- Create high-confidence security monitoring content consisting of dashboards and alerts within SIEM and other network security tools (Hybrid/Cloud) to detect threats, suspicious activities, potential incidents, an aid in analytical-investigations.
- Continuously evaluate and optimize custom and OOTB (out of the box) detection content monitoring various on-prem and cloud servive provider environments in support to SOC operations.
- Serve as lead cyber security content SME for collaboration with various teams for purposes including, but not limited to threat intelligence, hunt operations, red team engagements, identity management, security architecture review, security event logging issues, and detection content management for identifying gaps and enhancing NFCU cyber security monitoring posture.
- Troubleshoot issues in production and other test and development environments, applying debugging and problem-solving methodologies (e.g., log analysis, non-invasive tests).
- Conduct independent critical thinking to diagnose and analyze threat intelligence data, latest threats and attack vectors, tactics, techniques, and procedures (TTPs) to make decisions on the most effective response and remediation strategies through content development.
- Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats and vulnerabilities impacting the NFCU organization.
- Develop technical documents including, but not limited to content creation, content/rule review process, language-specific querying for disparate log sources, network/security visibility issues, detection gaps, SOPs, and monitoring strategies.
- Continuously executes timely and effective communication across team and management channels regarding tasks completed, roadblocks experienced, and process improvement opportunties identified.
- 7+ years of experience within cyber security operations and SIEM technologies serving in a senior analyst or supervisory role.
- Advanced knowledge of content creation concepts, content development management, content testing, implementation, the revision cycle, and cybersecurity threat analysis of complex events.
- Advanced skills in monitoring and analyzing logs and alerts from a variety of different technologies and sources, to include but not limited to IDS/IPS, firewall, proxies, network/host, anti-virus, OS events, application/database, EDR, NDR, Cloud (IaaS, PaaS, SaaS).
- Advanced skill in developing complex detection content using various data sources and query languages - e.g., custom SPL(macros, lookups, regex) SNORT, YARA, KQL
- Experience in analyzing security systems, and how changes in conditions, operations, or the environment will affect deployed monitoring content.
- Experience in applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
- Advanced knowledge of security architectures, devices, proxies, firewalls, and system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
- Advanced understanding of blue team/red team processes and technologies and their applicability to custom content development
- Advanced verbal and written skill presenting complex findings, conclusions, alternatives, and information clearly and concisely to all levels of management, supervisors, stakeholders and vendor through advanced research, analytical, and problem solving skills
- Required: Experience with security tools related to IPS/IDS, Antivirus, Firewalls, Proxies, DLP, Forensic Analysis, Malware analysis, SIEM, Cloud, and the content development lifecycle
- Required: Advanced skill in analyzing log events for on prem and cloud technologies to facilitate development of cyber defense detections
- Desired: Splunk Power User, CySA+, CASP+, CISSP or other related Information Security certifications
- Desired: Bachelor degree in cybersecurity or related discipline
- Desired: Advanced knowledge of IT security standards and frameworks (e.g., MITRE ATT&CK )
-
Digital Content Developer
2 weeks ago
Air Line Pilots Association Vienna, United StatesDigital Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), ...
-
Digitial Content Developer
3 weeks ago
Air Line Pilots Association McLean, VA, United StatesDigitial Content Developer & Trainer US-VA-Tysons (McLean) Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), Virgi ...
-
Digitial Content Developer
3 weeks ago
Air Line Pilots Association Tysons (McLean), VA, United States· Digitial Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), ...
-
Digital Content Developer
6 days ago
Air Line Pilots Association Tysons (McLean), VA, United States· Digital Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), V ...
-
Digital Content Developer
3 weeks ago
Air Line Pilots Association Tysons (McLean), VA, United States· Digital Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), V ...
-
Content Developer
3 days ago
Leidos Reston, United StatesDescription · Leidos is seeking an experienced threat detection engineer to join our team on a highly visible cyber security single-award IDIQ vehicle. Duties include proactively searching for threats. Inspect traffic for anomalies and new malware patterns. Investigate and analy ...
-
Cybersecurity Detection Content Developer
2 weeks ago
Shuvel Digital Vienna, United StatesVienna, VA--Hybrid-1 day week onsite needed · Cyber Security Content Development: · Create high-confidence security monitoring content consisting of dashboards and alerts within SIEM and other network security tools (Hybrid/Cloud) to detect threats, suspicious activities, poten ...
-
Digital Content Developer
3 weeks ago
Air Line Pilots Association Tysons (McLean), United States Full time· Digital Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), V ...
-
eLearning Content Developer
3 weeks ago
All Native Group Arlington, United StatesSummary: · All Native Group is seeking a eLearning Content Developer to serve as lead for the rapid development of eLearning products such as games, quizzes, courses, and other trackable assets developed for IT training curricula and learning activities. · Essential Functions ...
-
Content Developers
4 weeks ago
Eliassen Group Herndon, United StatesJob Description · We have an exciting 100% remote opportunity for a Content Developers with our industry-leading client. · Due to federal security clearance requirements, applicant must be a United States Citizen or Permanent Resident with an active Public Trust clearance. · Ra ...
-
Content Developer Intern
4 weeks ago
Radiance Technologies Arlington, United StatesRadiance Technologies, a rapidly growing and 100% employee-owned company is growing our presence in the National Capital Region. Radiance's culture is built upon our commitment to our customers and our employee-owners. We are a company built on entrepreneurship, empowerment, and ...
-
Digitial Content Developer
4 weeks ago
Air Line Pilots Association McLean, VA, United StatesDigitial Content Developer & Trainer · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # Communications/Media/Public Relations - Digital Content Developer & Trainer · Digital Content Developer & Trainer · The Air Line Pilots Association, International (ALPA) , the largest airline pi ...
-
Content Developers
1 week ago
Eliassen Group Herndon, United StatesJob Description We have an exciting 100% remote opportunity for a Content Developers with our industry-leading client. · Due to federal security clearance requirements, applicant must be a United States Citizen or Permanent Resident with an active Public Trust clearance. · Rate ...
-
Digitial Content Developer
4 weeks ago
Air Line Pilots Association McLean, VA, United States· Digitial Content Developer & Trainer US-VA-Tysons (McLean) Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean) ...
-
Junior Splunk Content Developer
8 hours ago
Zermount, Inc Arlington, United StatesJob Description · Job DescriptionJunior Splunk Content Developer · MILITARY FRIENDLY & PREFERRED - HOH SPONSOR · SUMMARY: · Zermount Inc. is looking for a Junior Splunk Developer to assist with maintaining custom Splunk apps and interfaces for our clients. The candidate must be v ...
-
Splunk Content Developer
3 weeks ago
The Dignify Solutions LLC Herndon, United StatesHands-on experience in Splunk content development · Continuous learning mindset to stay updated with the rapidly evolving cyber threat landscape · Windows and Linux operating system administration and Hardware, software, and network-level troubleshooting · Prior DoD or FedRAMP ex ...
-
Lead Content Developer
4 weeks ago
Workday Herndon, United StatesLooking for an opportunity to make an impact? · At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Everything ...
-
Content Developer
4 days ago
Leidos Ashburn, United States Full timeDescription · Leidos is seeking an experienced threat detection engineer to join our team on a highly visible cyber security single-award IDIQ vehicle. Duties include proactively searching for threats. Inspect traffic for anomalies and new malware patterns. Investigate and analy ...
-
Elearning Content Developer
3 weeks ago
All Native Group Arlington, United StatesSummary: · All Native Group is seeking a eLearning Content Developer to serve as lead for the rapid development of eLearning products such as games, quizzes, courses, and other trackable assets developed for IT training curricula and learning activities. · **Essential Functions** ...
-
Senior Content Developer
1 week ago
Leidos Bethesda, United StatesLooking for a rewarding career challenge? · Unleash your potential · at Leidos, · we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customer's success. We empower our teams, contribute to our communities, and operate ...
Cybersecurity Detection Content Developer - Vienna, United States - Shuvel Digital
Description
Vienna, VAHybrid-1 day week onsite needed
Cyber Security Content Development: