Infrastructure Security Operator

Infrastructure Security Operator

Vacancy expired!

Description

Job Description:

Leidos seeks a Infrastructure Security Operator that will work within the Enterprise Security Services (ESS) team on the NOAA Cyber Security Center and Department of Commerce ESOC contract. Duties include:

• Tests, implements, deploys, maintains, and administers the infrastructure hardware and software. Provides support for implementation, troubleshooting and maintenance of Information Technology (IT) systems and security tools to potentially include.

• SPLUNK
• Tenable Security Center
• WebInspect Enterprise implementation
• FireEye appliances
• Archer applications
• McAfee applications

• Install, upgrade, and patch security applications
• Perform vulnerability scans
• Document processes and procedures
• Create and maintain user accounts for enterprise systems
• Provide end-user support for all enterprise systems
• Assists users in troubleshooting of enterprise security tools
• Supports the establishment, enhancement, and continual improvement of an integrated set incident knowledge management
• Develops Checklists, Standard Operating Procedures (SOP), Tactics, Techniques and Procedures (TTP) as needed

BASIC QUALIFICATIONS:

• Bachelor's degree in technical field or equivalent experience and 4 - 8 years or prior relevant experience
• 2+ years of design, development, integration, implementation, operation and analysis of cyber security technologies
• 2+ years administering network appliances, security appliances, Windows or Linux devices
• Strong attention to details, works well with direction
• Must possess strong written and verbal communication skills and must be capable of the understanding, documenting, communicating and presenting technical issues in a non-technical manner to audiences with varying degrees of technical expertise
• Must be able to obtain and maintain security clearance, specifically DoD/Secret Clearance or TS/SCI (Interim Secret acceptable)
• Provide application support of security devices and components identified within the SOC architecture, including, but not limited to, SIEM architecture, Incident Management system, Threat Intelligence Aggregation system, enterprise authentication mechanisms, vulnerability scanning architecture, Intrusion Detection/Prevention/Alerting architecture, and System Utilization and Alerting Platform
• Perform system and application updates on systems within the SOC environment to ensure systems and services are functioning optimally

PREFERRED QUALIFICATIONS:

• Experience in Security Operations Center (SOC)

• Experience with System Administration, Network Administration Network Security, Networking Standards, Network Protocols, NIST/FISMA standards and controls, SIEM platforms and security tools, Network Hardware Configurations
• Experience with enterprise security application deployment and administration
• Familiar with the NIST Risk Management Framework, specifically NIST SP 800-53
• Experience with Security Assertion Markup Language, and client-server authentication

External Referral Bonus:
Eligible

External Referral Bonus $:

Potential for Telework:
No

Clearance Level Required:
Top Secret/SCI

Travel:
No

Scheduled Weekly Hours:
40

Shift:
Day

Requisition Category:
Professional

Job Family:
Cyber Operations

Pay Range:
Pay Range $71,500.00 - $110,000.00 - $148,500.00