Address
Form of workJob Category:Engineering - Tier 1
Job Title:Senior Network Security Engineer
Project, Time and MaterialsNo
Pass Through:N/A
Resume Submittal Deadline:02/18/2014
Start Date:03/04/2014
End Date:03/03/2017
Daily Start Time:8:00 AM
Daily End Time:5:00 PM
Contract to Hire:Yes
Salary Range:
Low:$85,000.00
High:$90,000.00
Number of Positions:3
Occupational Temporary position (CWA/IBEW):No
Will you conduct a phone interview?Yes
Must Wear Pager/Cell:No
Dress Code:Casual
Access to the internet for eTEMP timesheet entry:Yes
Project Name:
Network Security -Threat Management Analyst
Project Description:
(What project will the NPW be working on?)
Responsible for supporting and monitoring clients Network Security infrastructure. The candidate will be responsible for validating attacks against clients networks and assessing the impact. If any countermeasures are required, the candidate is responsible for making the appropriate recommendation and, in some cases, implementing the resolution. Candidate will utilize a variety of network
Support Threat Management Analysis of both Managed Intrusion Detection devices as well as Distributed Denial of Service alerts.
Job Description:
(What will the NPW do on that project?)
US citizenship is required!
Primary responsibility is to provide Network Security customer support in a shared
environment supporting multiple customers
? Responsible for general architecture, initial configurations and subsequent
management of one or more SIEM (Security Event and Information Management)
systems
? Provide 7x24 production support to accept, operate, and maintain security
elements
? Identify security incidents, provide supporting information to clients, and support
the client through containment and remediation during setup and initial phases of
project
? Troubleshoot end to end network and application connectivity.
? Manage authentication, authorization, and accounting (AAA)
? Perform intermediary connectivity provisioning, application and network
troubleshooting, policy audits, and preventive maintenance on Network Security
elements
? Conduct network risk assessments on all work performed.
? Monitor security events and conduct regular reviews of log files, platforms,
products and services
? Conduct daily, weekly, and monthly proactive maintenance activities per SecOps
Management directives
Education
? Bachelors in CS/EE or equivalent
Candidate will provide security analysis, notification and reporting for clients based on IDS (NIDS & HIDS), IPS, anomaly detection and DDoS defense alerts. Candidate will conduct in-depth analysis based on IP information, protocol headers, data payloads, log data, alert trends and correlated event data. Candidate will identify security incidents, provide supporting information to clients, and support the client through containment and remediation. Candidate will differentiate valid alerts from false positives, tune the IDS/IPS/ADS configurations, update device policy, establish filters, and install updates. Ultimately responsible for defining, tracking and maintaining the standard baselines and configuration sets of all managed and/or monitored security devices and implementing industry best practices with regards to IDS/IPS, anomaly detection and network configurations. Candidate must also spend a proportion of his/her time keeping up with current vulnerabilities, attacks and appropriate countermeasures.
****This is a client-facing position requiring strong communications and customer support skills. May interface with other stakeholders including vendors, application development and technical support staff. Additionally will provide advanced technical support as a Security Analyst in the Security Operations Center.
****Candidate must be a US Citizen.
A background and credit check will be required on all engaged candidates (Public Trust Clearance).
This is a 24x7 Managed Security Service Provider (MSSP) environment, so candidates should be prepared to work a 2nd, 3rd or weekend shift if 1st shift spots are unavailable.
The Telecommunication Managed Security Services Team is seeking qualified candidates for Custom Service Delivery role.
The candidat primary responsibility is to provide Network Security customer support in a shared environment supporting multiple customers, handling Fault and Change Management.
The skill set required for the position would be equivalent to a Tier 3 in TCP/IP and Security in a virtual team environment.
TO BE CONSIDERED QUALIFIED FOR THIS ASSIGNMENT SUBMITTED CANDIDATES MUST HAVE
U.S. CITIZEN NO EXCEPTIONS
Checkpoint Firewall (see note)
Cisco Firewalls - ASA/PIX/FWSM (see note)
Juniper Firewall - ScreenOS/JunOS (see note)
General knowledge of TCP/IP and internetworking (switches, routers, servers, etc.)
Previous customer service experience
Excellent communication skills to a range of stakeholders with varying skill sets
Excellent time management skills
Flexibility - will be required to work off-shifts and weekends based on needs of the business
Ability to work well under pressure in a fast paced environment
Great team interaction and partnering is a must, but must also be able to handle many tasks alone
Obtain Publicm Trust clearance within 9 days of assignment start.
NOTE: For Checkpoint, Juniper and Cisco firewalls minimum requirement is intermediate but expert in one or more will garner higher consideration.
DESIRED SKILLS/EXPERIENCE
Blue coat proxy
Websense
Knowledge of Unix (Solaris/Linux
Required Tests and Certifications
Required Tests:
Test One:Credit Check
Test Two:None Selected
Required Certifications:
Certification One:None Selected
Certification Two:None Selected
Skills Inventory
Skill Experience Need
1)TCP/IP KnowledgeExpert Required
2)Intrusion Detection / Prevention (IDS/IPS)Expert Required
3)IP Packet AnalysisExpert Required
4)Attack RecognitionExpert Required
5)Anomaly DetectionIntermediate Required
6)System/Network AdministrationIntermediate Required
7)Firewall KnowledgeIntermediate Required
8)Routing/SwitchingIntermediate Desired
9)Unix/Linux KnowledgeIntermediate Desired
10)U S CitizenExpert Required
