Perform correlation of incidents and threats: Correlate detected activity with known patch status to determine threat to network, provide recommendations to engineers and O&M to focus on protection and patching strategy.
Support coordination and information collection related to incidents, investigations, Task Orders, and other communications within DOD and DHS; monitor and analyze Intrusion Detection Systems (IDS) to identify security issues for remediation.
Provide support for and administer the SAP P2P network which includes, but is not limited to server operating systems, desktop operating systems (thin client), network backbone infrastructure (e.g. TACLANE, router, and switches), application servers (e.g. database, file share, e-mail, antivirus, patching, and backup), Public Key Infrastructure (PKI), and network appliances (e.g. NetApp, HSM Encryption).
Will work with other Cybersecurity Engineering team members and will be required to interact with end users to gather requirements, perform troubleshooting, and provide assistance with the creation of Splunk search queries and dashboards.