Splunk Systems Security Engineer
Description Systems Security Engineer - NSWC-15-1041-F Our client is looking for a Systems Security Engineer to provide senior level technical support to the command IAM and command IA office and to also provide technical support to departments across the Naval Surface Warfare Center, Dahlgren Division. The Systems Engineer will help in developing or researching tools (COTS, GOTS, open source and other) or capabilities to more efficiently affect Information Assurance (IA), as well as assess systems and proactively address threats, vulnerabilities and other IA and related concerns. Additional duties: a€ cents Perform log analysis and incident handling. a€ cents Assess and provide correlation of events and other activities to enable defense of various activities (reactively and proactively). a€ cents Supports analysis including (but not limited to) network traffic patterns, security requirements, future growth requirements, feasibility for virtualization, resource requirements, risk mitigation, functional analysis, interface systems analysis, technical assessments, technology benchmarking, enterprise architecture analysis, and requirement analysis. a€ cents Perform system administration duties on the Information Assurance Support Environment systems as directed by the command IAM. a€ cents Confer with and advise peers on administrative and technical policies and procedures. a€ cents Provide support for wireless technologies including war driving, evaluating unique requirements, and working with command security on the use of wireless technologies. a€ cents Provide content as appropriate for the command IA Website. Required Skills: a€ cents Must meet DoD 8570 Information Assurance Technical Level III certification requirements at time of employment (CompTIA Advanced Security Practitioner, CASP). a€ cents Experience working with computer programming and scripting languages. a€ cents Experience performing system administration (installation, configuration, troubleshooting, STIG compliance, and patching) duties on Windows (eg Windows 2008R2) and Unix/Linux (eg RHEL) operating systems. a€ cents Knowledgeable in DoD security and IA requirements as outlined in DoD 8500.2 and the Defense Information Systems Agency (DISA) Security Technical Implementation Guidelines (STIG). Desired Skills: Knowledge of data at rest solutions, preferably Symantec Endpoint Encryption and/or McAfee Endpoint Encryption. a€ cents Knowledge of SIEM solutions, preferably Splunk. a€ cents Current knowledge of DoD Ports, Protocols, and Services (PPS), Public Key Infrastructure (PKI), and DoD Information Assurance Vulnerability Management (IAVM) policies. a€ cents Working knowledge of DoD IA policies, guidance, and best practices. a€ cents Experience working with SCAP benchmarking tools and outputs.