ManTech seeks a motivated, career and customer-oriented Senior Cyber Security Detections Engineer to join our team in Springfield, VA.
Responsibilities include but are not limited to:
-
Formulate and publish custom Security Information and Event Management (SIEM) tool content and IDS/IPS signatures to address threats
-
Perform security event and incident correlation using information gathered from a variety of sources within the enterprise
-
Analyze and assess damage to the data / infrastructure as a result of cyber incidents
-
Perform cyber incident trend analysis and reporting.
-
Characterizes and performs analysis of network traffic and system data to identify anomalous activity and potential threats to resources.
-
Provide detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities
-
Create, deploy, and implement threat-based signatures and detection rules for operational intrusion detection capabilities.
Minimum Qualifications:
-
Bachelor’s degree or 4+ years of additional cyber experience in lieu of degree
-
2+ years of cyber experience
-
Experience with modern Windows, UNIX, network operating systems, databases, and virtual computing
-
Experience with enterprise security tools, including Security information and event management (SIEM), Threat intelligence platforms (TIPs), or Network monitoring tools
-
Experience with creating, modifying, tuning, IDS signatures/SIEM correlation searches and other detection signatures.
-
Knowledge of implementation of countermeasures or mitigating controls.
-
DoD 8570 certification meeting IAT Level II (GSEC, Security+, SSCP, or CCNA-Security)
Preferred Qualifications:
-
Experience with Linux/Unix
Clearance Requirements:
-
Must have a current/active TS/SCI w/Polygraph
Physical Requirements:
-
The person in this position must be able to remain in a stationary position 50% of the time. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.
To apply for this job please visit itjobpro.com.