Senior Cybersecurity Operations Engineer

Ardent Eagle Solutions•Arlington, VA

23h•Onsite

About The Position

The mission of the NIGC is to promote tribal economic development, self-sufficiency, and strong tribal governments; maintain the integrity of the Indian gaming industry; and ensure that Tribes are the primary beneficiaries of their gaming activities. The National Indian Gaming Commission (NIGC) was created by Congress through the Indian Gaming Regulatory Act of 1988 (P.L. 100-497) and established as an independent federal agency within the Department of the Interior (DOI). IGRA was enacted with the express purpose to support and promote tribal economic development, self-sufficiency, and strong tribal governments through the operation of gaming on Indian Lands. IGRA provides a legal framework structured to safeguard tribes as the primary beneficiaries of their gaming operations, shield Indian gaming from corrupting influences, and ensure that the games offered are fair and honest. IGRA created the NIGC to protect tribal gaming as a means of generating revenue for tribal governance and tribal communities.

Requirements

A minimum of six (6) years of continuous experience.
Relevant IT certifications may be substituted for a formal college degree; however, demonstrated hands-on experience in performing the required tasks is mandatory and may not be substituted.
Knowledge and skills of information systems security principles, NIST guidelines, FISMA, CISA, and federal directives.
Knowledge of Networking Technologies including LAN, MS Azure, and Wireless management in security solutions implementation and troubleshooting.
Experience with SEIM integration, Syslog, Network Detection and Response (NDR), Endpoint Detection and Response (EDR), Firewalls, M365 Cloud security, Defender for Cloud, and Continuous Diagnostics & Mitigation (CDM) capabilities.
Ability to maintain threat awareness and monitor information systems for exploits and suspicious activities.
Ability to analyze aggregated logs from security tools and perform regular threat hunting activities.
Ability to develop Security Orchestration and Automation capabilities.
Adherence to Continuous Monitoring practices.
Ability to develop detection and response configuration policies.
Ability to execute Incident Response activities according to the NIGC incident response plan.
Ability to develop Incident handling procedures.
Ability to validate that sufficient and relevant information is captured and retained from security tools to support actionable security awareness and incident investigations.
Ability to collect security operations performance and NIGC security posture management metrics and prepare NIGC threat reports.
Ability to develop and maintain accurate security operations documentation including standard operating procedures.
Selected candidates may undergo a government security investigation and must fulfill eligibility criteria for accessing classified information.
US citizenship may be a prerequisite for certain roles.

Responsibilities

Apply knowledge and skills of information systems security principles, NIST guidelines, FISMA, CISA, and federal directives, to conduct ongoing security assessments of installed systems and networks with a view to recommend corrective actions.
Perform systems engineering and maintenance activities according to established standards.
Apply knowledge of Networking Technologies including LAN, MS Azure, and Wirless management in security solutions implementation and troubleshooting.
Develop NIGC security operations capabilities by evaluating current strategies and pursuing alignment with best practices.
Ensure the effective configuration and daily operations of tools that support the NIGC cybersecurity strategy. Such tools include SEIM integration, Syslog, Network Detection and Response (NDR), Endpoint Detection and Response (EDR), Firewalls, M365 Cloud security, Defender for Cloud, and Continuous Diagnostics & Mitigation (CDM) capabilities.
In collaboration with CISO and Privacy Officer develop plans, techniques, and measurable objectives to improve the development of cybersecurity and privacy measures that meet NIGC goals for protecting sensitive information.
Collaborate with other teams on the integration of NIGC Applications and IT services to consider security implications and ensure that NIGC security requirements are met.
Maintain threat awareness and monitor NIGC information systems for exploits and any suspicious activities. Analyze aggregated logs from security tools and perform regular threat hunting activities.
Develop Security Orchestration and Automation capabilities.
Adhere to Continuous Monitoring practices to evaluate the effectiveness of implemented security controls and execute proactive threat hunting activities to ensure confidentiality, integrity, and availability of NIGC information systems.
Develop detection and response configuration policies to increase automation.
Execute Incident Response activities to include all associated actions according to the NIGC incident response plan.
Develop Incident handling procedures.
Validate that sufficient and relevant information is captured and retained from security tools to support actionable security awareness and incident investigations.
Collect security operations performance and NIGC security posture management metrics and prepare NIGC threat reports to inform risk management decisions.
Develop and maintain accurate security operations documentation including the preparation of standard operating procedures for recurring tasks.