ZENETEX specializes in management and technology support services for a variety of Federal agencies and commercial organizations nationwide. Our company is experiencing tremendous growth across all of our practice areas! In support of future work, we are reviewing resumes for the position of Computer Network Defense Senior Subject Matter Expert (SME). This is a contingent position - actual employment will be dictated by contract award. Candidates meetiing the minimum requirements will be contacted by a member of our recruiting team. This position will support the mission to operate, monitor, secure, and sustain Army NIPRNet and SIPRNet CND services and shall provide CND services to CONUS users 24-hours a day, seven days a week, and will require an active TS/SCI DoD Security Clearance. We are unable to consider candidates not cleared at this level.
This work will be in support of the U.S. Army Regional Cyber Center (USARCC-C) based in Fort Huachuca, AZ. In this position you may perform a variety of duties as follows:
Develop Intrusion Protection System/Intrusion Detection System procedures; correlate and react to security events; perform first- and second-level triage; and forward suspicious activity
Use a Security Information Management tool to aggregate approximately 13.6 million security events per day from multiple sources. During the life of this contract, other sources may be Active Directory domain controllers and DNS servers
Perform advanced systems administration for the enterprise sensor mission relative to platform architecture, configuration, lifecycle support, and technology refresh and infusion
Develop and document disaster recovery procedures for managed CND systems, including IPS/IDS, system baseline tools, host-based systems and agents, server managers, applications, and remote management systems. Store written procedures in the Document Management System database
Perform daily backups, implement system upgrades, and verify system configurations, accounts, and passwords conform to baseline standards
Establish and maintain written procedures to set up, track, and document status and location of hardware and software for each baseline of sensors. Store written procedures in the Document Management System database
Maintain, update, test, and implement signatures and policies for each baseline of sensors; changes must be approved through the established ITIL process
Build, configure, and assist with implementation of newly fielded sensors that support missions
Monitor all sensors and agents managed for security event analysis and response. Respond to a detected event and perform triage, ensure proper handling of the associated trouble ticket, and process events according to the CND SOP and appropriate TTPs
Maintain and update the triage database with current threat data and response methods
Maintain and update SIM tool software rules for optimal detection of malicious or unauthorized activity. Report system incidents and problems according to CND SOPs and service level agreements
Validate security event information from the ITSM ticket which includes at a minimum event name, date, time, location, source IP address, destination IP address, source ports, and destination ports. Contact the responsible NEC if additional information is required
Provide data analysis as tasked by the COR
Global Information Assurance Certification (GIAC) – Information Security Fundamentals or equivalent.
CND-IS Baseline Certification
ZENETEX is an equal opportunity/affirmative action employer. Qualified applicants are considered for employment without regard to age, race, national origin, sexual orientation, gender, gender identity and expression, disability, veteran status, or any other characteristic protected by law.