Cyber Security Engineer II

About The Position

Requirements

• 3+ years experience in cyber security experience.
• Associate’s degree in a related field. Additional years of experience may be substituted for degree requirements.
• Must be Security+ certified.
• Must be Network+ or CCNA certified.
• Must hold the ITIL v3 or v4 Foundations certification or be able to obtain the certification within 60 days of hire.
• Familiar with DIACAP, Risk Management Framework (RMF), STIGs, and IA Controls.
• Experience with development/architecture for apps and services, and testing and administration.
• Strong knowledge of Microsoft Windows technologies, including Active Directory, Windows Administration, scripting, and Windows configuration techniques.
• Basic Linux experience to include Red Hat and Fedora.
• Networking experience including routers, switches, and firewalls.
• Experience with Cisco and Juniper.
• Must be detail oriented and possess the ability to work in a multi-disciplined environment with an adaptive personality.
• Strong analytical and communication skills.
• Must be able to apply intensive and diverse knowledge to problems and make independent decisions.
• Must be a team player able to work professionally and collaboratively with the government customer and other contract members of the project team.
• Must be able to provide support in a 24/7/365 environment including occasionally covering shifts outside of the assigned shift and/or providing after hours, weekend, or holiday support as needed on a rotational basis.
• Must be able to travel to CONUS sites to provide TDY support.
• Must be a US citizen and hold a current Secret clearance.
• Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

Responsibilities

• Install, configure, maintain, and manage the AFCENT/USCENTCOM security devices to include but is not limited to IDS/IPS, LogRhythm Enterprise Security Manager, ACAS, End-Point Security Systems (ESS)/Host-Based Security Systems (HBSS) and associated Virtual Private Network (VPN) equipment/configurations.
• Assist in development and documentation of sensor process and checklists.
• Provide technical advice and assistance to the AFCENT NOSC-Cybersecurity to resolve network issues and perform actions necessary to ensure IDS/IPS sensors are collecting and reporting network activity.
• Diagnose and resolve end user problems.
• Ensure the end users adhere to the proper security policies and procedures.
• Build tactical and strategic network profiles of specific systems and complete network architecture.
• Develop system concept of operations and engineering plans to execute security requirements for new and existing systems with a focus on incident response policies and procedures.
• Develop reports and trend analysis documentation on bandwidth, network architecture, as well as network security incidents.
• Maintain current knowledge on new vulnerabilities and exploits.
• Develop methods to detect and prevent intrusive activities utilizing knowledge.
• Assist in developing countermeasures to isolate, contain and prevent intrusive actives and secure.
• Conduct troubleshooting and fault isolation to ensure network connectivity to the sensor equipment.
• Conduct network security monitoring and intrusion detection analysis using the AFCENT/USCENTCOM selected security tools, including but not limited to, IDS/IPS, firewalls, proxy, router, ESM, Logger, Fidelis, HBSS and LogRhythm logs.
• Maintain ESS/HBSS and all related DISA mandated point products.
• Provide LAN/WAN support.