Vienna, VA, 22185, USA
1 day ago
Top Secret Splunk Engineer
Job Description Cyber Engineering supports patch management, intrusion prevention, intrusion detection, consolidated log analysis, as well as perform analysis of infosec incidents.  Work closely with Information Assurance to support enterprise data calls, Authorization to Operate (ATO) efforts and investigation of suspicious system behavior.  Install, configure and maintain Splunk infrastructure including premium apps such as ITSI and SIEM.  Install, configure and maintain network security devices such as IDS, IPS and related infrastructure.  Create custom IPS signatures from IC reporting or from researching emerging threats on the internet to protect the program from emerging threats.  Provide technical advice, guidance, and recommendations related to cyber topics impacting planning, systems and operations.  Collect system and related logs as required by ITU and Enterprise policies, ensure ESOC access to log repositories.  Establish vulnerability reporting criteria; monitor all vulnerability patch requirement (VPR) sites used for standard security incident tracking.  Oversee and coordinate software and security patches and fix implementation in a timely manner.  Coordinate patching with Information Assurance; ensure all necessary software patches, fixes and upgrades needed to comply with security policies and to address new vulnerabilities are applied.  Investigate possible malicious attacks and follow the Security Incident Response plan when a possible cyber-attack takes place; brief management when an incident occurs and the steps taken to mitigate the security event.  Perform vulnerability analysis and work with the system administrators to resolve the vulnerabilities or to develop a system corrective action plan.  Perform analysis of malicious packets using Wireshark.  Maintain awareness of real time threats, vulnerabilities and cyber incidents and their potential impact to program systems.  Attend ITU and Enterprise cyber security meetings including, but not limited to, ITU POA&M and ESOC Security Briefing.  Assess selected security controls based on the organization-defined continuous monitoring strategy; provide security status reporting to appropriate IT management.  Assist with implementing NIST SP-800-37, Risk Management Framework for Information Systems and Organization.  Coordinate IT Engineering related POAMs; perform Cyber Engineering related mitigations and responses as applicable. We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .     To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ . Skills and Requirements -BA/BS Degree and 4 years of experience -TS Clearance - Experience in Design, develop, and maintain the database infrastructure team transitioning from Oracle based to NoSQL based infrastructure - Experience in Plan, create, test, tune, configure and maintain MarkLogic, NoSQL databases and coordinate with DEV to test new versions of custom applications and setup the operational databases null We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.
Confirm your E-mail: Send Email