IRT Engineer

Xator Corp   •  

Washington, DC

Industry: Aerospace & Defense

  •  

Not Specified years

Posted 29 days ago

We are looking for a strong multi-tasker with a keen eye for detail, a successful Information Security Engineer can think one step ahead of cyber threats. They are well organized and thrive in fast-paced, high-stress scenarios. In addition to these general skills and personality traits, employers are seeking Information Security Engineer candidates with the following skills.

DUTIES AND RESPONSIBILITIES (ESSENTIAL FUNCTIONS)

  • Provide support to manage / maintain FireEye ecosystem, including providing patching and administering configs within a FireEye AX, CM, EX, FX, HX, NX environment. This includes:
  • Testing FireEye HX Agent configs prior to upgrades
  • Testing FireEye Appliances and validating deployed signatures – YARA/FireEye
  • Periodically check and review FireEye appliance / agent upgrades
  • Provide support of RHEL Patching Via Satelite – Validate Config and Patch Status

Provide support to manage / maintain an incident response lab environment, that includes:

  • VmWare ESXi VM’s
  • Splunk
  • Cuckoo Sanbox (deprecated by Hybrid)
  • Security Onion/Bro
  • VolUtility
  • Storage - NetApp
  • Python or other scripting language experience
  • Developing and deploying Suricata / Snort signatures.
  • Developing and deploying Bro Scripts.

JOB REQUIREMENTS AND QUALIFICATIONS

  • BS/BA degree from accredited university


Experience

  • Five or more years of work experience directly aligned to the duties, responsibilities and the essential functions of this role
  • 2+ years of Splunk Infrastructure
  • Prior leadership experience with direct reports in a cyber environment
  • Experience and effective participation in hunt, computer network defense, real-time analysis and incident response activities, to include ability to reconstruct events from network, endpoint, and log data
  • Experience and understanding of host-based/endpoint protection systems
  • Cyber intelligence, disk forensics and memory forensics experience
  • Server administration experience
  • Enterprise forensic tool(s) experience
  • Federal contract experience
  • Training Requirements (optional)
  • One or more certifications in information security (such as GCIA, GCIH, CEH, CISSP, SSCP, Sec+, etc)


Specialized Knowledge/Skills Requirements

  • Core skills: At a minimum, we are looking for an Information Security Engineer with these core skills. If you want to work as an Information Security Engineer with us, you must possess the following.
  • Direct experience with anti-virus software, intrusion detection, firewalls and content filtering
  • Knowledge of risk assessment tools, technologies and methods
  • Experience designing secure networks, systems and application architectures
  • Knowledge of disaster recovery, computer forensic tools, technologies and methods
  • Experience planning, researching and developing security policies, standards and procedures
  • Experience with Splunk in enterprise environment / architecture
  • Ability to communicate network security issues to peers and management
  • Ability to read and use the results of mobile code, malicious code, and anti-virus software
  • Advanced skills: In addition to the skills above, the best candidate will have a
  • Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention
  • Strong Linux (RedHat) background
  • Scripting languages such as java, python, SQL C, C++

Xator Corporation provides equal opportunity to all applicants for employment as required by and/or consistent with applicable country law and company policy. Consistent with the foregoing, Xator Corporation provides qualified applicants consideration for employment without regard to race, color, religion, sex, national origin, age, disability, veterans’ status, citizenship, sexual orientation, gender identity or any other status(s) protected by law. In the United States, Xator Corporation ensures nondiscrimination in all programs and activities in accordance with Title VI of the Civil Rights Act of 1964.