Listing Description
Tailored Solutions is seeking a Computer Network Defense (CND) Engineer who possesses subject matter expertise specifically in the areas of intrusion analysis & detection, security architecture design and security engineering. This candidate will be responsible for leading all security design and engineering efforts in support of defending the unclassified and classified networks of the command and control center for the Department of Defense (DoD).
We are looking for someone who is not only passionate about security, but passionate about defending our military's network infrastructure and will take pride in doing so. You will be a member of a team whose primary responsibility is to ensure the confidentiality, integrity and availability of the Pentagon's Enterprise Networks.
At a minimum, you must be able to obtain a Secret security clearance and meet DoD's 8570 baseline certification requirements for CSSP Infrastructure Support.
You must have an in-depth knowledge of principles and techniques applied in securing networks and operating systems with proficiency specifically in both Linux and Windows environments. Experience in both shell scripting and the use of regular expressions for network traffic pattern matching (IDS/IPS signature analysis & development) as well as event data pattern matching for pertinent information relating to network-based and host-based security events.
Must have extensive knowledge and understanding of network operations, installation and network monitoring procedures. Experience with various types of Intrusion Detection Systems (IDS) & Intrusion Prevention Systems (IPS) and knowledge of best practices regarding CND architecture and signature development. Knowledge of CERT procedures and NOSC operations.Day-to-day responsibilities will include the following:
Ensuring CND device uptime, availability and the integrity of the all CND systems (active/passive) and associated data
Signature tuning, analysis and development
IDS/IPS, WCF, SIEM performance baselining and measurement
Defining SIEM Content
Network security architecture design
All Operating System installations, hardening, administration, upgrades and patching
COTS and open-source IDS/IPS installations, administration, upgrades and patching
Documenting processes and procedures of all security engineering and infrastructure operations
Job Requirements:
Must be able to obtain a DoD clearance
An in-depth knowledge of TCP/IP as well as network analysis using various toolsets (tcpdump, wireshark, etc.)
Must have a minimum of 10 years Linux experience
Must have a minimum of 10 years network security experience with at least 5 of those years performing Intrusion Detection and signature analysis/development
Have an advanced understanding of regular expressions
Have an understanding of scripting languages (perl, python, etc.)
Have an in-depth knowledge of hacking techniques and attack methodologies as well as mitigations of those techniques and methodologies
Demonstrate an ability to work independently with minimal supervision
Demonstrate an ability to handle concurrent projects and assignments
Demonstrate a desire and willingness to continue to expand your area of knowledge in security best practices and technologies
Focus under pressure and respond appropriately to critical situations or incidents
Listing Details
- Salary: $150000 - $170000
- Citizenship: Us Citizen
- Incentives: Not Provided
- Education: No Requirements
- Travel: No Travel
- Telework: No Telecommute