

SENIOR Must have:

·         SECRET or TS clearance

·         10+ years Information Technology Experience

·         5+ years in information security operations and/or incident response

·         2+ years administration of Cisco Firepower Management Center and IDS/IPS devices

·         BS Degree in Information Technology discipline



INTERMEDIATE Must have:

·         SECRET or TS clearance

·         6+ years Information Technology Experience

·         3+ years in information security operations and/or incident response

·         1+ years administration of Cisco Firepower Management Center and IDS/IPS devices

·         BS Degree in Information Technology discipline


 

Responsibilities:

·         Operate, maintain, and deploy IDS and IPS devices.  (INTERMEDIATE would also assist in threat hunting / Incident Response)

·         Maintain intrusion ruleset, optimizing detection, general device configuration and maintenance, troubleshoot the devices when needed,

·         Provide operational requirements and recommendations to the Security Architects for service enhancements and system improvements.

·         Effectively work within a Security team, and support and collaborate with other teams

·         Conduct Intrusion event analysis and support security operation center (SOC) incident response, threat detection teams.

·         Develop documentations, e.g. standard operating procedures (SOP), and support audit events

·         Develop reports on systems status and performance.

I 

Desired Skills:

·         Experience PenTesting (Kali Linux, NMAP, etc)

·         Experience with Splunk and other SIEM tools.

·         Experience writing Snort rules

·         Proficiency with packet analysis/Wireshark

·         Networking – routing and switching, TCP/IP stack, IP subnets, VPN

·         Experience with threat analysis, triage, and mitigation

·         Experience with Linux

·         Knowledge of networking and network protocols

·         Ability to write clear procedural and technical documentation

·         Knowledge of external authentication and user management

·         Experience troubleshooting network problems at layers 1, 2, and 3

 

EDUCATION:

·         Must possess a minimum of a Bachelors Degree in Computer Science, Information Technology or Information Security (Masters Degree preferred).

This job is currently not open for applications. Would you like to see our other open positions?