Join our talent network

Job #: R-00002514_35928252067_0
Location: Hillsboro, OR
Category: Cyber Security
Schedule (FT/PT): Full time
Travel Required: Yes, 10% of the time
Shift: Day
Potential for Telework: Yes
Clearance Required: Secret
Referral Eligibility: Eligible
Group: Civil

Job Description:

Role Description:

Leads security event monitoring and security configuration of Palo Alto Firewall/IDPS, Sourcefire, FireEye, BRO, SNORT and similar intrusion detection and prevention technologies.

Ability to configure and support SIEM platforms like ArcSight, Splunk, Kafka or similar.

Proven experience and ability to leverage CND analyst toolsets to detect and respond to IT security incidents.

Ability to implement standard procedures for intrusion and related cyber incident response.

Conducts research and document threats and their behavior to include monitoring internal and external cyber threat intelligence sources.

Provide recommendations to threat mitigation strategies.

Perform routine event reporting over time including trend reporting and analysis. Experience required in security or network technology (Unix/Windows OS, Cisco/Juniper Routing-Switching) within a hands-on design/Implementation/Administration role.

Demonstrates in-depth knowledge of TCP-IP protocol implementations for all common network services.

Professionally certified, within a CND discipline, as Technical Level III as defined by DODI 8570 is a requirement.

• Configure and maintain various cyber security platforms
• Define/Maintain security configurations and policies for IDS/IPS technologies
• Maintain detection signatures; deploy new detection signatures
• Monitor SIEM events related to implemented IDS/IPS technologies
• Configure and enforce audit and logging policies for IDS/IPS technologies
• Define/monitor STIG compliance of intrusion management technologies

Required Education:

Bachelor's degree from accredited university/college in Computer Science, Information Technology or related field; Associates degree with five additional years applicable experience acceptable.

8+ years overall relevant experience required:

- Palo Alto, Sourcefire, SNORT, BRO, similar IDS/IPS technologies
- Windows and Linux Operating Systems both workstation and servers
- ArcSight SIEM
- Intrusion incident response

Required Certifications:

CISSP or CEH, and computing environment certification in IDS/IPS technology, CCNA-Security, or equivalent to meet 8570 IAT-III certification requirements.

Clearance: Must possess current/active Secret clearance

Desired Qualifications:

Palo Alto Firewall and IDS/IPS, Sourcefire, FireEye, Arcsight/SIEM, JRSS, ASA, Linux System Administration; Windows Server OS, Cisco IOS

External Referral Bonus:
Eligible

Potential for Telework:
Yes

Clearance Level Required:
Secret

Travel:
Yes, 10% of the time

Scheduled Weekly Hours:
40

Shift:
Day

Requisition Category:
Professional

Job Family:
Cyber Security

1000

Civil
Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company’s 31,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.17 billion for the fiscal year ended December 29, 2017. (NYSE: LDOS) All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.

Talent Community

Join our Talent Community to create a profile, enabling a streamlined application process and to help our recruiters better understand your areas of expertise and interest.

Join our Talent Community