Cyber Data Analysis Engineer
About The Position
A Cyber Data Analysis Engineer designs, builds, and maintains the enterprise environment for collecting, storing, and displaying data that supports cybersecurity efforts. In this role, you'll work with on-premise and cloud systems, as well as various software products, to collect log data from multiple government agencies in compliance with policies, ensuring it is stored for easy retrieval. You should be motivated, detail-oriented, teachable, willing to share knowledge, manage time well, and understand the importance of documentation. Strong listening, speaking, note-taking skills, and the ability to work with a team are essential.
Requirements
- Active Top Secret/SCI Clearance with experience working on US Government contracts.
- Bachelor's Degree in Computer Science, Information Technology, or a related field with 4yrs of experience.
- DOD 8570 IAT Level II and CSSP Infrastructure Support certifications (within 120 days of hire)
- 2+ years Enterprise LAN networking experience
- 3+ years of Unix/Linux Server Administration or similar experience
- 2+ years of Windows Server Administration or similar experience
- 2+ years Hands-on AWS experience
- Good oral and written communications
- Good listening and comprehension
Nice To Haves
- 1+ years of experience, in one or more of the following areas: WAN networking
- Elasticsearch
- Sentinel
- Kafka
- ArcSight
- Kubernetes
- Cribl
- Ansible
- Experience with one or more scripting languages: YAML, Python, Bash, and/or Ruby
- Experience using version control tools such as Git
Responsibilities
- Help customers send their log data through one or more enterprise networks to a specific destination.
- Design, build, and maintain log data collection pipelines consisting of products like Cribl, ArcSight, Kafka, various AWS products, Linux servers, and Microsoft servers.
- Design, build, and maintain log data management environments using products such as Elasticsearch or Sentinel.
- Research and identify the physical or cloud resources needed to optimize support for specific Linux systems or hosted products.
- Troubleshoot any data flow issues from the SIEM data collection point to the SIEM or designated long-term storage destination.
- Troubleshoot any data display or data storage issues within the SIEM environment.
- Perform root cause analysis for complex issues.
- Ensure product uptime.
- Maintain appropriate application, system, and product versions according to applicable agency enterprise policies.
- Develop or improve processes using tools like scripts, Ansible, or AWS products.
- Document tasks, processes, changes, and product statuses.
- Provide team training regarding tasks and products.
- Interact with internal and external customers during all project phases.
- Be aware of customer needs.
- Respond to customer inquiries in a timely manner.
- Demonstrate attention to detail.
- Some on-call including nights/weekends (very rare).
Benefits
- healthcare
- wellness
- financial
- retirement
- family support
- continuing education
- time off benefits
- flexible time off benefit
- robust learning resources
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
