Summary The successful candidate will support overall network defense activities, provide in-depth analysis of suspected malicious code andor infected systems and network devices, perform necessary inspection and reverse-engineering activities to understand the behavior of software, determine the root cause for the presence of threats, and develop recommendations to counter threats. Duties, Tasks Responsibilities Conducting proof of concept testing Designing, testing, and integrating new security products as directed Beta testing new capabilities when directed, and conducting software testing as required (patches and other updates) Maintaining a robust library of documentation, to include network diagrams for cyber defense capabilities and sensors, and making documentation available to all personnel with appropriate need-to-know Providing engineering support for all primary systems, such as network-based intrusion detection and prevention systems Maintaining, updating, and conducting routine vulnerability scanning across all Sponsor networks Overseeing patching, hardening, and base-lining activities across all Sponsor networks, and ensuring all stakeholders are in compliance with patchinghardening requirements Maintaining, updating, configuring, and ensuring the successful deployment of loggingauditing tools across Sponsor networks Maintaining system baselines and configuration management items, including security event monitoring policies Working with all stakeholders to ensure complete and functioning systems that meet all requirements Ensuring all network defense capabilities are kept current, patched, and securely configured, and the management is informed of status Analyzing data flows into, out of, and across Sponsor networks to identify and rectify any security gaps Performing limited penetration testing into targeted networks as directed Required Experience, Skills, Technologies Experience working across a large team to drive a security agenda Experience working with complex, intertwined systems and data flows Significant, demonstrated experience meeting security requirements in the Sponsor's environment or similar environments (prior ISSE experience) Experience inventorying complex networks, and with all facets of network documentation (security compliance, configuration management, patching, centralized authentication, removable media, etc.) Hands-on experience with a wide range of diverse technologiesdisciplines, especially with a security focus (networking, UNIXLinux, Windows, Storage, Virtualization, etc.) Expert-level abilities in the following areas Maintaining, configuring, and monitoring network security applications, network devices, encryption technologies, operating systems, and storage appliances Securing information technology infrastructures Monitoring network defense technologies and analyzing the outputs Identifying andor innovating solutions or measures to protect networks within budgetary andor infrastructure constraints Creating, maintaining, and communicating complex information technology documentation, particularly network and security documentation Executing penetration tests, formal assessments, and other formal information security and compliance inspections Significant, hands-on experience with securitymonitoring tools such as Splunk, Solarwinds, WhatsUp Gold, or similar tools. Self-starter with excellent people skills - able to work across teams, organize meetingsboards, and drive change throughout an organization TSSCI with Polygraph Desired Experience, Skills Technologies CCNA strongly desired CISSP strongly desired Experience with the Xacta 360 cyber risk and compliance automation tool Experience navigating the Sponsor's accreditation process and ICD 503 requirements