Jobs
>
Herndon

    Lead Content Developer - Herndon, United States - Workday

    Workday
    Workday Herndon, United States

    3 weeks ago

    Default job background
    Description
    Looking for an opportunity to make an impact?


    At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success.

    We empower our teams, contribute to our communities, and operate sustainably.

    Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.

    Our Mission, Vision, and Values guide the way we do business.

    If this sounds like the kind of environment where you can thrive, keep reading


    Leidos Intelligence Group uses a wide range of capabilities in Digital Modernization, Mission Software Systems, and enabling technologies like Artificial Intelligence and Machine Learning to support our customers' mission to defend against evolving threats around the world.

    Our team's focus is ensuring our intelligence customers have the right tools, technologies, and tactics to keep pace with an ever-evolving security landscape and succeed in their pursuit to protect people and critical assets.

    Your greatest work is ahead


    Leidos is hiring for a Lead Content Developer / Cyber Threat Detection Developer to work onsite in Northern Virginia supporting our TSA customer in their Security Operations Center.

    You will Utilize Splunk Enterprise Services SIEM to proactively research and then apply custom detection capabilities from disparate data sources such as:
    cyber threat intelligence, vulnerability data, campaign and indicators of compromise.

    These threat detection data types will be used to develop custom security, engineering, and or applicable dashboards; validate existing and/or create new correlation rules and alerts, as well as validate the index sources of the SIEM to ensure a thorough defense in depth for the enterprise.

    This position is contingent upon contract award.


    What you'll be doing:


    Participate in briefings to provide expert guidance on new threats and will act as an escalation point for cyber analysts and engineering leads.

    Author reports and/or interface with customers for ad-hoc requests.
    Participate in discussions to make recommendations on improving SOC cyber visibility, process improvements, and reducing the incident remediation period.

    Investigate and analyze all logs available within the SIEM, document workflows, and identify process improvements in the handling and remediation of cyber security events.

    Leverage deep understanding of how to develop custom content within the Splunk SIEM using advanced SPL language and data models or other network security tools to detect threats and attacks.

    Capture use cases from subscribers or other team members to develop custom correlation rule(s), validate and or create new dashboard(s) and validate all index sources for applicability within the Splunk environment.

    Utilize knowledge of latest cyber threats and attack vectors to develop and or maintain custom Splunk correlation rules from all indexed sources

    to support continuous event monitoring and alerting.
    Develop, manage, and maintain Splunk data models.

    Review all existing network event sources to determine if relevant data is present and make technical recommendations to remediate any missing log components.

    Review and or suggest new log and event index types as new devices are brought into the enterprise network.
    Develop custom regex to create custom knowledge objects.
    Developing custom SPL using macros, lookups, etc., and network security signatures such as SNORT, YARA and Zeek.
    Develop custom dashboards and reports for customer stakeholders.
    Train and mentor junior staff.
    Normal working hours of 8:00am – 5:00pm, however actual hours may vary depending on mission requirements.

    What does Leidos need from me?
    Minimum of an active Secret security clearance required.
    Bachelor's in Information Technology, Computer Science, Cybersecurity or related field and 12 to 15 years of prior relevant experience.
    Five years of experience in developing, implementing, and managing Splunk correlation rules and content.
    One of the following certifications is required: CISSP, GCIH, GCFA, GPEN, GWAPT, GCIA, or equivalent.

    Certification:
    Splunk Core Certified Advanced Power User certification.

    Must possess strong written and verbal communication skills and must be capable of the understanding, documenting, communicating and presenting technical issues in a non-technical manner to audiences with varying degrees of technical expertise.

    Extensive experience working with various security methodologies and processes.

    Advanced knowledge of TCP/IP protocols, experience configuring and implementing various technical security solutions, extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices.

    Must have demonstrated ability to build and implement event correlation rules, logic, and content in the security information and event management system with specific experience in the Splunk environment.

    Must have demonstrated ability to tune the SIEM event correlation rules and logic to filter out security events associated with known and well-established network behavior, known false positives and/or known errors.

    Experience maintaining an event schema with customized security severity criteria.
    Experience creating scheduled and ad-hoc reporting with SEIM tools.
    Thorough and in-depth understanding of SEIM technologies and event collector deployments in the Windows and Linux operating environments.
    Experience developing advanced correlation rules utilizing stats and data models for cyber threat detection.
    Experience creating and maintaining Splunk knowledge objects.
    Experience managing and maintaining Splunk data models.
    Experience creating regex for pattern matching.
    Experience implementing security methodologies and SOC processes.


    Favorable if you have:
    Splunk Enterprise Security Admin, Splunk Certified Developer certification.
    Experience with cloud (e.g. o365, Azure, AWS, etc.) security monitoring and familiar with cloud threat landscape.
    Experience analyzing Packet Capture formatted data (PCAP).
    Experience developing custom scripts using Python.


    Pay Range:
    Pay Range $118, $213,850.00

    The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.

    Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

    #J-18808-Ljbffr
  • Eliassen Group

    Content Developers

    3 weeks ago

    Eliassen Group Herndon, United States

    Job Description · We have an exciting 100% remote opportunity for a Content Developers with our industry-leading client. · Due to federal security clearance requirements, applicant must be a United States Citizen or Permanent Resident with an active Public Trust clearance. · Ra ...

  • Eliassen Group

    Content Developers

    1 week ago

    Eliassen Group Herndon, United States

    Job Description We have an exciting 100% remote opportunity for a Content Developers with our industry-leading client. · Due to federal security clearance requirements, applicant must be a United States Citizen or Permanent Resident with an active Public Trust clearance. · Rate ...

  • All Native Group

    Elearning Content Developer

    2 weeks ago

    All Native Group Arlington, United States

    Summary: · All Native Group is seeking a eLearning Content Developer to serve as lead for the rapid development of eLearning products such as games, quizzes, courses, and other trackable assets developed for IT training curricula and learning activities. · **Essential Functions** ...

  • The Dignify Solutions LLC

    Splunk Content Developer

    2 weeks ago

    The Dignify Solutions LLC Herndon, United States

    Hands-on experience in Splunk content development · Continuous learning mindset to stay updated with the rapidly evolving cyber threat landscape · Windows and Linux operating system administration and Hardware, software, and network-level troubleshooting · Prior DoD or FedRAMP ex ...

  • Azzur Group

    Certified Splunk Content Developer

    3 weeks ago

    Azzur Group Herndon, United States

    Attn: This is a HYBRID POSITION for LOCAL Candidates commutable to Herndon, VA Only · Job Title: Hybrid Splunk Content Developer (Washington DC Metro US Citizens Only) · Job Description: · As a Splunk Content Developer at our prestigious client, you will be entrusted with the cr ...

  • Omm IT Solutions

    Web Content Editor/Mid-level Developer

    2 weeks ago

    Omm IT Solutions Washington, United States

    Please Note: This is an On-Site position. · About the role: · The Web Content Editor writes and maintains the web page code; analyzes and implements best coding practices into the project code. · The Web Content Editor analyzes user and technical requirements of the project and a ...

  • Air Line Pilots Association

    Digital Content Developer

    2 weeks ago

    Air Line Pilots Association Vienna, United States

    Digital Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), ...

  • Air Line Pilots Association

    Digital Content Developer

    2 weeks ago

    Air Line Pilots Association Tysons (McLean), VA, United States

    · Digital Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), V ...

  • Air Line Pilots Association

    Digitial Content Developer

    3 weeks ago

    Air Line Pilots Association Tysons (McLean), VA, United States

    · Digitial Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), ...

  • Air Line Pilots Association

    Digitial Content Developer

    2 weeks ago

    Air Line Pilots Association Tysons (McLean), VA, United States

    · Digitial Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), ...

  • Air Line Pilots Association

    Digital Content Developer

    1 day ago

    Air Line Pilots Association Tysons (McLean), VA, United States

    · Digital Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), V ...

  • Air Line Pilots Association

    Digital Content Developer

    2 weeks ago

    Air Line Pilots Association Tysons (McLean), United States Full time

    · Digital Content Developer & Trainer · US-VA-Tysons (McLean) · Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), V ...

  • Techsur Solutions LLC

    Social Media Strategist

    3 weeks ago

    Techsur Solutions LLC Herndon, United States

    **Job Title**:Social Media Strategist · **Location: Fully Remote** · **Salary: 1099/w2** · **Clearance**:Not Required** · **Position Description** · **Responsibilities**: · - ** Develop and Implement Social Media Strategy**: · - Lead the development and execution of comprehensive ...

  • Sierra Nevada Corporation

    Proposal Writer Iii

    1 week ago

    Sierra Nevada Corporation Herndon, United States

    This is a high-visibility position with direct impact on SNC growth. The Technical Writer will have great opportunities to work with SNC strategic and technology leaders to craft winning proposals for major US and international programs. The Tech Writer must work across SNC busin ...

  • Floris United Methodist Church

    Website Coordinator

    1 week ago

    Floris United Methodist Church Herndon, United States

    **Who We Are** · Floris UMC/Restoration Church is a multi-site church with a shared mission and vision. We choose to be a vital, Christ-centered church where all people believe that they can come as they are, find community, build real relationships, and grow in their faith. We s ...

  • Air Line Pilots Association

    Digitial Content Developer

    3 weeks ago

    Air Line Pilots Association McLean, VA, United States

    Digitial Content Developer & Trainer · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # Communications/Media/Public Relations - Digital Content Developer & Trainer · Digital Content Developer & Trainer · The Air Line Pilots Association, International (ALPA) , the largest airline pi ...

  • Team Velocity

    Website Support Specialist

    2 weeks ago

    Team Velocity Herndon, United States

    As a **Website Support Specialist**, you must possess superior problem-solving and communication skills and have a working knowledge of web-building software, basic HTML & CSS website coding principles and best practices. You have experience working in a support role related to w ...

  • Shuvel Digital

    Cybersecurity Detection Content Developer

    1 week ago

    Shuvel Digital Vienna, United States

    Vienna, VA--Hybrid-1 day week onsite needed · Cyber Security Content Development: · Create high-confidence security monitoring content consisting of dashboards and alerts within SIEM and other network security tools (Hybrid/Cloud) to detect threats, suspicious activities, poten ...

  • Shuvel Digital

    Cybersecurity Detection Content Developer

    3 weeks ago

    Shuvel Digital Vienna, United States

    Vienna, VAHybrid-1 day week onsite needed · Cyber Security Content Development: · Create high-confidence security monitoring content consisting of dashboards and alerts within SIEM and other network security tools (Hybrid/Cloud) to detect threats, suspicious activities, potenti ...

  • Air Line Pilots Association

    Digitial Content Developer

    2 weeks ago

    Air Line Pilots Association McLean, VA, United States

    Digitial Content Developer & Trainer US-VA-Tysons (McLean) Job ID: · Type: 4 (Exempt, Bargaining Unit 1 (EB) · # of Openings: 1 · Category: Communications/Media/Public Relations - Digital Content Developer & Trainer · Air Line Pilots Association, Int'l., Tysons (McLean), Virgi ...