ZipRecruiter
25-1069: Network Detection and Response (NDR) Architect
ZipRecruiter, Washington, District of Columbia, us, 20022
Overview
Job Description: Network Detection and Response Architect (NDR) Job ID: 24-1069 Clearance: Active Secret Clearance Required Location: Arlington, VA (Hybrid) Navitas is an industry leader in digital transformation, serving commercial, federal, and state and local markets since 2006. What You’ll Do
As the Network Architect, you’ll be responsible for developing and implementing Network security solutions on our flagship Prime engagement. Architect comprehensive NDR solutions tailored to organizational needs Implement and configure NDR platforms such as ExtraHop Reveal(x), Darktrace, or Vectra Cognito Integrate NDR solutions with existing security infrastructure (SIEM, SOAR, etc.) Design and implement network segmentation strategies to minimize attack surface Responsibilities
Network Traffic Analysis Analyze network traffic patterns to identify anomalies and potential threats Develop custom detection rules and algorithms for identifying sophisticated attacks Utilize machine learning and AI capabilities of NDR tools for advanced threat detection Perform regular network behavior analysis to establish baselines and detect deviations Incident Response and Forensics Lead incident response efforts for network-related security events Conduct in-depth forensic analysis of security incidents Develop and maintain incident response playbooks Coordinate with other security teams during major security events Continuous Improvement and Optimization Regularly assess and optimize NDR tool configurations Stay updated on emerging threats and adjust detection capabilities accordingly Conduct periodic security assessments and penetration tests Identify and implement new NDR technologies and methodologies Reporting and Communication Generate comprehensive reports on network security status and incidents Present findings and recommendations to both technical and non-technical stakeholders Develop and deliver training sessions on NDR tools and best practices Collaborate with cross-functional teams to align NDR strategies with business objectives Compliance and Governance Ensure NDR practices align with regulatory requirements (e.g., GDPR, HIPAA, PCI DSS) Develop and maintain documentation for audits and compliance checks Contribute to the development of security policies and procedures What You’ll Need
Technical Expertise Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.) and the OSI model Proficiency in network security architectures and best practices Strong knowledge of common attack vectors and techniques (e.g., APTs, malware, DDoS) Expertise in one or more NDR platforms (ExtraHop, Darktrace, Vectra, etc.) Familiarity with SIEM and SOAR technologies Understanding of encryption technologies and PKI Knowledge of cloud security principles and practices Programming and Scripting Proficiency in at least one scripting language (Python, PowerShell, Bash) Experience with API integration and automation Ability to develop custom tools and scripts for security analysis Analytical and Problem-Solving Skills Strong analytical thinking and problem-solving abilities Experience in interpreting complex data sets and identifying patterns Ability to think like an attacker to anticipate and mitigate threats Soft Skills Excellent written and verbal communication skills Strong leadership and team collaboration abilities Ability to explain complex technical concepts to non-technical audiences Proactive and self-motivated with a passion for cybersecurity Qualifications Bachelor\'s or Master\'s degree in Computer Science, Cybersecurity, or related field 5+ years of experience in network security or related roles Relevant certifications such as ExtraHop Certified Professional Certified Information Systems Security Professional (CISSP) GIAC Security Expert (GSE) Certified Ethical Hacker (CEH) Cisco Certified Network Professional (CCNP) Security Experience with threat hunting and advanced persistent threat (APT) detection Familiarity with regulatory compliance standards (GDPR, HIPAA, PCI DSS, etc.) Tools and Technologies
NDR Platforms: ExtraHop Reveal(x), Darktrace, Vectra Cognito Network Analysis Tools: Wireshark, tcpdump, Netflow analyzers SIEM Systems: Splunk, IBM QRadar, LogRhythm SOAR Platforms: Palo Alto Cortex XSOAR, Swimlane, Phantom Firewalls and IPS/IDS systems Endpoint Detection and Response (EDR) solutions Cloud Platforms: AWS, Azure, Google Cloud Virtualization Technologies: VMware, Hyper-V Containerization and Orchestration: Docker, Kubernetes Navitas is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status, or any other characteristic protected by law.
#J-18808-Ljbffr
Job Description: Network Detection and Response Architect (NDR) Job ID: 24-1069 Clearance: Active Secret Clearance Required Location: Arlington, VA (Hybrid) Navitas is an industry leader in digital transformation, serving commercial, federal, and state and local markets since 2006. What You’ll Do
As the Network Architect, you’ll be responsible for developing and implementing Network security solutions on our flagship Prime engagement. Architect comprehensive NDR solutions tailored to organizational needs Implement and configure NDR platforms such as ExtraHop Reveal(x), Darktrace, or Vectra Cognito Integrate NDR solutions with existing security infrastructure (SIEM, SOAR, etc.) Design and implement network segmentation strategies to minimize attack surface Responsibilities
Network Traffic Analysis Analyze network traffic patterns to identify anomalies and potential threats Develop custom detection rules and algorithms for identifying sophisticated attacks Utilize machine learning and AI capabilities of NDR tools for advanced threat detection Perform regular network behavior analysis to establish baselines and detect deviations Incident Response and Forensics Lead incident response efforts for network-related security events Conduct in-depth forensic analysis of security incidents Develop and maintain incident response playbooks Coordinate with other security teams during major security events Continuous Improvement and Optimization Regularly assess and optimize NDR tool configurations Stay updated on emerging threats and adjust detection capabilities accordingly Conduct periodic security assessments and penetration tests Identify and implement new NDR technologies and methodologies Reporting and Communication Generate comprehensive reports on network security status and incidents Present findings and recommendations to both technical and non-technical stakeholders Develop and deliver training sessions on NDR tools and best practices Collaborate with cross-functional teams to align NDR strategies with business objectives Compliance and Governance Ensure NDR practices align with regulatory requirements (e.g., GDPR, HIPAA, PCI DSS) Develop and maintain documentation for audits and compliance checks Contribute to the development of security policies and procedures What You’ll Need
Technical Expertise Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.) and the OSI model Proficiency in network security architectures and best practices Strong knowledge of common attack vectors and techniques (e.g., APTs, malware, DDoS) Expertise in one or more NDR platforms (ExtraHop, Darktrace, Vectra, etc.) Familiarity with SIEM and SOAR technologies Understanding of encryption technologies and PKI Knowledge of cloud security principles and practices Programming and Scripting Proficiency in at least one scripting language (Python, PowerShell, Bash) Experience with API integration and automation Ability to develop custom tools and scripts for security analysis Analytical and Problem-Solving Skills Strong analytical thinking and problem-solving abilities Experience in interpreting complex data sets and identifying patterns Ability to think like an attacker to anticipate and mitigate threats Soft Skills Excellent written and verbal communication skills Strong leadership and team collaboration abilities Ability to explain complex technical concepts to non-technical audiences Proactive and self-motivated with a passion for cybersecurity Qualifications Bachelor\'s or Master\'s degree in Computer Science, Cybersecurity, or related field 5+ years of experience in network security or related roles Relevant certifications such as ExtraHop Certified Professional Certified Information Systems Security Professional (CISSP) GIAC Security Expert (GSE) Certified Ethical Hacker (CEH) Cisco Certified Network Professional (CCNP) Security Experience with threat hunting and advanced persistent threat (APT) detection Familiarity with regulatory compliance standards (GDPR, HIPAA, PCI DSS, etc.) Tools and Technologies
NDR Platforms: ExtraHop Reveal(x), Darktrace, Vectra Cognito Network Analysis Tools: Wireshark, tcpdump, Netflow analyzers SIEM Systems: Splunk, IBM QRadar, LogRhythm SOAR Platforms: Palo Alto Cortex XSOAR, Swimlane, Phantom Firewalls and IPS/IDS systems Endpoint Detection and Response (EDR) solutions Cloud Platforms: AWS, Azure, Google Cloud Virtualization Technologies: VMware, Hyper-V Containerization and Orchestration: Docker, Kubernetes Navitas is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status, or any other characteristic protected by law.
#J-18808-Ljbffr