Unclassified - Springfield, VA
posted 3 months ago
As a Cyber Security Operations Specialist focusing on SIEM Services, you will play a critical role in ensuring the security and reliability of our systems. Your primary responsibility will be to provide all preventative and corrective maintenance necessary to maintain consistent, reliable, and secure service availability. This includes executing actions required to restore services to full operational capability, such as managing vendor RMA processes, removing and properly disposing of broken equipment or software, and installing and testing new equipment and software. You will be expected to maintain system availability and reliability with a target threshold of 99.99%. In this role, you will be responsible for detecting and ticketing any degradations in SIEM data flows within 60 minutes of their occurrence. You will perform day-to-day maintenance and specific scheduled maintenance activities based on manufacturer recommendations, alerts, bulletins, and available patches. This will involve maintaining updated documentation, change logs, and service bulletin libraries for all supported equipment and software in the Cyber Security Operations Center (CSOC) knowledge management platform. You will also execute emergency maintenance actions with urgency to prevent unacceptable outage durations, coordinating with government management for approval. Your duties will extend to performing all development, engineering, testing, integration, and implementation actions necessary for major vendor revisions. Continuous engineering assessments will be part of your responsibilities to improve the performance, effectiveness, coverage, and maturity of the service. You will configure all assets assigned to this service in accordance with federal and DoD regulations, ensuring that all data flows are properly parsed for ingestion and transmission to internal and external automated reporting systems. Additionally, you will utilize agency-approved ticketing systems to document, track, assign, update, and coordinate all engineering, integration, configuration, and maintenance actions. Your role will also involve using various monitoring, analysis, and visualization tools to track effectiveness, status, and performance metrics as required by government staff and contractors.