Network Detection and Response (NDR) Architect

Network Detection and Response Architect (NDR)

Job ID #: 24-1069

Clearance: Active Secret Clearance Required

Location: Herndon, VA (Hybrid)

Who We Are:

Since our inception back in 2006, Navitas has grown to be an industry leader in the digital transformation space, and we've served as trusted advisors supporting our client base within the commercial, federal, and state and local markets.

What We Do:

At our very core, we're a group of problem solvers providing our award-winning technology solutions to drive digital acceleration for our customers! With proven solutions, award-winning technologies, and a team of expert problem solvers, Navitas has consistently empowered customers to use technology as a competitive advantage and deliver cutting-edge transformative solutions.

What You'll Do:

As the selected Network Architect, you'll be responsible for developing and implementing Network security solutions on our flagship Prime engagement!

Responsibilities will include but are not limited to:

Architect comprehensive NDR solutions tailored to organizational needs

Implement and configure NDR platforms like ExtraHop Reveal(x), Darktrace, or Vectra Cognito

Integrate NDR solutions with existing security infrastructure (SIEM, SOAR, etc.)

Design and implement network segmentation strategies to minimize attack surfaceNetwork Traffic Analysis

Analyze network traffic patterns to identify anomalies and potential threats

Develop custom detection rules and algorithms for identifying sophisticated attacks

Utilize machine learning and AI capabilities of NDR tools for advanced threat detection

Perform regular network behavior analysis to establish baselines and detect deviationsIncident Response and Forensics

Lead incident response efforts for network-related security events

Conduct in-depth forensic analysis of security incidents

Develop and maintain incident response playbooks

Coordinate with other security teams during major security eventsContinuous Improvement and Optimization

Regularly assess and optimize NDR tool configurations

Stay updated on emerging threats and adjust detection capabilities accordingly

Conduct periodic security assessments and penetration tests

Identify and implement new NDR technologies and methodologiesReporting and Communication

Generate comprehensive reports on network security status and incidents

Present findings and recommendations to both technical and non-technical stakeholders

Develop and deliver training sessions on NDR tools and best practices

Collaborate with cross-functional teams to align NDR strategies with business objectivesCompliance and Governance

Ensure NDR practices align with relevant regulatory requirements (e.g., GDPR, HIPAA, PCI DSS)

Develop and maintain documentation for audits and compliance checks

Contribute to the development of security policies and procedures

What You'll Need:

Technical Expertise

Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.) and OSI model

Proficiency in network security architectures and best practices

Strong knowledge of common attack vectors and techniques (e.g., APTs, malware, DDoS)

Expertise in one or more NDR platforms (ExtraHop, Darktrace, Vectra, etc.)

Familiarity with SIEM and SOAR technologies

Understanding of encryption technologies and PKI

Knowledge of cloud security principles and practicesProgramming and Scripting

Proficiency in at least one scripting language (Python, PowerShell, Bash)

Experience with API integration and automation

Ability to develop custom tools and scripts for security analysisAnalytical and Problem-Solving Skills

Strong analytical thinking and problem-solving abilities

Experience in interpreting complex data sets and identifying patterns

Ability to think like an attacker to anticipate and mitigate threatsSoft Skills

Excellent written and verbal communication skills

Strong leadership and team collaboration abilities

Ability to explain complex technical concepts to non-technical audiences

Proactive and self-motivated with a passion for cybersecurityPreferred Qualifications

Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field

5+ years of experience in network security or related rolesRelevant certifications such as:

ExtraHop Certified Professional

Certified Information Systems Security Professional (CISSP)

GIAC Security Expert (GSE)

Certified Ethical Hacker (CEH)

Cisco Certified Network Professional (CCNP) Security

Experience with threat hunting and advanced persistent threat (APT) detection

Familiarity with regulatory compliance standards (GDPR, HIPAA, PCI DSS, etc.)

Tools and Technologies

NDR Platforms: ExtraHop Reveal(x), Darktrace, Vectra Cognito

Network Analysis Tools: Wireshark, tcpdump, Netflow analyzers

SIEM Systems: Splunk, IBM QRadar, LogRhythm

SOAR Platforms: Palo Alto Cortex XSOAR, Swimlane, Phantom

Firewalls and IPS/IDS systems

Endpoint Detection and Response (EDR) solutions

Cloud Platforms: AWS, Azure, Google Cloud

Virtualization Technologies: VMware, Hyper-V

Containerization and Orchestration: Docker, KubernetesNavitas Business Consulting Inc. is an Equal Opportunity Employer with a commitment to diversity. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, sexual orientation, disability status, protected veteran status, or any other characteristic protected by law.

Equal Employer/Veterans/Disabled

Navitas Business Consulting is an affirmative action and equal opportunity employer. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact Navitas Human Resources.

Navitas is an equal opportunity employer. We provide employment and opportunities for advancement, compensation, training, and growth according to individual merit, without regard to race, color, religion, sex (including pregnancy), national origin, sexual orientation, gender identity or expression, marital status, age, genetic information, disability, veteran-status veteran or military status, or any other characteristic protected under applicable Federal, state, or local law. Our goal is for each staff member to have the opportunity to grow to the limits of their abilities and to achieve personal and organizational objectives. We will support positive programs for equal treatment of all staff and full utilization of all qualified employees at all levels within Navitas.