Enterprise Information Services, Inc.

  • Security Information and Event Manager Subject Matter Expert

    Job Location US-VA-Quantico
    ID
    2018-3716
    # of Openings
    1
    Targeted Job Start Date
    4/1/2019
  • Overview

    The Security Information and Event Management (SIEM) SME will possess deep technical knowledge on a number of security technologies; the main area of focus will be the implementation of SIEM and associated. The ideal candidate will have a demonstrated understanding of information security and networking and extensive experience interacting with customer.

    Responsibilities

    • Act as the lead for Operations and Maintenance and Configuration Management for all Security Operations and Security Information and Event Management (SIEM) tools.
    • Analysis, design, configuration, implementation, documentation, and operation of SIEM and associated appliances
    • Responsible for SIEM security design review and recommendations, technical data gathering, security and policy review and configuration, security device implementation planning, configuration and implementation of security products and technical quality assurance.
    • Lead technical troubleshooting efforts for complex network environments to identify and eliminate network or security configuration issues for SIEM data collection.
    • Manage system deployments, upgrades, ongoing maintenance and operations.
    • Configuration and operation of security device authentication, management, and logging platforms.
    • Provide Tier3 support to analyst personnel utilizing the SIEM to respond to security incidents and events.
    • Identify, troubleshoot, and resolve complex network connectivity issues as well as advise on network security related issues.
    • Understanding of network and endpoint security tools and how they integrate into the SIEM and provide a cohesive view of network incidents and security.
    • Configure backups, verify custom reports, manage log source groups and validate log sources.
    • Provide occasional off-hours support for planned maintenance work and unplanned support issues.

    Qualifications

    • BS degree from an accredited institution, or 8 years of experience in lieu of degree
    • Experience managing an enterprise-grade Security Information and Event Management toolset, including maintenance, cyber analytics and correlation use cases.
    • At least five years overall experience with CND and cyber security tools
    • TS/SCI Clearance required
    • Experience leveraging network and host based sensors and other cybersecurity tools to enhance the detection of adversary activity.
    • Possess IAT Level II certification; One of the following certifications required - CCNA Secuirty, CySA+, GICSP, GSEC, Security+ CE, SSCP
    • Bachelor of Science in Electrical Engineering, Computer Science, Information Technology, or equivalent data security and networking experience required
    • CISSP, CISM, or relevant IPS Vendor training/certification preferred

    EIS is an Equal Opportunity Employer/M/F/V/Disabled.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed