Senior Lancope Expert

Leidos Fort Meade , MD 20755

Posted 5 months ago

Job Description:

Leidos is seeking a Cyber Network Defense (CND) Lancope SME (Subject Matter Expert) to perform technical work as part of an integrated team of CND SMEs supporting the DoD's JRSS (Joint Regional Security Stack) deployment activities. JRSS is a multi-year, global effort to improve the DoD's security posture and provide enhanced security capabilities and analytics by centralizing and virtualizing network security into regional stacks rather than locally distributed appliances. This position is responsible for providing configuration, implementation, configuration and ongoing performance enhancement work for Lancope Stealthwatch appliances installed in the JRSS environment.

Candidate will work as part of a multi-disciplinary team that supports the active and passive Computer Network Defense (CND) tools deployed in stacks. Must be able to integrate with other technical teams, with DISA personnel, with vendor technical support personnel, and with technical representatives from DoD services, working as part of an integrated, cross-platform team that provides CND capability, and military base/post/camp/station migration support services DoD-wide as the JRSS stacks are deployed and used.

Primary Responsibilities:

The candidate will support Lancope tools deployed in stacks and will assist with initial configuration, troubleshooting, support and project management. Candidate should have extensive CND architectural design experience as well as significant hands-on experience with Lancope.

The successful candidate will be able to do the following Lancope tasks:

  • Control RBAC services for deployed systems and services

  • Assist lab staff in the build, integration and test of new systems, working either with local or remote teams

  • Engineer, design, test and deploy Lancope anomaly-based sensors and management platforms as part of the CND tool suite in the JRSS stacks

  • Install and configure the tool (including any work that needs to be done on the underlying OS)

  • Integrate the tool for RBAC services such as AD, LDAP, TACACS+

  • Configure the tool to work with system health monitoring tools via SNMP for status

  • Monitor the tool's health and performance

  • Tune system parameters to enhance/improve system performance

  • Provide Tier 2/3 troubleshooting for Lancope issues, either within the tool or as part of an integrated team of CND professionals, addressing larger issues as required

  • Assist other JRSS CND teams that perform lifecycle O&M on the tools by acting as tool expert

  • Configure, troubleshoot, and monitor Lancope event flows including the integration of Lancope data into a SIEM for use by cyber intrusion analysts

  • Provide "on the job training" to less experienced JRSS, DISA or DoD Services' team members

  • Develop documentation (installation guides, O&M material, etc.)

  • Monitor, performance test, and troubleshoot production systems at the SME level

  • Act as the senior subject matter expert on the tool for interactions with other teams

Basic Qualifications:

  • Bachelor's degree from an accredited college in a related discipline, or equivalent experience/combined education, with 8 or more years' experience; or 6 years' experience with a related Master's degree or equivalent work experience.

  • To be a successful fit to this assignment, you should be well versed in TCP/IP communications.

  • Have a general knowledge of router and firewall functionality on a network.

  • Familiar with the MS Office tool suite.

  • Excellent written and oral communications skills and be able to appropriately present highly technical material to both technical and non-technical audiences

  • Per contract requirements, U.S. citizenship and an active DoD Secret clearance is required. In addition, you must be able to successfully obtain up to Top Secret based on requirements from the customer and program.

  • DoD 8570 IAT2 certification is required

Preferred Qualifications:

  • Prior experience as a network intrusion analyst or Security Operations Center analyst.

  • Experience configuring and maintaining the tool in a multi-tenant environment

  • Experience with one or more of the other CND tools in the JRSS cyber suite:

  • SourceFire

  • Tipping Point

  • ArcSight

  • Gigamon

  • Opswat

  • Fidelis

  • Inquest

  • Bivio/Argus/Bro

  • ELK tools

GSMO

Leidos is a Fortune 500 information technology, engineering, and science solutions and services leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 31,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.17 billion for the fiscal year ended December 29, 2017. (NYSE: LDOS) All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Sourcefire Expert

Datrose

Posted 3 days ago

VIEW JOBS 7/20/2019 12:00:00 AM 2019-10-18T00:00 Datrose is seeking a Senior SourceFire Expert with 12+ years of experience for an temporary assignment (W2 Only) opportunity in Fort Meade, MD Must have Secret Clearance! This is an excellent opportunity for the right individual. If interested in exploring this great opportunity, please apply directly at www.datrose.com/careers. As the SourceFire SME, you will work as part of a multi-disciplinary team that supports the active and passive Computer Network Defense (CND) tools deployed in stacks. You must be able to integrate with other technical teams, with DISA personnel, with vendor technical support personnel, and with technical representatives from DoD services; working as part of an integrated, cross-platform team that provides CND capability, and military base/post/camp/station migration support services DoD-wide as the JRSS stacks are deployed and used.Primary ResponsibilitiesThe candidate will support SourceFire tools deployed in stacks and will assist with initial configuration, troubleshooting, support and project management. Candidate should have extensive CND architectural design experience as well as significant hands-on experience with SourceFire. The successful candidate will be able to do the following: Install and configure the tool (including any work that needs to be done on the underlying OS) Integrate the tool for RBAC services such as AD, LDAP, TACACS+ Configure the tool to work with system health monitoring tools via SNMP for status Create and edit profiles appropriate for the customer environment Understand filters with profiles and impact they have on performance Monitor the tool's health and performance Tune system parameters to enhance/improve system performance Provide Tier 2/3 troubleshooting for SourceFire issues, either within the tool or as part of an integrated team of professionals addressing larger issues Assist other JRSS teams that perform lifecycle O&M on the tools by acting as tool expert Configure, troubleshoot, and monitor event flows including the integration of SourceFire data into a SIEM for use by cyber intrusion analysts Provide "on the job training" to less experienced JRSS, DISA or DoD Services' team members Act as the senior subject matter expert on the tool for interactions with other teams Develop documentation (installation guides, support staff training materials, etc.) to support the mission Basic Qualifications: Bachelor's degree from an accredited college in a related discipline, or equivalent experience/combined education, with 12 or more years experience; or 10 years experience with a related Master's degree or equivalent work experience. To be a successful fit to this assignment, you should be well versed in TCP/IP communications. Have a general knowledge of router and firewall functionality on a network. Familiar with the MS Office tool suite. Excellent written and oral communications skills and be able to appropriately present highly technical material to both technical and non-technical audiences Per contract requirements, U.S. citizenship and an active DoD Secret clearance is required. In addition, you must be able to successfully obtain up to Top Secret based on requirements from the customer and program. DoD 8570 IAT2 certification is required Preferred Qualifications: Prior experience as a network intrusion analyst or Security Operations Center analyst. Experience with one or more of the other CND tools in the JRSS cyber suite: Fidelis DLP and MDE Tipping Point Arc Sight Gigamon Opswat Inquest Bivio/Argus/Bro ELK Datrose is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, protected veteran status, or status as a qualified individual with disability. Datrose Fort Meade MD

Senior Lancope Expert

Leidos