- Monitor day-to-day operations of the sensors (Suricata, Palo Alto, and ArcSight) located at supporting customer's locations.
- Perform Enterprise Defense Countermeasure (DC) activities and coordination with other government agencies to record and prepare incident reports and analysis methodology and results.
- Monitor and analyze signature alerts from Intrusion Detection/Prevention Systems (IDS/IPS) for false positives.
- Provide technical enforcement of organizational security policies.
- Provide "tune-or-drop" recommendations towards the DC team's Signature Lifecycle Review procedure.
- Provide insight to Detection and Response teams on signature functionality and providing signature tuning as needed.
- Communicate with customers and teammates clearly and concisely.
- Maintain current knowledge of relevant technology as assigned.
- Participate in special projects as required.
- Position is day shift but may require evening, weekend or shift-work (depending on operational tempo).Required Skills
- Experience authoring Snort signatures.
- Experience authoring Yara rules.
- Experience with Perl Compatible Regular Expressions (PCRE).Desired Skills
- Experience in intrusion detection and prevention systems.
- Proficient in network security technologies and protocols.
- Dashboarding in Splunk.
- Palo Alto Certification Next-Generation Firewall.Characteristics
- Investigates, analyzes, and responds to cyber incidents within a network environment or enclave.
- Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
- Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
- Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, includin.
-
cyber firewall administrator
3 weeks ago
Base2 Solutions Colorado Springs, United StatesOur work depends on a Cyber Security Analyst joining our team of analysts, stationed in diverse CONUS and OCONUS locations tasked with monitoring and protecting the classified and unclassified systems of a major Intelligence Community Agency for fraud, waste, and abuse, to includ ...
-
Senior Cloud DevSecOps Engineer
1 week ago
Applied Insight Colorado Springs, United States From $80, 000.00 to $180, 000.00 per yearAbout Us: Innovating to solve real-world problems · Applied Insight enhances the ability of federal government customers to preserve national security, deliver justice and serve the public with advanced technologies and quality analysis. We work closely with agencies and indust ...
-
Network Administrator
2 days ago
SAIC Colorado Springs, United StatesDescription · SAIC is seeking a Network Administrator in support of North American Aerospace Defense Command · (NORAD)/United States Northern Command (USNORTHCOM) Information Technology (IT) Enterprise Services (NITES). The purpose of NITES is to enable the J6 to provide enterpr ...
-
CACI Colorado Springs, United StatesOracle and MS SQL Server Database AdministratorJob Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: NoneEmployee Type: RegularPercentage of Travel Required: Up to 10%Type of Travel: LocalAnticipated Posting End: 6/30/2024CACI is seeking an ...
-
Systems Administrator
1 week ago
ActioNet Colorado Springs, United StatesDescription · ActioNet has an immediate opportunity for a Systems Administrator requiring a TS/SSBI located in Colorado Springs, CO . ActioNet is an IT service provider and solutions integrator that works with the Federal Government and Department of Defense. · Salary Range: ...
-
Cyber System Signature
1 week ago
GDIT Colorado Springs, United States Full timeJob Description: · Own your career as a Cyber Intrusion Detection System Administrator at GDIT. Here, you'll have the opportunity to build strong lines of cyber defense using cutting-edge technologies. Your work in cyber security at GDIT will have an impact on securing our client ...
-
Cloud Engineer
10 hours ago
KBR Colorado Springs, United States Full timeTitle: · Cloud Engineer We are looking for innovative, creative, and highly motivated individuals to support the strategic planning and tactical execution of various engineering efforts. Specifically, the full lifecycle of wide-ranging software and hardware projects within AF TE ...
-
COMSEC/Systems Administrator
2 weeks ago
Parsons Corporation Colorado Springs, United States Full timeDescription · : Parsons has emerged as a leader in the development of cutting-edge solutions for the Department of Defense and Intelligence Community. Our tremendous success can be attributed to our people and our priorities. We hire the best; we make them a priority and we neve ...
-
Network Administrator, Senior
21 minutes ago
Jacobs Colorado Springs, United States Full time-RegularNetwork Administrator, Senior-(CIS0002EY) Your Impact: If you are looking for an opportunity to advance your career and collaborate with experts in the IT industry, The Lone Wolf program offers dependable, secure, and high-quality VVD services to senior leaders within the DOD. ...
-
COMSEC/Circuit Management/SONET Engineer IRES
2 weeks ago
Jacobs Colorado Springs, United StatesYour Impact: · Challenging Today. Reinventing Tomorrow. · We're invested in you and your success. Everything we do is more than just a project. It's our challenge as human beings, too. That's why we bring a thoughtful and collaborative approach to every one of our partnerships. · ...
-
Junior DCO Network Operations Specialist IRES
3 weeks ago
Jacobs Colorado Springs, United StatesYour Impact: · Challenging Today. Reinventing Tomorrow. · We're invested in you and your success. Everything we do is more than just a project. It's our challenge as human beings, too. That's why we bring a thoughtful and collaborative approach to every one of our partnerships. · ...
-
Information Technology/Assurance
3 weeks ago
General Dynamics Information Technology Colorado Springs, United StatesThe primary function is working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Compartments efforts. The position will provide "day-to-day" support for Collateral, ...
-
Cybersecurity Admnistrator
3 days ago
Actalent Colorado Springs, United States: Bachelor's degree in an engineering discipline. Must have current DoDI 8570 certification (e.g., GSEC, Security+, SSCP). · Technical Skill Required: · Windows administrator tasks related to Windows workstation platforms are required. · RHEL administrator tasks related to Uni ...
-
Network Administrator with Security Clearance
3 weeks ago
Blackstone Talent Group Colorado Springs, United StatesBlackstone Talent Group, an award-winning technology consulting and talent agency is seeking a Network Administrator to join our Client's team. The C2BMC National Team provides technical solutions to the Missile Defense Agency (MDA) on the Command, Control, Battle Management and ...
-
Network Engineer with Security Clearance
3 weeks ago
ManTech International Colorado Springs, United StatesSecure our Nation, Ignite your Future Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you'll help protect our national security while working on innovative projects ...
-
Senior Cloud DevSecOps Engineer
3 weeks ago
Applied Insight Colorado Springs, United StatesAbout Us: Innovating to solve real-world problems · Applied Insight enhances the ability of federal government customers to preserve national security, deliver justice and serve the public with advanced technologies and quality analysis. We work closely with agencies and industr ...
-
Systems Administrator
3 weeks ago
Falcon IT & Staffing Solutions Colorado Springs, United States13th May, 2024 · Role: Systems Administrator. · Location: Colorado Springs, CO. · Job Description: · Tanzu Oriented Role:Tanzu configuration. · Kubernetes deployments. · Tanzu/Kubernetes networking. · Tanzu/Kubernetes authentication. · Version control/GitLab. · Tanzu applicable ...
-
Systems Administrator
4 weeks ago
S2 Technologies Colorado Springs, United StatesSystems Administrator · S2Technologies is currently seeking qualified candidates to join our team. We are currently looking for candidates who have experience providing Network Operations. As a Systems Administrator, you will supervise and manage the daily activities of configura ...
-
Kavaliro Colorado Springs, United StatesOur Client is seeking to hire a Product Security Engineer / Cyber Administrator to support a National Missile Defense Agency Program based out of Colorado Springs, CO. · Job Description:This role will support the Security Administration of the Development & Integration (DI) and ...
-
Computer Operator IV
2 days ago
IT Company Colorado Springs, United StatesJob Description · Job DescriptionGeneral Duties · Perform Tier I Level Support unassisted and Tier II with System Analyst assistance. Respond to and resolve help desk requests over the phone or walk-ins. All trouble calls and request will be entered into a database. Must have exp ...
Cyber Firewall Administrator - Colorado Springs, United States - Base 2 Solutions
Description
Required Security Clearance:Top Secret/SCI City:Colorado Springs State/Territory:Colorado Travel:None Potential for Teleworking:No Schedule:Full Time DoD 8570 IAT Requirement:IAT II (Security+, CySA+, CCNA Security, GICSP, GSEC, SSCP) DoD 8570 IAM Requirement:None DoD 8570 IASAE Requirement:None DoD CSSP Requirement:CSSP Infrastructure Support (CySA+, CEH, GICSP, SSCP) Last Updated:4/30/24 8:01 PM Requisition ID:123261 US Citizenship Required?:YesOur work depends on a Cyber Security Analyst joining our team of analysts, stationed in diverse CONUS and OCONUS locations tasked with monitoring and protecting the classified and unclassified systems of a major Intelligence Community Agency for fraud, waste, and abuse, to include inappropriate content, illegal activity, Identity leakage, and Insider threat activity.