Sr. Cyber Engineer

Dulles, VA, 1099, W2

Our Client is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. The Client is seeking a Cyber Security Data Integration Engineer/Developer to support the design, development, and deployment of advanced cybersecurity capabilities. Our Client is seeking a Security Engineer to play a key role in supporting a statewide program providing cyber assessment services and management that will protect 20+ affiliates from growing and evolving cyber threats. The engineering effort will focus on cloud security, SIEM and log management, and endpoint detection/response protecting customers from the ever growing and evolving cyber threats.

This position requires a thorough understanding of network architecture fundamentals, protocols, routing, firewalls, cloud, and DevOps. This position is part of a larger team; however, the candidate is expected to work well on his or her own under general supervision, be self-directed, able to multi-task, and prioritize work.

Responsibilities

Work with customers to ensure the organization’s compliance standards are met and maintained while also driving solid customer relationships to the next level

Requirements

Secret Clearance (able to obtain a TS/SCI)
Must be able to obtain DHS Suitability
Bachelor’s degree in Systems Engineering, Computer Science or related degree. Two years of related work experience may be substituted for each year of degree level education.
6+ years of directly relevant experience
4+ years of experience with administration of enterprise SIEM technologies (Splunk primarily)
Splunk Cloud experience: Architect, design, engineer, support, configure, administer content and maintain infrastructure for a highly available and disaster recovery configuration
Splunk experience: Administer Splunk and Splunk Application for Enterprise Security log or event management
Expertise with EDR toolsets – administration, analysis, and integrations preferably CrowdStrike
Familiarity with SOAR Products include Phantom and ThreatConnect
Experience with scripting (e.g., PowerShell, Bash/ksh/sh,Python)
Ability to assist team with Incident response and handling
Excellent demonstrated experience in communicating technical information to non-technical and technical audiences
Experience working directly with senior leadership and management

Bonus Points

Automation experience related to Ansible for performing administration using code and Git/Gitlab for workflow management
Familiarity with Windows and Linux integration, SQL database technologies, troubleshooting, deployment, patching, and administration
Experience with Logstash and ability to collect, parse, and transform logs
Experience with the standards compliance process (e.g., NIST) and writing network security documentation
Desired Certifications: Splunk IT Service Intelligence Certified Admin, Splunk Enterprise Security Certified Admin, Splunk Cloud Certified Admin, CCNA, CCNP)

Sr. Cyber Engineer

Responsibilities

Requirements

Bonus Points

Apply for this Job

© 2021 All Rights Reserved