Senior Cybersecurity Engineer

About The Position

Requirements

• Over 8 or more years of experience in a relevant IT engineering mission area.
• Ensure personnel are compliant with DoDI 8140.02 Identification, Tracking, and Reporting of Cyberspace Workforce Requirements as set forth in the DoD Cyber Workforce Framework (DCWF). Personnel must hold required certifications at time of hire and must maintain certifications for the entire performance period
• Ensure Incident Response & Analysis personnel also assigned as forensic analysts also hold and maintain an industry-recognized Computer Forensics certification such as the GIAC GCFE, GCFA, or EC-Council CHFI.
• Ensure Incident Response & Analysis personnel are knowledgeable of industry-standard methods and practices concerning the use and monitoring of intrusion detection products in a production network.
• Secret Clearance required

Responsibilities

• Assist the Watch Officer of the SOC team and cybersecurity professionals within customer environment
• Respond to various security incidents to protect the customer's digital assets from cyberattacks.
• Be responsible for overseeing the team, ensuring everyone is trained, motivated and effectively working together.
• Provide technical knowledge and analysis of security incident responses.
• Assist with performing forensic analysis of devices involved in incidents and forensic reporting.
• Assist with investigating potential intrusions and security events to contain and mitigate incidents.
• Assist with researching cyber-attacks, malware, and threat actors to determine potential impact and develop remediation guidance.
• Assist with analyzing network traffic and identify attack/malicious activity.
• Assist with documenting incident response activities and lessons learned.
• Assist with effectively communicating incident response activities.
• Assist with providing monitoring and response capabilities.
• Assist with regularly updating and optimizing queries and alerting rules.
• Assist with maintaining the confidentiality and integrity of the data within SIEM.
• Assist with providing timely and accurate reports to management and the government.
• Validate suspicious events by performing investigations using SIEM, leverage tools available to the SOC, threat intelligence and OSINT, TTPs and IOCs.
• Leverage knowledge of Alert Triage, SOC Operations, and Defense in Depth (DiD) to contribute to projects for overall success.
• Produce high-quality written and verbal communications, recommendations, and findings to management and the government in a timely manner.
• Provide timely escalation of events to either the watch officer or government.
• Other services and support as needed or directed by the government

Benefits

• Health/Dental/Vision
• 401(k) match
• Flexible Time Off
• STD/LTD/Life Insurance
• Referral Bonuses
• professional development reimbursement
• maternity/paternity leave