Zenetex LLC

  • Contingent Computer Network Defense Senior SME

    Posted Date 2 weeks ago(5/8/2018 11:17 AM)
    ID
    2018-1645
    # of Openings
    1
    Job Location
    US-AZ-Fort Huachuca
    Category
    Information Technology
  • Overview

    ZENETEX is seeking a Computer Network Defense Senior Subject Matter Expert to work in the Sierra Vista, AZ area. The Computer Network Defense Senior Subject Matter Expert will support the mission to operate, monitor, secure, and sustain Army NIPRNet and SIPRNet CND services and shall provide CND services to CONUS users 24 hours a day, seven days a week. United States Citizenship and an active TS/SCI DoD Security Clearance is required to be considered for this position.

    Primary Duties and Responsibilities

    • Develop Intrusion Protection System/Intrusion Detection System procedures; correlate and react to security events; perform first- and second-level triage; and forward suspicious activity

    • Use a Security Information Management tool to aggregate approximately 13.6 million security events per day from multiple sources. During the life of this contract, other sources may be Active Directory domain controllers and DNS servers

    • Perform advanced systems administration for the enterprise sensor mission relative to platform architecture, configuration, lifecycle support, and technology refresh and infusion

    • Develop and document disaster recovery procedures for managed CND systems, including IPS/IDS, system baseline tools, host-based systems and agents, server managers, applications, and remote management systems. Store written procedures in the Document Management System database

    • Perform daily backups, implement system upgrades, and verify system configurations, accounts, and passwords conform to baseline standards

    • Establish and maintain written procedures to set up, track, and document status and location of hardware and software for each baseline of sensors. Store written procedures in the Document Management System database

    • Maintain, update, test, and implement signatures and policies for each baseline of sensors; changes must be approved through the established ITIL process

    • Build, configure, and assist with implementation of newly fielded sensors that support missions

    • Monitor all sensors and agents managed for security event analysis and response. Respond to a detected event and perform triage, ensure proper handling of the associated trouble ticket, and process events according to the CND SOP and appropriate TTPs

    • Maintain and update the triage database with current threat data and response methods

    • Maintain and update SIM tool software rules for optimal detection of malicious or unauthorized activity. Report system incidents and problems according to CND SOPs and service level agreements

    • Validate security event information from the ITSM ticket which includes at a minimum event name, date, time, location, source IP address, destination IP address, source ports, and destination ports. Contact the responsible NEC if additional information is required

    • Provide data analysis as tasked by the COR

    Education and Experience Requirements

    Education:

    • Bachelor’s Degree preferred

    Certifications:

    • Global Information Assurance Certification (GIAC) – Information Security Fundamentals or equivalent.

    • CND-IS Baseline Certification

    Security Clearance

    • This position will require U.S. citizenship and an active DoD Top Secret/SCI clearance

    ZENETEX is an equal opportunity/affirmative action employer. Qualified applicants are considered for employment without regard to age, race, national origin, sexual orientation, gender, gender identity and expression, disability, veteran status, or any other characteristic protected by law. 

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed