Job Information
Tetrad Digital Integrity LLC Information Systems Security Engineer in Manassas, Virginia
We are seeking an Information Systems Security Engineer (ISSE) who will play an integral part of the network security program in the ongoing design, testing, implementation and maintenance of security systems. This role provides the technical support in the development, analysis, engineering, design, implementation, and effective application of information security tools, policies, and procedures.
The candidate will apply fundamental concepts, processes, practices, and procedures on technical assignments; monitor availability of system updates, and assists with their installation on security tools; possess working knowledge in areas such as computer viruses, intrusion detection systems, encryption systems, firewalls, etc.
This position will be located in Manassas, VA with occasional travel to the main office in Washington, DC as well as the opportunity to work remotely.
Responsibilities:
Development, deployment, or administration of Splunk.
Onboard Splunk ES critical data sources - ingestion of critical data sources/data logs from the enterprise into the Security Information Event Management (SIEM) tool to meet the Splunk Enterprise Security (ES) implementation.
Normalize Log Data to Common Information Model (CIM) as required by Splunk ES to meet the provided security use cases (Rules/Alerts).
Create viewable Splunk dashboards to provide visibility into ingested log data.
Create alerts that trigger/activate on configured setting to deploy or sends a note, email, or attachments to a particulate destination email or groups.
Create security rules (alerts) that trigger on anomalous activities or threat detections.
Splunk Support - Assisting Customers with any issues when ingestion of logs that are not working properly or communication issues with Splunk.
Resolve Splunk infrastructure or system issues.
Development, deployment, or administration of VMware, RSA NetWitness, Cisco StealthWatch or similar tools.
Check virtual server availability, functionality, integrity, and efficiency.
Manage virtual server resources including performance, capacity, availability, serviceability, and recoverability.
Monitor and maintain virtual server configuration.
Diagnose failed servers or connectivity problems.
Qualifications:
Bachelor’s degree in related field.
Five (5) to seven (7) years of hands-on experience with security monitoring tools such as IDS/IPS, FWs and NACs and protocols such as NetFlow (Snort, Bro, Palo Alto, Checkpoint, Cisco ISE, FireEye, Gigamon).
Experience working with cloud services such as AWS, Azure and O365 and cloud access security brokers.
Experience in the use of network monitoring tools with a strong understanding of network protocols.
Ability to perform security analysis, development and implementation of security policies, standards, and guidelines.
Ability to quickly explore, examine and understand complex security problems and how it affects a customer’s business.
Experience with both the Linux and Windows operating systems.
TDI does business with the federal government, which restricts employment to individuals who are either US citizens or lawful permanent residents of the United States.
"TDI is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, genetics, gender identity or expression, national origin, protected veteran status or disability status, or any other characteristic protected by federal, state or local laws."
Powered by JazzHR