No more applications are being accepted for this job
- Maintain the functionality, efficiency, and sustainment of Cybersecurity Network Defense Infrastructure systems including Palo Alto, ArcSight, Suricata, and others
- Monitor and evaluate signature alerts from Intrusion Detection/Intrusion Prevention Systems (IDS/IPS) for actionable events and suppression of false positives
- Provide "tune-or-drop" recommendations to the Defense Countermeasures Team following the Signature Lifecycle Review procedure
- Develop dashboards, data models, and trending reports to convey cybersecurity posture
- Create programmatic documentation, standard operating procedures, and operational checklists
- Design and customize complex search queries for advance searching, forensics, and analytics
- Work with security engineering team to integrate new capabilities, plan life cycle replacements, and provide input into the security architecture roadmaps What you'll need to have
- 8570 IAT Level II Certification (typically Security+)
- Secondary Certification (CEH, CySA+, Cloud+, CND)
- TS/SCI with CI Poly, or willingness and ability to be cleared
- High School+12 years; Bachelor's+8; Master's+6
- Experience with network security topologies, devices, and services
- Experience with IDS/IPS operations and optimizations
- Experience developing Splunk dashboards
- Experience configuring rules using regular expressions and scripting languages
- Experience developing and implementing Snort and Suricata signature files
- Experience configuring Palo Alto firewalls Strengths you'll bring to our team
- Passion for learning and professional growth
- Eagerness to help customers, peers, and juniors
- Taking ownership to do the right things right
- Building trust by delivering results that make a difference
- Comfortable communicating good news, bad news, challenging opinions, and innovative ideas All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.
Cybersecurity Systems Engineer - Colorado Springs, CO, United States - Antero Technology Services, LLC
Description
Are you ready to grow as a Cybersecurity Systems Engineer - Intrusion Detection? Antero Technology Services is looking for a proactive person with a TS/SCI clearance to join our Cybersecurity TeamWe are charged with defending a globally distributed, mission-critical network infrastructure from probing, attacks, and intrusions
As part of our team, you'll monitor IDS/IPS alerts and continuously tune your systems including Suricata, Palo Alto, ArcSight, and others
You'll develop process scripting, dashboards, and application health monitoring automation to make your systems robust and reliable across the global enterprise
Your Place in Our Team We're a small business which means you make a big difference with our team
We offer full company-paid health plans, time off, retirement, and other financial benefits
Our culture thrives on learning, and our professional growth program helps pay for your advancement
We encourage leadership growth too, and we'll help you build and lead a team of your own
What you'll be doing