Cyber Security Detections Engineer, Senior (Ts/Sci Ci Poly) Northern Va Position Available In [Unknown county], Mississippi
Tallo's Job Summary: The Cyber Security Detections Engineer, Senior position in Northern VA requires a Top Secret / SCI with CI Poly security clearance and 5+ years of cyber experience. Responsibilities include analyzing security events, creating detection rules, and performing network traffic analysis. Basic qualifications include a Bachelor's Degree or equivalent experience, while preferred qualifications include proficiency in Linux operating systems. The position offers various benefits, including remote work options and group medical insurance.
Job Description
Cyber Security Detections Engineer, Senior (TS/SCI CI Poly) – Northern VASpringfield, VAGuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk.
By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.
An active Top Secret / SCI with CI Poly security clearance is required for consideration for hire for this role.
Work is to be performed 100% onsite with our Government Customer. Responsibilities include, but are not limited to: Support Cyber Operations activities to publish up-to-date cybersecurity tool signatures (e.g.anti-virus and host based security systems)Provide focused analysis, including reverse malware engineering, against intrusion, anomalies, malware, viruses to identify critical information about source, intended target, affected systems or hosts, recommended mitigation measures and risk to missionFormulate custom Security Information and Event Management (SIEM) tool content and IDS/IPS signatures to address threatsPerform security event and incident correlation using information gathered from a variety of sources within the enterpriseAnalyze and assess damage to the data / infrastructure as a result of cyber incidentsPerform cyber incident trend analysis and reportingCharacterize and perform analysis of network traffic and system data to identify anomalous activity and potential threats to resourcesProvide detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activitiesCreate and deploy threat-based signatures for operational intrusion detection capabilitiesCreate and implement detection rules from intelligence reporting
Basic Qualifications:
Bachelor’s Degree or 4+ years of additional experience in lieu of degree5+ years of experience in a cyber roleExperience with modern Windows, UNIX, network operating systems, databases, and virtual computingDoD 8570 certification meeting IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) requiredCNDSP-A (GCIA, GCIH, or CEH) or
CNDSP-IR
(GCIH, CSIH, or CEH) certification required
Demonstrated Technical Experience:
Experience performing analysis of network traffic and correlating diverse security logs to perform recommendations for signature developmentKnowledge with implementation of counter-measures or mitigating controlsAbility to support incident response and forensic operations as required to include static/dynamic malware analysis and reverse engineeringExperience with enterprise security tools, including Security information and event management (SIEM), Threat intelligence platforms (TIPs), or Network monitoring toolsExperience in creating, modifying, tuning, IDS signatures/SIEM correlation searches and other detection signatures
Preferred Qualifications:
Proficient in Linux operating systemsAdvanced skills in Linux/Unix (command line user – proficient and used in last 6 months)Working knowledge of current COTS Cybersecurity technologies
Security Clearance Requirements:
TS/SCI w/
CI PolyPhysical Requirements:
Must be able to remain in a stationary position 50%Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printerThe person in this position frequently communicates with co-workers, management, and customers, which may involve delivering presentations.
Must be able to exchange accurate information in these situationsThis is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.
Some added perksâ¦. Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
Group Dental Insurance:
GuidePoint pays 100% of the premium for employees and 75% of family plans12 corporate holidays and a Flexible Time Off (FTO) programHealthy mobile phone and home internet allowanceEligibility for retirement plan after 2 months at open enrollment#J-18808-Ljbffr
