Cyber Security Engineer, Senior

ManTech - Chantilly, VA

posted 6 months ago

Full-time - Mid Level
Chantilly, VA
Professional, Scientific, and Technical Services

About the position

As a Senior Cyber Security Engineer at ManTech International Corporation, you will play a crucial role in safeguarding our national security while working on innovative projects that offer opportunities for advancement. This position is based in Chantilly, VA, and is integral to a diverse team dedicated to protecting sensitive information and ensuring the integrity of our systems. You will be responsible for a variety of tasks that include managing customer requests through the ServiceNow delivery platform, resolving incident tickets, and onboarding customer assets such as operating systems, applications, and network devices across multiple enclaves. In this role, you will also participate in beta testing future enhancements to the Audit Enterprise system, providing valuable feedback to improve our systems. Your responsibilities will extend to managing the engineering, integration, and administration support necessary for the successful delivery of capabilities and services to the operational baseline. You will assist program and project engineers in testing and implementing future enhancements, ensuring that all engineering instruction sets and standard operating procedures (SOPs) are up to date. A significant part of your role will involve troubleshooting data collection issues and system stability problems, deploying and managing Splunk add-ons, and integrating with other systems via APIs. You will be tasked with providing comprehensive documentation, including body of evidence documents, engineering documents, and system security plans. Additionally, you will maintain strict role-based access control solutions around the data collected, ensuring that access is granted on a need-to-know basis. Your expertise in network monitoring tools and security analysis will be essential as you develop and implement security policies, standards, and guidelines. Strong organizational skills and the ability to work collaboratively are critical for success in this diverse environment.

Responsibilities

  • Perform tasks and complete customer requests using the ServiceNow delivery platform.
  • Resolve incident tickets issued through ServiceNow.
  • On-board customer's assets consisting of operating systems, applications, and network devices in multiple enclaves.
  • Participate in Beta-testing future enhancements to the Audit Enterprise system and provide valuable feedback.
  • Manage the engineering, integration, and administration support required for successful delivery of capabilities and services to the operational baseline.
  • Assist the Program/Project engineers in testing and implementing future enhancements.
  • Utilize, evaluate, and update all engineer instruction sets and SOPs.
  • Learn and perform the testing of sophisticated Audit SIEM platform applications in a physical and virtual environment.
  • Troubleshoot new and current data collection issues.
  • Troubleshoot system issues that make the system unstable or unusable.
  • Deploy and manage all supported and unsupported Splunk Add-ons that are required for specific data sources.
  • Integrate with other systems via API or other similar methods.
  • Provide documentation such as body of evidence documents, engineering documents, change management documents, system security plans, and accreditation documents.
  • Deliver a comprehensive Splunk deployment document to detail the specifications, deployment methods, and other architectural considerations to the production environment.
  • Maintain a strict role-based access control solution around the data collected, to provide a need-to-know ability.
  • Design and deploy forwarders rapidly with centralized configuration management (Splunk Deployment Server).
  • Oversee Knowledge Object Management such as CIM management and tuning.
  • Oversee Enterprise Security configurations and tuning.

Requirements

  • Minimum Education: B.S. or relevant experience in related field.
  • Minimum/General Experience: 3+ years of IT and/or cyber experience.
  • Must possess the required DoD Directive 8570.1 IAT Level II or higher certification or ability to obtain within 6 months.
  • Strong organizational, analytical, and troubleshooting skills with a high level of attention to detail are required.
  • Demonstrated understanding and appropriate application of DoD policy and technical security guidance to information systems.
  • Good understanding of Linux systems administration, general operating system security practices, TCP/IP networking, and network security concepts.

Nice-to-haves

  • Familiarity with the Certification & Accreditation process is preferable but not required.
  • Ability to learn and comprehend from provided training in an individual contributor and team capacity.
  • Splunk Certifications.
  • Experience with Security Information and Event Management (SIEM) platforms, preferable Splunk.
  • Experience with Linux, Red Hat, and CentOS.
  • Cloud environment experience and/or certifications.
  • Ability to modify feed creation to ingest customer logs in a standard format to meet policy requirements.
  • Familiarization with ICS 500-27 for Audit collection requirements.
  • Familiarization with other Enterprise security services Host Base Security Service, and Enterprise Vulnerability Scanning Service, and UAM.
  • Ability to clearly articulate ideas for executive-level as well as technical staff consumption.
  • Analytical capability to look for and provide input on process improvements.
  • Ability to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities.

Benefits

  • Competitive salary and benefits package
  • Opportunities for professional development and advancement
  • Supportive work environment that values diversity and inclusion
  • Flexible work arrangements
  • Health, dental, and vision insurance
  • 401(k) retirement plan with company matching contributions
  • Paid time off and holidays
  • Employee assistance programs
  • Tuition reimbursement for further education

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service