Senior Blue Team Engineer

Senior Blue Team Engineer
All times are in Eastern Standard Time.
Requisition ID 2016-10230
Job Locations US-VA-Rosslyn
Posted Date 10/12/2016
Category Information Technology
Clearance Level Must Currently Possess Yes- Interim Secret required to start
Telecommuting Options Telecommuting Not Allowed
Clearance Level Must Be Able to Obtain Top Secret
Opportunity Details: Overview:
As the largest pure-play IT services provider serving the U.S. government sector, CSRA is where you can come to be successful. Join a collaborative team, solving customer issues and accessing an array of resources for your success. Take advantage of tremendous opportunities as you help us chart our path to industry leadership, and tap into our collective 90+ year heritage. With combined FY15 revenues of approximately $5.5 billion and nearly 19,000 employees, CSRA represents the coming together - figuratively and literally - of two outstanding companies: the North American Public Sector business of CSC and SRA. Join us and watch your career take flight.
This position supports Department of State Blue Team efforts to perform vulnerability analysis in order to develop a risk picture of the enterprise and provide tailored remediation strategies to stakeholders. Vulnerability analysis includes high profile, high impact vulnerabilities, response to zero day threats and routine periodic reports. This position serves as the liaison to various IT operational teams to plan, coordinate and track mitigation and remediation activities.
Responsibilities:
Blue Team roles include risk assessment, detailed technical recommendations and coordination of remediation and mitigation strategies.
Develop and perform high-speed discovery, configuration auditing, asset profiling, sensitive data discovery, compliance and vulnerability analysis of the overall enterprise security posture. Communicate recommendations to the responsible parties, tracking of remediation and verify security patches and required configurations.
Analyze available security information including results of configuration compliance verification, vulnerability scans, database assessments, security and system patch information, field reports, OIG reports, and intelligence information to assess the status of remote organizations and their cyber security posture.
Support incident response, threat analysis, forensics and penetration testing teams by performing on-demand and targeted identification, compliance and vulnerability scans.
Leverage various data sources (CDM, Splunk, RSA Archer, penetration tests) to identify systemic and/or critical misconfigurations, vulnerabilities, and unresolved threats to DOS networks.
Conduct Blue Team exercise and Computer Network Defense drills in order to evaluate and improve processes related to threat detection, incident response, patching/remediation and user training.
Perform liaison activities with other bureaus and offices within the department.
Assist in the selection, implementation, support, and/or development of enterprise security tools where required.
Interface with vendor support teams to keep abreast of developments in product lines.
Develop internal SOPs and job aids. Participate in strategic development, implementation and execution of Tactics, Techniques, and Procedures (TTP).
Daily Responsibilities:
Work closely with other groups and build working relationships to effectively complete our mission while respecting stakeholder needs and requirements.
Interact with IT operational teams to advise on, coordinate and track mitigation and remediation activities
Formulation and creation of information security metrics for the purpose of analysis and greater enterprise security posture awareness.
Prepare reports and briefings for senior leadership related to routine and high profile vulnerability analysis.
Perform and post results of routine and on demand vulnerability assessments.
Consultation and support to other parties within the Department of State's Monitoring and Incident Response Division concerning Computer Network Defense (CND).
Qualifications:
Required: Basic qualifications
This position supports the Department of State's Monitoring and Incident Response Division in providing Continuous Diagnostics and Monitoring (CDM) with regard to Blue Team network defense. The successful candidate will have a proactive CND mindset in order to develop comprehensive remediation strategies and strong customer service skills in order to provide technical guidance to other Department of State teams. Additionally, strong verbal and written communication skills are required with the ability to relay complex technical issues to leadership.
Additional Required Basic qualifications include but are not limited to:
5+ years of experience in information security, information technology, or related field.
5+ years of experience developing and leading remediation/ mitigation activities, and providing status updates and reports. Emphasis on remediation plans and strategies.
2+ years of Blue Team or Red Team experience.
2+ years of experience developing Blue Team goals, processes and assessment methodology for effective cyber security assessments.
5+ years of experience performing risk analysis by correlating known vulnerabilities and threats and assigning priorities to issues
5+ years of experience providing technical leadership and guidance to team members by utilizing cyber security policies, concepts and emerging practices to coordinate assessments.
2+ years of experience with enterprise vulnerability and compliance scanning systems.
2+ years of experience with Splunk or other enterprise level data analytics tools.
2+ years of experience with Windows Desktop, Windows Server and Linux operating systems and system administration ? specifically with regard to patching and compliance.
2+ years of experience with networking hardware (routers, switches, firewalls) and configuration ? specifically with regard to patching and compliance.
2+ years of experience understanding networking concepts such as DMZs, subnets, VLANs, private IP addressing and NAT.
5+ years of experience performing manual and automated analysis of systems and networks in effort to identify, asses, and mitigate vulnerabilities to strengthen security posture.
5+ years of experience performing risk analysis of vulnerabilities and threats and provide risk management recommendations.
5+ years of experience with effective written and verbal communication skills ? ability to prepare and present security assessment results to senior management.
Technical knowledge of information technology and cyber security standards and issues.
Strong customer service skills to follow-up with clients in order to maintain project schedule.
Problem solving and resolution with attention to detail.
Strong capacity to share knowledge with other teams.
Desired Skills: Preferred but not required
Certified Ethical Hacker certification
Security+ and/or Network+ certification
CISSP certification
2+ years of experience understanding of the SCAP framework and capacity for alteration and editing.
2+ years of experience familiarity with NIST Special Publication 800-53 and CVE (Common Vulnerabilities and Exposures) standards.
Flexibility to adjust to new requirements and objectives as they develop.
#cjobs
#dicepost
#Gdjobs
Notice:
CSRA is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Options:

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Blue Team Analyst
Arlington, VA FGM Inc
Tourism Team Leader- Kyrgyz Republic
Arlington, VA Deloitte
Clinical Team Leader (United States)
Charlottesville, VA INC Research
Overnight Facility Operations Team Member
Fairfax, VA Life Time Fitness