years' recent experience in a Tier 2 or Tier 3 SOC analyst role, ideally within a government or critical infrastructure organisation. Deep experience with SIEM tools such as Crowdstrike, Splunk, and Microsoft Defender. Proven track record designing and implementing SOC use cases and incident response plans. Strong capability in data correlation across disparate sources. Demonstrated ability to develop effective alerting More ❯
analysis where required based on identified event/incident parameters by the incident managers during an event/incident response. Conduct forensic evidence collection utilizing security tools to include Splunk, and EDR solutions to correlate and analyze network sensor data with host forensic evidence. Produce technical analysis reports including root cause analysis of analyzed hosts and/or artifacts discovered More ❯
APIs to automate security assessments and mitigation processes • Experience with the Authority to Operate (ATO) process, NIST SP 800-53, Cyber Security and Risk Management Frameworks, Security Center, Nessus, Splunk • Knowledge in network topologies and architectures (VLAN, LAN, WAN) • Experience with automation frameworks, specifically Ansible, to write scripts and automate security processes • Ability to effectively communicate with team members, vendors More ❯
at terabyte-to-petabyte scale, optimizing data propagation, versioning, and distributed access. A passion for system observability, with expertise in monitoring and alerting mechanisms for data pipelines (Prometheus, Grafana, Splunk). Proficiency with Infrastructure as Code (Terraform, CloudFormation, AWS CDK), ensuring scalable and repeatable deployments. Strong problem-solving skills in tackling complex architectural challenges and influencing technical decisions across multiple More ❯
organize and prioritize numerous customer requests in a fast pace deadline driven environment Familiarity with Amazon Web Services (AWS) Familiarity with customer's IA processes Experience with ServiceNow and Splunk Experience supporting IC or DoD in the Cyber Security Domain Familiarity with the RMF process Experience with Relational Database Management System (RDMS) Experience with Apache Hadoop and the Hadoop Distributed More ❯
processing. • Strong interpersonal communication skills to interface with a variety of customers and independently design and develop tools to meet requirements. • Solid understanding of Linux logging, network traffic analysis, SPLUNK, network traffic redirection (i.e. iptables). • Experience monitoring network activity and network traffic redirection. • Experience in the design, implementation, procurement, tradecraft, or maintenance of various layers of network infrastructure. • Candidates More ❯
refrains from office gossip or conflict; works extra hours as needed to ensure work is complete; adheres to corporate policy and encourages others to do the same Specific Technologies: Splunk, Kabana, Bro, OpenDNS, Exabeam, Tanium, SentinelOne, Checkpoint, Palo Alto, WAF,Vectra, X-Ways, Python, PowerShell, RegEx More ❯
in a hybrid cloud environment • Engineer security into LAN and WAN system design, performing internal cyber hunt activities, and tailoring Zeek-based security sensors to feed SIEM and SOAR Splunk components • Engineer security into WAN/LAN monitoring fabric tools such as Arista, Cisco, and Extreme Networks • Collaborate in engineering and modeling security using networking tools such as Forward Networks More ❯
sustain security solutions and requirements in a DOD environment such as DOD Security Technical Implementation Guides (STIGs), Microsoft Group Policy, Assured Compliance Assessment Solution (ACAS), Risk Management Framework (RMF), Splunk, Trellix Endpoint Security System (ESS). Act as an on-site lead for all contractors in the branch as it pertains to these functions. Qualifications BA/BS degree in More ❯
sustain security solutions and requirements in a DOD environment such as DOD Security Technical Implementation Guides (STIGs), Microsoft Group Policy, Assured Compliance Assessment Solution (ACAS), Risk Management Framework (RMF), Splunk, Trellix Endpoint Security System (ESS) Act as an on-site lead for all contractors in the branch as it pertains to these functions Qualifications BA/BS degree in Information More ❯
organize and prioritize numerous customer requests in a fast-paced deadline driven environment Familiarity with Amazon Web Services (AWS) Familiarity with customer's IA processes Experience with ServiceNow and Splunk Experience supporting IC or DoD in the Cyber Security Domain Familiarity with the RMF process Experience with Relational Database Management System (RDMS) Experience with Amazon Elastic MapReduce (EMR) and SageMaker More ❯
M IAT Level II or III certification (e.g., Security+, CISSP, CEH, CISM) Knowledge of STIGs, SCAP tools, and secure system baselining Hands-on experience with security tools (e.g., ACAS, Splunk, Tenable, Palo Alto, CrowdStrike, or similar) Scripting or automation experience (Python, Bash, PowerShell) to support security operations Clearance Requirements: Must have active TS/SCI with Full Scope Polygraph Physical More ❯
Herndon, Virginia, United States Hybrid / WFH Options
VTG
and install equipment weighing up to 50 lbs. Perform tasks requiring prolonged sitting, standing, and walking in a secure environment. Top Secret/SCI with Poly Desired: Experience with Splunk, SIEM tools, or endpoint detection and response (EDR) platforms. Prior experience in classified or SCIF environments. Prior experience leading a team. More ❯
CK. Hands-on experience with cloud security (AWS, Azure, or GCP), IAM/PAM, network and endpoint protection. Proficiency with SIEM and monitoring tools (e.g., Microsoft Sentinel, Elastic Stack, Splunk, QRadar), and understanding of incident response. Strong knowledge of cybersecurity principles including threat modeling, zero trust, and defense-in-depth. Understanding of cryptography and key management. Strong communication and documentation More ❯
Cisco ASA/Firepower, Fortinet, Snort, Suricata, and secure web gateways. • Familiarity with network protocols (TCP/IP, DNS, DHCP, etc.) and secure configurations. • Experience with tools such as Splunk, Wireshark, or other SIEM and packet analysis tools. • Knowledge of STIGs, RMF, and security hardening techniques. Education: • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field. More ❯
issues to a diverse audience in layman's terms Engineering work performed in national security mission environments. Experience implementing or assessing cybersecurity solutions using technologies such as: Nessus, WebInspect, Splunk, Open SCAP Microsoft Windows, Server, Active Directory RedHat Linux; CentOS, Virtualization Platforms: Hyper-V, VMware VDI (Desktop), Citrix Network engineering/design of LANs, WANs, MANs, including underlying routing protocols More ❯
of SAN storage configuration and maintenance Working knowledge of Basic enterprise networking configuration and maintenance; routing, redistribution, ACLs, NAT, VPN, Layer 2/3 switching, monitoring solutions (Solarwinds/Splunk), encryption devices (KG175, KG250, etc) Knowledge, Skills and Abilities MUST be hands on with systems and technology! Must have 10+ years working in a Linux or Windows Environment (Windows Server More ❯
years, a Bachelors' and 6 years, a Masters and 4 years or a PhD and 0 years of work history Desired Qualifications: • ServiceNow reporting experience in addition to Splunk, Tableau, Power Bi and other data visualization tools • Certifications such as Cisco Certified Network Associate (CCNA), CompTIA Network+, Certified Information Systems Security Professional (CISSP), or similar credentials can be beneficial. • Excellent More ❯
and GoLang and familiarity with Windows/MacOS internals. Proficient in infrastructure automation using Terraform, Ansible, and CloudFormation. Proficient with SIEM and EDR platforms, including but not limited to Splunk, SumoLogic, and CrowdStrike Falcon EDR/LogScale. Strong understanding of identity management platforms like Okta, Microsoft EntraID, and Active Directory, including identity-based attacks. Security automation expertise using Python scripting More ❯
and GoLang and familiarity with Windows/MacOS internals. Proficient in infrastructure automation using Terraform, Ansible, and CloudFormation. Proficient with SIEM and EDR platforms, including but not limited to Splunk, SumoLogic, and CrowdStrike Falcon EDR/LogScale. Strong understanding of identity management platforms like Okta, Microsoft EntraID, and Active Directory, including identity-based attacks. Security automation expertise using Python scripting More ❯
and GoLang and familiarity with Windows/MacOS internals. Proficient in infrastructure automation using Terraform, Ansible, and CloudFormation. Proficient with SIEM and EDR platforms, including but not limited to Splunk, SumoLogic, and CrowdStrike Falcon EDR/LogScale. Strong understanding of identity management platforms like Okta, Microsoft EntraID, and Active Directory, including identity-based attacks. Security automation expertise using Python scripting More ❯
and GoLang and familiarity with Windows/MacOS internals. Proficient in infrastructure automation using Terraform, Ansible, and CloudFormation. Proficient with SIEM and EDR platforms, including but not limited to Splunk, SumoLogic, and CrowdStrike Falcon EDR/LogScale. Strong understanding of identity management platforms like Okta, Microsoft EntraID, and Active Directory, including identity-based attacks. Security automation expertise using Python scripting More ❯
of experience may be substituted for educational requirements Minimum Years of Experience: Minimum of 1 year of relevant experience Preferred: • Java, JavaScript, Python, SQL • GitLab, JFROG Artifactory and Xray, Splunk, Hashicorp Vault, Boundary, Consul, Terraform, Nexus, JIRA, Crucible, Jenkins, Ansible and Ansible Tower • AWS Certification(s More ❯
tape robots Database experience (Oracle, SQL Server). Would be Nice to Have: Prior Real-time operations/mission systems experience Red Hat Certification Automation Concepts (Puppet) Experience with Splunk, WebLogic, High-Speed Guards, F5 Load Balancers Familiarity with Cisco switches and firewalls Experience with SQL database queries and troubleshooting Tape Library/Backups (Symantec NetBackup) Scripting and coding experience More ❯
drivers, dell machines/windows 10 workstations - Ideally has understanding of ACAS scans and has done STIGS Nice to Haves -Have knowledge of corporate services including: DNS, SMTP, RHEV, Splunk, Apache -Demonstrated experience managing the installation and maintenance of IT infrastructure -Hardware experience with Dell systems is a plus - Experience working in an environment with rapidly changing job priorities -ServiceNow More ❯
