Criterion Systems Cyber Security Engineer in Pensacola, Florida
At Criterion Systems, Inc., we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. Our Offerings: *100% employee-owned private Government contractor founded in 2005. *High retention rate because we work hard at holding onto talent. *Excellent Leadership Team comprised of individuals who have successfully built and run businesses and are involved in day-to-day operations to include an open-door policy. We are as large in 2017 as we have ever been! Our employees are the most valuable assets. Are you ready to be appreciated?
Criterion Systems is seeking to hire aCyber Security Engineerto support a government customer in Pensacola, Florida.
Duties and Responsibilities:
The candidate will be part of the Cyber Security Engineering team. Applicant must be a positive, flexible, self-starter requiring minimal supervision, and able to excel in a fast-paced environment. Communication skills are critical with the ability to verbalize and provide documentation to both technical and non-technical audiences. Applicants must be detail-oriented and have the ability to multi-task effectively. The IDS/SIEM Security Engineer will work in a team developing custom IDS signatures, maintaining enterprise NIDS systems, developing SIEM correlations, and managing the enterprise SIEM deployment. Candidate must demonstrate the ability to research developing threats in the threat environment, create and tune IDS signatures and SIEM correlation rules to optimize intrusion analysis efforts.
Cyber Security Engineer daily responsibilities and activities include:
Check for new VRT and Emerging Threats signatures on a daily basis.
Write, review, tune and deploy custom, commercial, and open-source IDS signatures.
Review IDS alert statistics on a weekly basis (e.g. to identify noisy signatures).
Create and maintain IDS and SIEM SOPs.
Review IDS performance statistics monthly (e.g. dropped packet counts).
Create SIEM accounts and standard filters for analysts (e.g. pre-populate filters used for reports).
Map new IDS signatures into the SIEM.
Check for new devices and map into the SIEM.
Periodically review all device lists in SIEM to ensure consistency (after each device list modification/mapping, and monthly verification).
Support software and hardware issues and ensure stable system performance.
Build, harden, test, and deploy network security monitoring sensors of varying types.
Education/training of junior IDS/SIEM security engineering team members.
Develop, maintain, and test contingency plans for unclassified and classified monitoring services in the event of SIEM maintenance/failure.
Perform certification and professional development training to remain current on technologies and to improve skill sets and efficiency.
This position may require shift work based on operational requirements *Some limited travel required< 30%.
Other duties as assigned.
Mix of the Following Skills Required:
3+ years of experience in Network Intrusion Analysis.
Strong knowledge of Network Intrusion Detection System operations.
Strong knowledge of Network Intrusion Detection System custom signature development.
Strong knowledge of SIEM correlation development.
Strong knowledge of alarm investigation and validation.
Strong knowledge of networking.
Strong knowledge of common network protocol behavior.
Strong knowledge of flow data analysis.
Strong knowledge of network traffic analysis tools.
Strong knowledge of LINUX command line is highly desired.
Strong knowledge of scripting is highly desired.
Excellent verbal and written communications skills.
Excellent customer service skills.
Bachelor's Degree in Computer Science, Information Technology or related engineering discipline. Bachelor's Degree can be substitute with 4 years of work experience in computer and information technology related field.
Active TS/SCI clearance
U.S. Citizenship is required.
- The following certifications or equivalents are highly desired: SANS GCIA, SANS GCIH, CEH, OSCP
Criterion Systems is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.