Duties and responsibilities:
- Identify information protection needs for Information Systems and a multi-boundary hybrid-cloud network environment.
- Define IS and hybrid-cloud environment security requirements in accordance with applicable cybersecurity requirements.
- Design and develop cybersecurity enabled products for use within the environment and across multiple systems.
- Develop approaches to mitigate IS and hybrid-cloud environment vulnerabilities and recommend changes to network or systems.
- Operate and maintain (O&M) security assets that include Security Information and Event Management (SIEM), Intrusion detection (IDS), data loss prevention (DLP), and security audit log repositories and databases.
- Design, build, and maintain big data audit log management solutions using traditional and team developed tactics, tools, and repositories.
- Configure Splunk, ESS, ACAS, and other cyber tools.
Requirements:
- Active TS/SCI clearance with ability to obtain CI Poly
- BS degree in Computer Science, Information Technology, or similar course of study
- 8570 compliance (i.e., CompTIA Security+)
- 7+ years Splunk Experience
- 7+ years Linux or Ansible experience
- 2+ years in Information System Security Officer (ISSO) and/or Information System Security Representative (ISSR) role
Desired:
- Experience in System Administration and/or Network Engineering