IntelliDyne, LLC

Returning Candidate?

Security Engineer - Incident Response Team

Security Engineer - Incident Response Team

Job ID 
2846
# Positions 
1
Location 
US-DC
Experience (Years) 
..
Posted Date 
2/13/2018
Category 
..

More information about this job

Qualifications

Education

  • BS/BA degree from accredited university required

 

Experience

  • Five or more years of professional IT work experience required
  • Three or more years of cyber security work experience required
  • 2+ years of Splunk Infrastructure experience required
  • Prior leadership experience with direct reports in a cyber environment
  • Experience and effective participation in hunt, computer network defense, real-time analysis and incident response activities, to include ability to reconstruct events from network, endpoint, and log data
  • Experience and understanding of host-based/endpoint protection systems
  • Cyber intelligence, disk forensics and memory forensics experience
  • Server administration experience
  • Enterprise forensic tool(s) experience
  • Federal contract experience

 

Training Certifications (Desired)

  • One or more certifications in information security (such as GCIA, GCIH, CEH, CISSP, SSCP, Sec+, etc)

 

Specialized Knowledge/Skills Requirements

Core skills: At a minimum, we are looking for an Information Security Engineer with these core skills. If you want to work as an Information Security Engineer with us, you must possess the following.

  • Direct experience with anti-virus software, intrusion detection, firewalls and content filtering
  • Knowledge of risk assessment tools, technologies and methods
  • Experience designing secure networks, systems and application architectures
  • Knowledge of disaster recovery, computer forensic tools, technologies and methods
  • Experience planning, researching and developing security policies, standards and procedures
  • Professional experience in a system administration role supporting multiple platforms and applications
  • Ability to communicate network security issues to peers and management
  • Ability to read and use the results of mobile code, malicious code, and anti-virus software

 

Advanced skills: In addition to the skills above, the best candidate will have a Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention

Responsibilities

  • Provide support to maintain FireEye ecosystem, including providing patching and administering configs within a FireEye AX, CM, EX, FX, HX, NX environment.  This includes:
    • Testing FireEye HX Agent configs prior to upgrades
    • Testing FireEye Appliances and validating deployed signatures – YARA/FireEye
  • Provide support of RHEL Patching Via Satelite – Validate Config and Patch Status
  • Provide support in maintain an incident response lab environment, that includes:
    • PFSense
    • ESXi VM’s
    • Hybrid Analysis
    • Kahli Linux
    • Cuckoo Sanbox (deprecated by Hybrid)
    • Security Onion/Bro         
    • Nighthawk/VolUtility
    • Storage -  NetAppPython or other scripting language experience
  • Support/assist the client with improvement to real-time monitoring and triage capabilities of incidents received at the operations center.
  • Work collectively with other team members on proposing configuration changes to FireEye environment.
  • Support efforts on threat hunting, network, host, and malware analysis, sensor tuning and custom signature creation
  • Lead the application of cyber intelligence to improve security operations
  • Measure and manage individual and team performance
  • Ensure adequate metrics and documentation of team operations for leadership and other constituents

Overview

WE LOVE VETERANS. JOIN US!

 

IntelliDyne is a consulting firm that enables better business performance through innovative technology solutions. We manage public sector programs that deliver higher operational efficiency and measurable value to clients. We advise, develop, and execute effective solutions in Cyber Security, Cloud Computing, Application Development, Analytics, Mobile Computing, Business Process Management, Data Center Consolidation, Enterprise Collaboration and Enterprise Infrastructure Management.

 

IntelliDyne is an Equal Opportunity Employer.