Shift Leads Systems Security Engineer Job # JTUSC0056
Location: NE Washington DC 205844
Clearance: Public Trust type background check with finger-printing and drug screening
Week day shift (Monday – Friday) – we will have three 8.5 hours shifts with the start times being 7am to 3:30 pm, 3:00 pm to 11:30 pm, and 11:00pm to 7:30am
Weekend (Saturday and Sunday) – we will have two 12.5 hour shifts. 7:00am to 7:30 pm, 7:00 pm to 7:30am
There will be one Shift Lead in each shift. A Lead is the subject matter expert for all intrusion detection-monitoring activities during their assigned shift. The Task Lead must have the ability to support detailed discovery and analysis of intrusion detection security events, in order to assure that quality work is performed. The Task Lead is the single point of final incident reporting review and escalation. The Task Lead acts as a point of contact for escalations to
Management or the Systems Incident Response Capability (SIRC) and releases all notification created by their team to the stakeholders. The Task Lead will ensure that all incidents are clearly documented and process timely and have been reviewed for quality: the ability to communicate clearly both orally and in writing. The Shift Task Lead will deliver in Microsoft Word a quality written shift lead report detailing work performed during the shift. The report may be shared with Executive Management.
High School Diploma. Bachelor’s degree in Information Systems, Computer Science or related field is preferred.
Seven years of security intrusion detection examination experience involving a range of security technologies that product logging data; to include wide area networks host and network IPS/IDS/HIPs traffic event review, server web log analysis, raw data logs.
Contractor will have at least two years as a cyber security or security operations shift team leader.
Contractor will have at least five years’ experience working at a senior level, performing analytics examination of logs and console events in the following working experience areas of; creating advance queries methods in Splunk or advance Grep skills, firewall ACL review, examining Snort based IDS events, Pcaps, web server log review, and working in a SIEM environment.
The contractor must possess at least one (1) of the following certifications: GIAC Certified Intrusion Analyst (GCIA), EC-Council's Certified Security Analyst (ECSA), GIAC Certified Perimeter Protection Analyst (GPPA), GIAC Certified Enterprise Defender (GCED), Systems Security Certified Practitioner (SSCP), or a Certified Information Systems Security Professional(CISSP).
To apply send resume to Norris@FlexSR.com
Attn: Shift Leads Systems Security Engineer Job# JTUSC0056