Cyber SIEM Engineer

Description

Cyber SIEM Engineer

Location: Ft. Belvoir, VA, Battle Creek, MI, or Columbus, OH

Clearance: DOD Top Secret Clearance and be eligible for an IT-I Critical Sensitive security

clearance or Tier 5 (T5)

Overview

Researches and develops new threat detection use cases based on emerging threats, threat intelligence research and Threat Detection Analyst feedback. Works with stakeholders and cybersecurity tool SMEs to identify gaps in security protection and analytics capabilities. Develops custom scripts to enhance SIEM functionality. Reviews the quality of data feeds and recommend and/or implement improvements. Collaborates with stakeholders to identify critical systems and application components to develop alerting priorities and create signatures tailored to individual programs and applications.

Key Responsibilities:

• Serve has the primary subject matter expert on SIEM capabilities, implementation, and

utilization

• Work with cybersecurity stakeholders to enhance SIEM functionality

• Develop customer scripts to enhance SIEM functionality

• Enhance and optimize the SIEM implementation to improve the functionality and capability

that meets the organization’s Threat Detection and Incident Response needs.

Required Qualifications:

• Five (5) years of relevant IT experience

• Three (3) years working with a SIEM in a content development or Incident Response role.

• Three (3) years of System and/or Network Administration experience

• Understanding of various log formats

• Understanding of the MITRE ATT&CK framework

• Strong understanding of network architecture

• Experience developing and maintaining scripts (preferably using PowerShell, Python or

SPL)

• Understanding of Defense-in-Depth

• Must possess a current DOD Top Secret Clearance and be eligible for an IT-I Critical

Sensitive security clearance or Tier 5 (T5) at time of proposal submission.

• Must have Baseline Certification for IAT-II and CNDSP/CSSP-IR when on boarding and

must have one of the “Computer Network Defense” CE Certifications within six (6) months

of on-boarding.

MANDEX, Inc. is an Equal Employment Opportunity employer and does not discriminate on the basis of race, national origin, gender, sexual orientation, disability, veterans’ status, age, or other legally protected status.

MANDEX, Inc. reserves the right to perform background screening and drug testing prior to extending offers of employment.

MANDEX attracts and retains smart and motivated professionals in the government contracting industry. We offer competitive salaries and excellent benefits packages, including a matched 401(k) plan.