Cyber Engineer
Dulles, Virginia, United States
Node.Digital
Market leader in Digital Transformation & Automation using Artificial Intelligence and Machine LearningCyber Engineer
Experience: Seniors
Location: Dulles, VA
Node is supporting a U.S. Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats.
Node is seeking a Security Operations Center Lead The SOC Lead will lead a team of security engineers with extensive technical experience in enterprise data networks, systems engineering and architecture, security monitoring, capacity planning, systems engineering, cloud infrastructure, and troubleshooting.
The team’s primary mission is to manage SOC and incident response teams by delivering and operating critical network threat detection and forensics services.
The services include IDS/IPS, SIEM, case management, and packet capture.
Responsibilities Include:
• Plans, directs and coordinates the Security Operations Center for the program.
• Work closely with technical leadership (government / program / management)
• Develop and present performance reports and metrics
• Develop and meet performance management requirements
• Provide technical leadership for an engineering team of cloud security specialists.
• Consult with the cloud team and leadership to set the direction for security monitoring and threat detection.
• Ensure the successful integration of cloud logging and security monitoring services with SIEM.
• Direct the development and implementation of rules/signatures in SIEM, and other monitoring platforms, to detect and alert on suspicious activity in Raytheon’s public cloud environments.
• Direct the deployment and management of cloud logging and security monitoring services for AWS and Azure Cloud environments.
• Provide guidance and direction on operations for cloud-based Cyber Defense systems and services
• Support cloud-related service migrations to AWS or Azure.
• Provide guidance on system administration of Cloud-based automation tools.
• Direct the development of Infrastructure-as-Code playbooks (e.g. Terraform)
• Ensure testing and evaluation of new cloud services.
• Direct a team on Incident Response/security investigations in cloud environments.
• Ensures proper implementation of required government policy (i.e., NISPOM, DCID 6/3, ICD, NIST) and others leading team to ensure compliance across all activities
Requirements
Required Skills:
• U.S. Citizenship
• Active Secret clearance. Must be able to obtain a TS/SCI clearance
• Must be able to obtain DHS Suitability
• 4+ years of management in SOC environments in both personnel and technology to include all aspects of personnel management including hiring, performance management, training/compliance, annual salary planning and all other dimensions.
• 10+ years of directly relevant experience
• Minimum 3 years of professional experience working with AWS & Azure infrastructure and services in a security-focused role.
• Advanced knowledge of AWS & Azure architectural concepts.
• Experience developing and implementing SIEM threat detection rules.
• Demonstrated experience administering Linux-based systems.
• Excellent written and oral communication skills
Desired Skills:
• Information Security and IT certifications: Cisco, Red Hat, AWS, etc.
• Experience administering cyber security tools such as Firewalls, SIEM, and PCAP
• Experience with security log analysis.
• Experience working on a Computer Incident Response Team (CIRT)
• Previous experience working in a Security Operations Center (SOC)
• Virtualization technologies, e.g. VMWare, HyperV, etc.
• Automation and IaC tooling, e.g. Ansible, Terraform, etc.
• Scripting in Python or Perl
• “Big Data” Analysis systems, e.g. Splunk, ELK, etc.
• Understanding of Project Management and SDLC methodologies, especially Agile.
• Experience with CNAPP
Required Education
- A bachelor’s degree in systems engineering, a related specialized area or field. Two years of related work experience may be substituted for each year of degree-level education.
Desired Certifications: - GIAC, CISSP
Company Overview:
Node.Digital is an independent Digital Automation & Cognitive Engineering company that integrates best-of-breed technologies to accelerate business impact.
Our Core Values help us in our mission. They include:
OUR CORE VALUES
**Identifying the~RIGHT PEOPLE~and developing them to their full capabilities**
**Our customer’s “Mission” is our “Mission”. Our~MISSION FIRST~approach is designed to keep our customers fully engaged while becoming their trusted partner**
**We believe in~SIMPLIFYING~complex problems with a relentless focus on agile delivery excellence**
**Our mantra is “~Simple*Secure*Speed~” in the delivery of innovative services and solutions**
Benefits
- Medical (90% Coverage for Employee)
- Dental
- Vision
- Basic Life (100% Coverage for Employee)
- Long Term Disability (100% Coverage for Employee)
- Health Saving Account
- 401K
- Three weeks of PTO
- 10 Paid Holidays
- Pre-Approved Online Training
Tags: Agile Ansible Automation AWS Azure Big Data CISSP Clearance Cloud Compliance Cyber defense ELK Firewalls Forensics GIAC IDS Incident response IPS Linux Log analysis Monitoring NISPOM NIST PCAP Perl Python Red Hat Scripting SDLC SIEM Splunk Terraform Threat detection TS/SCI VMware
Perks/benefits: Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs