Address
Form of work
SalaryJob Type: Full Time
Location: Remote
Clearance: Secret
Who is Ardalyst Defense, LLC?
Ardalyst Defense, LLC is a Maryland, Service-Disabled Veteran-Owned Small Business (SDVOSB) that provides engineering services and technical, analytical and cyberspace operations services to integrated U.S. government agency operations. Ardalyst personnel have decades of direct operations experience in full-scope Cyberspace Operations - at the Service, Joint and National Agency levels.
Are you an Ardalyst?
Ardalyst is a mashup of Ardent, meaning passionate and Catalyst, meaning change agent. To be an Ardalyst means to be passionate about creating and sustaining meaningful transformations.
Speak Your Mind Collaboration is at the heart of everything we do and our belief in diversity of people supports our goal for diversity in thought. Ardalysts (that isnt just what we call ourselves) come ready to contribute and find solutions.
Focus On Your Strengths We invest in understanding the strengths and weaknesses of each employee so that you can shine at what YOU do best.
See Yourself Grow Ardalysts have cited being encouraged to take educated risk, kick-start progress, and advance their skills as one of their favorite things about working at Ardalyst and we are determined to keep it that way.
Job Description
We are seeking a Senior DefensiveOperations Engineer to add to our dynamic team. In this role, you will be part of the engineering team responsible for designing, engineering, and delivering Defensive Cyber Operations (DCO) / security operations (SOC) solutions based on next generation open source and best of breed commercial solutions.
Your primary responsibility is to work with customers to identify their SOC/DCO and cybersecurity needs, and rapidly iterate from concept to requirements, to prototype solution. This role focuses on the network sensing components of the overall SOC/DCO architecture. You will fuse a keen sense of empathy for the customers challenges with your hands-on expertise with SOC, DCO, and IT security solutions to delight the customer.
Duties and Responsibilities
- Identify Customer Requirements: Meet with customers to understand and capture their current challenges and opportunities.
- Develop Solutions: Architect and design solutions to meet customer needs, accounting for functional requirements, scalability, performance, cost, resilience, and security needs.
- Collaborate effectively: Leveraging the customers requirements; partner with sales, developers, engineering, and customer team members to solve issues and provide sustainable solutions.
- Deliver Value: Through building, optimizing, and tuning technology solutions (sensors, data collection, etc.), and implementing production-grade, reliable solutions in cloud environments.
- Experience implementing and optimizing network sensing technologies: passive and active taps, packet brokers, packet filtering, passive IDS monitoring, active IDS monitoring, PCAP retention, storage management, high speed packet capture, network detection and response (NDR) and related technologies.
- Hands-on experience with best of breed commercial and open-source network sensing technologies, like: Snort, Suricata, Bro/Zeek, Trellix/McAfee/FireEye, Palo Alto, Cisco Firepower, Gigamon, Ixia, NetOptics, etc.
- Experience tuning and customizing network monitoring systems, signatures, analytics, and rules, NetFlow, Layer 5-7 traffic metadata, and related technologies.
- Sound understanding of network protocols/services and network infrastructures.
- Strong verbal and presentation skills.
- Writing and editing technical/functional requirements, design specs, and design documents.
- 6 years industry experience in cybersecurity, information technology, cloud, or related roles.
- Bachelors degree in engineering, Computer Science, or other similar related field, or 5 additional years of equivalent experience.
- This position requires the ability to obtain and maintain a DoD Secret security clearance.
- The ability to travel to customer sites 0-25% as required.
- Hands-on experience with Azure or Azure Stack HCI
- Hands-on experience configuring and optimizing server and data center hardware.
- Understanding of modern threat environments and attack types, as well as secure system design; hands-on experience with any of the following are a plus:
- Security incident response, vulnerability assessment, or penetration testing
- Threat modeling, threat analysis, and ATTCK
- Strong analytical skills, critical thinking skills and problem-solving skills.
- Capability to independently complete project tasks with minimal supervision.
- DevOps and DevSecOps focus with experience building and deploying infrastructure with automation like Ansible, Chef, Puppet, Terraform, etc. with security features and secure system design built in.
- Self-motivated, highly organized and detail oriented with the ability to work independently, prioritize and multi-task.
- Domain-related certifications are a plus, such as from Microsoft, SANS, Offensive Security, ISC2, etc.
- Experience performing technical writing and editing.
- Prolonged periods of sitting at a desk and working on a computer
- This is a remote / work-from-home role.
- Competitive salary commensurate with experience
- Paid Time Off (PTO)
- Paid Holidays
- 401(k) Retirement Plan
- Health, Dental, Vision and Life insurance
- Short Term and Long-Term Disability insurance
- Monetary assistance with training and certifications
Ardalyst Defense, LLC is an EOE that empowers employees, no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristicto meet and exceed customer expectations and thrive in a collaborative and dynamic work environment.
