Cyber Security Detections Engineer, Senior (TS/SCI CI Poly) - Northern VA

Cyber Security Detections Engineer, Senior (TS/SCI CI Poly) - Northern VA

Join to apply for the Cyber Security Detections Engineer, Senior (TS/SCI CI Poly) - Northern VA role at GuidePoint Security

Cyber Security Detections Engineer, Senior (TS/SCI CI Poly) - Northern VA

1 week ago Be among the first 25 applicants

Join to apply for the Cyber Security Detections Engineer, Senior (TS/SCI CI Poly) - Northern VA role at GuidePoint Security

Get AI-powered advice on this job and more exclusive features.

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.
An active Top Secret / SCI with CI Poly security clearance is required for consideration for hire for this role. Work is to be performed 100% onsite with our Government Customer in Springfield, VA.
Responsibilities include, but are not limited to:

• Formulate and publish custom Security Information and Event Management (SIEM) tool content and IDS/IPS signatures to address threats
• Perform security event and incident correlation using information gathered from a variety of sources within the enterprise
• Analyze and assess damage to the data / infrastructure as a result of cyber incidents
• Perform cyber incident trend analysis and reporting.
• Characterizes and performs analysis of network traffic and system data to identify anomalous activity and potential threats to resources.
• Provide detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities
• Create, deploy, and implement threat-based signatures and detection rules for operational intrusion detection capabilities.
  

Basic Qualifications:

• Bachelor's Degree or 4+ years of additional experience in lieu of degree
• 5+ years of experience in a cyber role
• Experience with enterprise security tools, including Security information and event management (SIEM), Threat intelligence platforms (TIPs), or Network monitoring tools
• Experience with creating, modifying, tuning, IDS signatures/SIEM correlation searches and other detection signatures.
• Knowledge of implementation of countermeasures or mitigating controls.
• Experience with modern Windows, UNIX, network operating systems, databases, and virtual computing
• DoD 8570 certification meeting IAT Level II ((GSEC, Security+, SSCP, or CCNA-Security)) required
• CNDSP-A (GCIA, GCIH, or CEH) or CNDSP-IR (GCIH, CSIH, or CEH) certification required
  

Demonstrated Technical Experience:

• Experience performing analysis of network traffic and correlating diverse security logs to perform recommendations for signature development.
• Knowledge with implementation of counter-measures or mitigating controls.
• Ability to support incident response and forensic operations as required to include static/dynamic malware analysis and reverse engineering.
• Experience with enterprise security tools, including Security information and event management (SIEM), Threat intelligence platforms (TIPs), or Network monitoring tools.
• Experience in creating, modifying, tuning, IDS signatures/SIEM correlation searches and other detection signatures.
  

Preferred Qualifications:

• Proficient in Linux operating systems
• Advanced skills in Linux/Unix (command line user - proficient and used in last 6 months)
• Working knowledge of current COTS Cybersecurity technologies.
  

Security Clearance Requirements:

• TS/SCI w/CI Poly
  

Physical Requirements:

• Must be able to remain in a stationary position 50%
• Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer
• The person in this position frequently communicates with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations
  

We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.
Why GuidePoint?
GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1000 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 4,200 customers.
Firmly-defined core values drive all aspects of the business, which have been paramount to the company's success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.
This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.
Some added perks….

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option

Seniority level

• Seniority level

  Mid-Senior level

Employment type

• Employment type

  Full-time

Job function

• Job function

  Information Technology

• Industries

  IT Services and IT Consulting

Referrals increase your chances of interviewing at GuidePoint Security by 2x

Sign in to set job alerts for “Cyber Security Engineer” roles.

Washington, DC $120.00-$125.00 3 weeks ago

Washington, DC $130,000.00-$150, hours ago

FBI Special Agent: Cybersecurity/IT Expertise

Arlington, VA $99,461.00-$128,329.00 1 day ago

Junior Cybersecurity SIEM Monitoring Analyst

Cyber Security Analyst $175,000.00

Information Security Analyst (SOC 2 Compliance)

Fairfax, VA $92,400.00-$115,000.00 1 month ago

Washington, DC $80,000.00-$85,000.00 1 week ago

Cyber Security Analyst $175,000.00

Cybersecurity Engineer (SOAR) (JOB ID )

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr