Network Security Engineer SME with Security Clearance

Washington, Washington DC

Base One Technologies
Job Expired - Click here to search for similar jobs
Our DC Metro based client is looking for a Network Security Subject Matter Expert/Lead. This position requires an active Secret. If you are qualified for this position. Please email me your updated resume in word format to Work location:
St. Elizabeths Campus, Washington, DC We are looking for a Security Subject Matter Expert/Lead that will support the incident detection and response. This role leads and further develops a team of analysts responsible for 24x7x365 monitoring of threats, as well as the tools and processes that support the core mission of defending the organization against cyber-threats. This position requires ability to work independently as well as within groups. Sensitivity to accuracy, timeliness, and professionalism in all areas of support activity is imperative. POSITION REQUIREMENTS

• Lead and manage Security Operations Center

• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.

• Experience in threat management

• Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix

• Knowledge of applications, databases, middleware to address security threats against the same.

• Proficient in preparation of reports, dashboards and documentation

• Excellent communication and leadership skillsGood Analytical skills, Problem solving and Interpersonal skillsWorking knowledge and experience with MS office with proficiency in Excel

• ArcSight and multi-vendor IDS/IPS experience is a MUST

• Primarily responsible for security event monitoring, management and response

• Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring

• Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives

• Revise and develop processes to strengthen the current Security Operations Framework, Review policies and highlight the challenges in managing SLAs

• Responsible for team & vendor management, overall use of resources and initiation of corrective action where required for Security Operations Center

• Management, administration & maintenance of security devices under the purview of ITRC which consists of state-of-the art technologies

• Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring

• Responsible for integration of standard and non-standard logs in SIEM

• Creation of reports, dashboards, metrics for SOC operations and presentation to Sr. Mgmt.

• Co-ordination with stakeholders, build and maintain positive working relationships with themPERL or other scripting and automation skills
• In-depth understanding of ports, protocols, and network traffic analysis as it relates to network security.
• Experience using troubleshooting technique including but not limited to; network sniffers, syslog, and the Firewall capture command.

• Understanding of information security principles as it relates to systems and network security
• Create formal documentation for systems administration, operations, and maintenance

• Understanding of formal processes for change and release management
• Understanding of federal contracting environment with the ability to lead and direct the security operations center staff
• Ability to create repeatable processes, escalation instructions and work scripts as needed for shift agents.

• Ability to utilize Campus tool sets such as ServiceNow ITSM, P-NET, EMS, and secure protocols in daily operations and maintenance environment
QUALIFICATIONS
Bachelor's degree
8-10 years of IT experience with minimum 6 years of experience as a firewall or network security engineer
Certifications:
At least on of the following certification is required (two or more are preferred):
o ACSA, CCNP, CCSP, MSCE, CISSP GCFW or other GIAC certifications
ITIL V3 Foundation. Applicant Must Hold a Current Secret Clearance in order to be considered for this position. Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information.
This program requires 24X7X365 operational support. Normal business hours are from 6:00 AM - 6 PM and you may be asked to support early morning or late afternoon shifts. This position requires after hours on call support availability as a tier 3 SME.
Date Posted: 14 May 2024
Job Expired - Click here to search for similar jobs