Sr. Information Security Engineer

Job Description:

• Administration of Snort Sensors
• Ability to tune, configure and implement detection logic in open source Snort Sensors
• Supports customers at the highest levels in the development and implementation of doctrine and policies
• Applies know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures
• Performs analysis, design, and development of signature for the IDS sensors
• Analyzes security requirements for the management and administration of sensing technology
• Designs, develops, engineers, and implements solutions that meet security requirements (relating to sensing solutions)
• Analyzes general information assurance-related technical problems and provides basic engineering and technical support in solving these problems
• Evaluate that all information systems are functional and secure
• Occasionally provide security engineering and integration services to internal customers
• Deploy new sensors for monitoring network traffic flow
• Installation, configuration, support and security implementation of tools & services related to SSH

Required Skills:

• Installation, configuration, maintenance and troubleshooting of RHEL based systems
• Strong troubleshooting skills of Linux/UNIX operating systems
• Previous working experience as a Linux System Administrator for 6+ years
• Understanding of essential network services such as DNS, SMTP, NTP, and SNMP
• Experience with databases such as SQL, Postgres, MySQL,
• Experience maintaining compliance of RHEL based systems using STIGS or CIS
• Day to day support operations maintaining security patches on all RHEL based systems
• Scripting and automation using tools such as Ansible, Terraform, GitLab, etc.
• Experience with Containers, RedHat platforms
• Understanding of Linux based Networking
• Knowledge of syslog collection
• Knowledge of SIEM (QRadar, Splunk, etc.) infrastructure and appliances
• Time and project management skills, with the capability to prioritize and multitask as needed
• Solid team player with leadership skills

Preferred Qualifications:

• Red Hat Certification System Administrator / Engineer
• Shell, Python Scripting
• Linux+ Certified

ROLES AND RESPONSIBILITIES:

• Have some working administrative knowledge using IT security technology such as Snort, SourceFire, and Firepower
• Orchestrating deployments of custom CentOS 7 servers
• Apply recommended OS Patches, Kernel upgrades to keep server operating systems up to date
• Automation of repeatable tasks with the help of scripting (Python/Ansible preferred)
• Troubleshooting of Linux Servers and applications beyond the basics
• Developing strategies to improve operational workflow
• Updating security tools on Linux systems
• Basic knowledge of relational databases such as MySQL and PSQL
•  Asses existing network sensing topology and identify key system flaws
• Configuring and deploying new open-source and commercial security tools on Linux systems
• Performed DAST analysis using Application Scan security vulnerability tool to identify OWASP issues
• Provide recommendations to overall system deployment and design
• Perform administrative and engineering work on Security Operation Center tools such as Remedy, Service manager, Symantec Antivirus, etc
• Develop detailed supporting documentation regarding technical projects (such as materials to support an architecture review board)
• Provide recommendations on collection, processing and distribution systems in the cyber security market
• Manage customer expectation and attend all mandatory review / regulatory discussions related to the specific project being delivered
• Strong problem solving skills with focus on strategy