Our client is looking for a Senior Detection Engineer to support an agency level contract defending the largest target in the world using your expertise in Host Based IDS, IPS and specialized network defense. This position will utilize the latest cyber tools available and assist in creating new ones and allow you to advance the nation's information security posture.

Responsibilities include, but are not limited to

• Creation, editing, and management of signatures, rules and filters for specialized network defense systems including but not limited to:
• Network and host based EDR/NDR, IDS, IPS, firewall, web application firewall
• SOAR, Proxy, SIEM systems
• Manages and administers the tuning of rules, signatures, and custom content for specialized CND applications and systems
• Identifies potential conflicts with implementation of any CND tools within the enterprise and develop recommendations to remediate these conflicts
• Participates in inter-agency relationships with partner organizations to facilitate mission execution
• Provides logical use case development
• Provides and tracks requirements to engineering partners
• Identifies gaps in visibility or coverage of cyber defense systems

Required Degrees & Certifications:

• Security Clearance Requirements: TS/SCI + FS poly
• DOD 8570 IAT Level I or CSSP-IR
• Bachelors Degree and 4 years of related experience or 4 additional of years in lieu of degree

Required Skills

• Minimum of 5 years of experience in Cyber Security, InfoSec, Security Engineering, Network Engineering with emphasis in cyber security issues and operations, computer incident response, systems architecture, data management
• Demonstrated experience with Mitre ATT&CK
• Excellent background with Splunk, Splunk ES, Splunk Processing Language
• Experience analyzing cyber-attacks utilizing various log data sources
• Excellent interpersonal, organizational, writing, communications, and briefing skills
• Demonstrated expertise utilizing SIEM tools for use case development and application