Siem Administrator/Engineer

Tiag Arlington , VA 22201

Posted 2 months ago

TIAG has a new opportunity for a Security Information and Event Management Administrator to support the Office of Naval Research in Arlington, VA.

The SIEM Administrator/Engineer will assist the Office of Naval Research establish an information technology network operation center (NSOC). The SIEM Administrator/Engineer will directly support the Network Operations Team working in collaboration with the Information Assurance (IA)/Cybersecurity/Computer Network Defense (CND) Team to perform network operations functions in support of the security information and event management (SIEM) tasks.

Responsibilities:

  • Deploy, configure, and maintain the following McAfee suite of tools):

  • McAfee Enterprise Security manager (ESM),

  • McAfee Application Data Monitor (ADM),

  • McAfee Database Event manager (DEM),

  • McAfee Advanced Threat Detection (ATD),

  • McAfee Event Receivers (REC),

  • Enterprise Log Manager (ELM),

  • Advanced Correlation Engine (ACE)

  • Ensure Daily and Weekly data backups of above systems to ensure data recovery availability

  • Rollout ESM Policy changes daily

  • Review and maintain SIEM health to include CPU Usage, Available Memory, Queuing delays

  • Create systems health reports as a deliverable to NSOC cyber analysts

  • Ensure McAfee Threat Intelligence Exchange (TIE) integration with SIEM

  • Manage global blacklist

  • Setup users and user groups, passwords and permissions

  • Setup and maintain data enrichment

  • Ensure updates and patches are applied as required by RMF and best business practice

  • Ensure McAfee rule updates are applied daily

  • Provide backup coverage for the primary McAfee HBSS Systems Administrator to include the following McAfee suite of applications:

  • McAfee HBSS

  • McAfee Endpoint Security (ENS)

  • McAfee Host Intrusion Prevention System (HIPS)

  • McAfee Operational Attributes Module (OAM)

  • McAfee Asset Configuration and Compliance Module (ACCM)

  • McAfee Asset publishing Service (APS)

  • ArcSight Connector

  • McAfee Device Control Module (DCM)

  • McAfee Agent (MA)

  • McAfee Application Control (MAC)

  • McAfee policy Auditor (PA)

  • McAfee Rouge System Detection (RSD)

Required Experience:

  • Bachelor's degree

  • 1-2 years of experience related to network engineering and security

  • Experience and familiarity with:

  • McAfee Suite of products, Remedy ticketing system, and ITSM Framework

  • TCP/IP, Computer networking, routing and switching

  • Firewall and IDS/IPS protocols

  • Windows and UNIX and Linux operating systems

  • Network protocols and packet analysis tools

  • SIEM

  • DLP, Endpoint Security, and anti-malware

  • IAT Level II certification (Sec+ CE or equivalent) AND Operating System (OS)/Computing Environment (CE) certification

  • Active or interim Secret Clearance

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Linux Systems Engineer Administrator

Avid Technology Professionals

Posted 3 weeks ago

VIEW JOBS 9/25/2019 12:00:00 AM 2019-12-24T00:00 The Linux Engineer applies current technologies to the design, development, evaluation and integration of computer information systems and networks to maintain system security. Works with commercial computer product vendors in the design and evaluation of state-of-the-art secure COTS applications, operating systems, networks and database products and technology. Provides security engineering and integration services to internal customers. Involved in a wide range of issues including secure architectures, secure electronic data traffic, network security, information security and privacy. Develops security systems for any manual or automated systems environments. Responsible for ensuring the protection of company data against unauthorized disclosure, accidental or intentional loss of data, or unauthorized modification. MANDATORY SKILLS: Required Skills: Must have an active Secret Clearance with ability to obtain Top Secret with SCI eligibility Must be able to obtain DHS program suitability prior to starting employment Knowledge of Red Hat version 6 or 7 (rhel6/rhel7) with the ability to engineer, install, administer and maintain Required Education (including Major): Bachelor's degree in related field with 8 years of relevant experience. Additional years of work experience may be substituted for a degree. Skilled in Linux-related scripting (Bash, Perl, Python, etc.) Experience analyzing and evaluating the security of new and existing IT systems and the procedures to protect information system assets from intentional or inadvertent modification, disclosure, or destruction Kernel infrastructure understanding in a Linux environment Experience analyzing and evaluating the design and operating effectiveness of Information technology and security controls that are in place Knowledge and understanding of operating systems, networks and services Experience evaluating security solutions to ensure they meet security requirements for processing classified information Manage changes to system and assesses the security impact of those changes. Participate in 24x7 schedules with fixed shift and possible weekend support. OPTIONAL SKILLS: Desired Skills: Experience with Apache web server configuration and management Management, deployment and troubleshooting of Java and Tomcat applications Apache/TomCat/NGINX Satellite Server Nagios Kerberos/LDAP SSL IDM/Free IPA Sourcefire Puppet Training/certification in any of the following strongly desired: Red Hat Certified System Administrator (RHCSA) Red Hat Certified Engineer (RHCE) About Avid Technology Professionals Avid Technology Professionals, LLC (ATP) is a premiere provider of software and systems engineering, and acquisition program management services for the community. ATP is actively seeking to pursue contract opportunities with other departments and agencies in the federal government, in state governments, and in the commercial sectors. Delivered by seasoned experts in the IT field, ATP solutions adeptly address the IT concerns manifesting in both the federal and commercial sectors. Employee Benefits The ATP Employee Benefits package includes: * A Supportive and Equitable Working Environment that is both Stimulating and Challenging * Competitive Hourly Salary * Unique Employee Success Sharing Program that allows ATP employees to Share in Company's Successes * Automatic Approved Overtime (as long as contract permits) * Retirement Pay (401K); 100% company paid, immediately vested with Profit-Sharing Component * Company Medical Coverage Plans - HMO, Open Access, PPO plans * Company Dental Plan - widely accepted, comprehensive, and flexible * Progressive Overtime Policy * Flexible Spending Account benefit * Lucrative Referral Bonus Policy * Holiday Scheduling that Coincides with Government Holidays * Robust Professional Expenses & Training Program * Computer Allowance * Internet Allowance * Short and Long Term Disability * Life Insurance On TWITTER http://ja.twitter.com/AvidTecPros Avid Technology Professionals Arlington VA

Siem Administrator/Engineer

Tiag