Leidos is seeking a Senior Cyber Intrusion Analyst to work in either Vicksburg, MS, or Hillsboro, OR. Alternatively, this role can be performed remotely.
Technical Subject Matter Expert leads security event monitoring and security configuration of McAfee IPS/IDS, Sourcefire, BRO, SNORT and similar intrusion detection and prevention technologies. Proven experience and ability to leverage CND analyst toolsets to detect and respond to IT security incidents.
Ability to implement standard procedures for intrusion and related cyber incident response.
Conducts research and document threats and their behavior to include monitoring internal and external cyber threat intelligence sources.
Provide recommendations to threat mitigation strategies.
Perform routine event reporting over time including trend reporting and analysis. Experience required in security or network technology (Unix/Windows OS, Cisco/Juniper Routing-Switching) within a hands-on design/Implementation/Administration role.
Demonstrates in-depth knowledge of TCP-IP protocol implementations for all common network services.
Professionally certified, within a CND discipline, as Technical Level III as defined by DODI 8570 is a requirement.
?Define/Maintain security configurations and policies for IDS/IPS technologies
?Maintain detection signatures; deploy new detection signatures
?Monitor SIEM events related to implemented IDS/IPS technologies
?Configure and enforce audit and logging policies for IDS/IPS technologies
?Define/monitor STIG compliance of intrusion management technologies
8+ years overall relevant experience required:
- McAfee, Sourcefire, SNORT, BRO, similar IDS/IPS technologies
- Windows and Linux Operating Systems both workstation and servers
- ArcSight SIEM
- Intrusion incident response
Required Education: Bachelor's degree from accredited university/college in Computer Science, Information Technology or related field; Associates degree with five additional years applicable experience acceptable.
CISSP or CEH, and computing environment certification in IDS/IPS technology, CCNA-Security, or equivalent to meet 8570 IAT-III certification requirements.
Clearance : Must possess current/active Secret clearance
McAfee IDS/IPS appliances, Sourcefire appliance, Dell Poweredge servers; Dell Workstations and laptop computers
Server & Operating Systems / Software
Windows 2008/2012 Server, Windows 7/10, MS Office 2013, Cisco IOS, RedHat Enterprise Linux 5.0 and higher
Leidos is a global science and technology solutions leader working to solve the world?s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company?s 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit . The company?s diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer. - provided by Dice