Suricata Engineer

Job Title: Suricata Engineer



Location: Washington D.C.



Eligibility: Candidate must possess an active TS/SCI w/ CI Poly

clearance



Job Description:



Collaborates to develop innovative solutions to enable secure and

reliable operations of enterprise computer systems. Works individually

or in a small integrated team, and may also lead a task, project, or

team. Ensure project completion and provide guidance and direction to

lower-level technicians, specialists, and managers. Develop new concepts

and processes and analyze root causes and resolve complex issues

utilizing your full knowledge of industry. Perform systems

administration of cyber tools sets and server systems connected to

networks across multiple classification domains. Provide support to

developmental and operational systems, including day-to-day operations,

monitoring, and problem resolution for all client, server, storage, and

network devices. Configure and manage Windows, UNIX, and Linux, and

install and load operating system and application software, including

Host-based Security System, Endpoint Security Suite (ESS), Splunk,

Cribl, and network security tools, including Firewalls and ForeScout.

Support Windows and Linux systems engineering efforts in system design

and evaluation, solution engineering, software development, or system

administration.



Basic Qualifications:



· 4+ years of experience as a systems administrator



· Experience with operating and maintaining both Linux and Windows

servers



· Experience with installing, configuring, or maintaining devices,

applications, and security tools, including Suricata, Palo Alto

Firewalls, Trellix ESS (formerly McAfee HBSS), ePO, and FireEye tools,

Splunk and Cribl or ForeScout



· Experience with automating deployments, configuration management, or

cybersecurity tools operations



· Experience with DoD Risk Management Framework



· HS diploma or GED and 7+ years of experience with supporting IT

projects and activities, Associate's degree and 5+ years of experience

with supporting IT projects and activities, Bachelor's degree and 3+

years of experience with supporting IT projects and activities, or

Master's degree and 2+ years of experience with supporting IT projects

and activities



· Active TS/SCI clearance; willingness to take a polygraph exam



· Active DoD 8570.01-M Information Assurance Technician (IAT) Level II

Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+,

GICSP, or CND



· Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider

(CSSP) - Infrastructure Support (IS) certification, including CEH,

CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND prior to start date.



Optional Qualifications:



· Experience as a network administrator or systems engineer



· Experience with Gigamon, FireEye, Ansible, Encase, Fidelis, Varonis,

or VMWare tools



· Experience with DoD STIGs



· Experience with scripting in PowerShell and BASH command line

interfaces



· Experience with using Active Directory to manage Windows policies



· Experience with creating system and network diagrams



· Knowledge of different layers of the technology stack, including

network, application frameworks, database systems, and vendor solutions



· Knowledge of Git and Atlassian tools, including Jira and Confluence,

and Microsoft Visio graphic and flowchart design