Cyber Security Engineer SME

Herndon, VA

Job ID: 124906 Industry: Government

CYBER SECURITY SME

 Candidate MUST HAVE a TS/SCI with Polygraph in order to be considered.

 Program and Project Description:

Our client is one year into this 5 year contract.  The contract provides Computer Network Defense and Analysis (CND) to the customer’ s network.  Because the customer allows their user community to access their personal email accounts while on site, there is a lot of spam hitting their network regularly.  This contract is responsible for the 24 x 7 x 365 protection of the customer’ s network from maliciously intended viruses and attacks on their network.  The contract is broken down into two teams, the IDS Analyst team that sits at HQ and the Engineering team that sits in Herndon.  As part of this they are looking for a Senior SIEM (Security Information and Event Management) Engineer.

 Day-to-Day Responsibilities:

Candidates will bring a big picture view from and Enterprise perspective in order to get the most out of their systems and be required to support the deployment, configuration, and administration of the customer Security Information and Event Management (SIEM) platform.  The position requires the candidate be a self-starter and work well with other security teams to support cyber security operations.   A wide range of knowledge and skills are needed such as ArcSight ESM, system administration, network engineering, and cyber security architecture design.   More specifically, they will use their SEIM experience to dig in and maintain their ArcSight suite and ensure it is running properly.  They should understand the connectors, proper set up, as well as be able to envision the future and have forward thinking conversations with the customer of what the SEIM tools can do for them.

Required:
  • CTO Experience
  • Technical BS & 10 + years of experience in Engineering
  • Candidates should have experience/knowledge with the following tools or technologies:
    • ArcSight ESM or McAfee NitroSecurity IPS (another SEIM product similar to ArcSight)
    • Network Intrusion Detection/Prevention Systems
    • Host Intrusion Detection/Prevention Systems
    • Network Packet Capture/Forensics Systems

Desired:
  • ArcSight Certified Integrator/Administrator (ACIA) certification.

Job Type: Full Time  

Not ready to apply?

Send an email reminder to:

Related Jobs: