Intrusion Prevention Systems Administrator

OUR COMPANY REVOLVES AROUND MISSION-DRIVEN ENGINEERING

At Lucayan Technology Solutions LLC, we strive to solve our customer's hardest problems. Our highly focused customer-centric approach is crucial to our customer's success and ultimately ours. We aim to be a breath of fresh air: and be the most innovative organization in the Government contracting space. Sounds cliche? No worries the proof is in the pudding. To get there, we need exceptionally talented, bright, and driven people. Join us if you'd like to be a part of our journey. Right here, right now, this is your chance to make history and put a ding in the universe.

Lucayan Technology LLC is hiring an Intrusion Prevention Systems Administrator to support the United States Special Operations Command (USSOCOM) Information Technology Enterprise Operations and Maintenance Contract (IT EOM). USSOCOM requires comprehensive worldwide information technology (IT) support to operate and maintain the Special Operations Forces (SOF) Information Enterprise (SIE).

The IPS Admin is responsible for implementing, supporting, and maintaining aspects of Azure Cloud Security at an enterprise level. The IPS Admin will be one of the first layers of defense within the USSOCOM SOFNET Cloud team. The candidate should be a subject matter expert in Azure Cloud security technologies and SIEM platforms with the ability to administer SIEM deployments in customer environments, assisting in technical investigations for security incidents, overseeing process improvements, and assisting the development of new SIEM use cases.

General duties include:

• Work with security architect and other security partners to ensure compliance with enterprise policy.
• Perform investigation and escalation for complex or high severity security threats or incidents. As well as participate in possible cyber exercise and purple team events.
• Create and develop new rules and policies as directed per the customer’s requirements.
• Define and assist in the creation of operational and security reports and dashboards.
• Integrate other cloud security tools.

Requirements

• Clearance Requirements: TS/SCI
• Education Requirements: Associate Degree. Significant relevant experience will be considered in lieu of formal education
• Certification Requirements:
• DoDD 8570.01-M IAT II or higher
• Experience Requirements:
• Minimum 7 years of enterprise network security experience (firewall, Intrusion Detection and Prevention (IDPs), log management/reporting solutions)
• Ability to monitor Intrusion Prevention System through the Virtual Data Center Managed Services (VDMS).
• Experience in resolution of tier 2 trouble incidents for firewalls, secure e-mail gateways, email encryption technologies, intrusion prevention systems (IPS), and network forensics tools.
• Practical experience supporting Palo Alto, Cisco Firepower/Sourcefire, and/or Cisco ASA firewalls
• Practical experience working in complex LAN/WAN environments
• Use network fundamentals and firewall best practices plus troubleshooting to ensure confidentiality, integrity, and availability.
• Possess a networking background with a good understanding of switching, network routing plus skills in managing and supporting firewalls.
• Strong ability to troubleshoot a variety of issues and make recommendations for system changes, as needed, to resolve all technical issues in an efficient and timely manner.
• Knowledge of cloud routing and switching fundamentals and products is essential.
• Plan and coordinate system utilization, and performs growth analysis and capacity planning
• Planning and deployment of new cloud environments to include VDSS.
• Implement knowledge of best cloud security practices, firewalls, network administration, application/web fundamentals, IP transit, routing protocols and all aspects of networking needed to support the required SLAs.
• Practical experience with a log aggregation system such as Splunk for troubleshooting

Additional desired (Not Required) certifications, skills, experience, and/or knowledge:

• Cisco Certified Network Associate (CCNA)
• Vendor specific IPS certifications

Benefits

• Medical/dental plans w/FSA & HSA options
• Vision Plan
• Short-Term Disability Insurance
• Long-Term Disability Insurance
• 401k
• 2 weeks PTO
• 10 Paid Federal Holidays
• Workers Compensation
• Commuter Benefits