NexThreat
Job Title:
SIEM Support - ZTA Location: Washington, DC
Time Type: Full-time
Potential for Telework: Position eligible for telework upon approval; however, must be able to attend GPO IT SEC scheduled and as-needed-unscheduled in-person meeting(s).
Minimum Clearance Required to Start: Candidates will be required to pass a GPO public trust background check ahead of onboarding.
Employee Type: W2 or 1099
Citizenship: US Citizen, no Dual Citizenship
Position Overview NexThreat is seeking an experienced SIEM Support Specialist to augment the Government Publishing Office’s (GPO) IT Security division. The SIEM Support Specialist will provide expert consultation, operational support, and maintenance for Security Information and Event Management (SIEM) platforms and related security tools. This role aims to develop, enhance, and mature the GPO’s Zero Trust Architecture (ZTA), strengthen cyber hygiene, and improve overall cybersecurity posture in compliance with EO 14028.
Key Responsibilities
SIEM Operations & Support: Support the deployment, configuration, operation, and maintenance of SIEM platforms, including Microsoft Sentinel and NetWitness
Conduct continuous monitoring, threat detection, and incident response activities using SIEM data
Support SIEM upgrade activities, rule tuning, and troubleshooting of alerts and detections
Security Tool Support & Integration: Operate, maintain, and upgrade associated security tools, including but not limited to:
Microsoft Azure
Microsoft Defender for Endpoint (DfE)
Xacta 360/IO
Zscaler
FedRamp compliance tools
Cloudflare
Tenable IO
Nexpose
Armis
Trellix HX/CM
ServiceNow
Ensure all tools are integrated effectively within the cybersecurity ecosystem
Development & Maturation of ZTA: Assist in developing, maintaining, and maturing the GPO’s Zero Trust Architecture
Develop strategies to assess current cybersecurity posture and implement improvements aligned with EO 14028
Qualifications & Experience Education & Certifications:
Bachelor’s degree in Cybersecurity, Cybersecurity Operations, Information Technology, or a related field (or equivalent experience)
Certifications such as GIAC GCIH, GIAC GCED, CISSP, CompTIA CySA+, or Microsoft Defender certifications are preferred
Experience:
At least 3 years of working knowledge supporting SIEM platforms, especially Microsoft Sentinel and NetWitness in a government or enterprise environment
Hands-on experience supporting, upgrading, and tuning SIEM systems and related security tools
Technical Skills:
Strong understanding of security information and event management, threat detection, incident response processes, and modern cybersecurity practices
Familiarity with cloud security platforms (Azure, Zscaler, Cloudflare) and vulnerability management tools
Ability to support complex security environments and work effectively with diverse security tools and teams
NexThreat is dedicated to our employees\' well-being, growth, and satisfaction. We offer a competitive compensation package that supports and enables our corporate commitment to excellence. Our extensive benefits include: Medical, Dental, and Vision Insurance; 401(k) Plan with Matching Contributions; Life and AD&D Insurance; Up to Five weeks of PTO; Short-Term and Long-Term Disability Insurance; 529 College Savings Plan; Employee Learning Program with Tuition Reimbursement; Flexible Spending Account (FSA) and Health Savings Account (HSA) Plans; Profit Sharing; Employee Referral Program; $5,000 Company-Paid Travel/Vacation after 5 Years of Service. NexThreat is committed to equal opportunity and fair compensation, and to rewarding excellence.
#J-18808-Ljbffr
SIEM Support - ZTA Location: Washington, DC
Time Type: Full-time
Potential for Telework: Position eligible for telework upon approval; however, must be able to attend GPO IT SEC scheduled and as-needed-unscheduled in-person meeting(s).
Minimum Clearance Required to Start: Candidates will be required to pass a GPO public trust background check ahead of onboarding.
Employee Type: W2 or 1099
Citizenship: US Citizen, no Dual Citizenship
Position Overview NexThreat is seeking an experienced SIEM Support Specialist to augment the Government Publishing Office’s (GPO) IT Security division. The SIEM Support Specialist will provide expert consultation, operational support, and maintenance for Security Information and Event Management (SIEM) platforms and related security tools. This role aims to develop, enhance, and mature the GPO’s Zero Trust Architecture (ZTA), strengthen cyber hygiene, and improve overall cybersecurity posture in compliance with EO 14028.
Key Responsibilities
SIEM Operations & Support: Support the deployment, configuration, operation, and maintenance of SIEM platforms, including Microsoft Sentinel and NetWitness
Conduct continuous monitoring, threat detection, and incident response activities using SIEM data
Support SIEM upgrade activities, rule tuning, and troubleshooting of alerts and detections
Security Tool Support & Integration: Operate, maintain, and upgrade associated security tools, including but not limited to:
Microsoft Azure
Microsoft Defender for Endpoint (DfE)
Xacta 360/IO
Zscaler
FedRamp compliance tools
Cloudflare
Tenable IO
Nexpose
Armis
Trellix HX/CM
ServiceNow
Ensure all tools are integrated effectively within the cybersecurity ecosystem
Development & Maturation of ZTA: Assist in developing, maintaining, and maturing the GPO’s Zero Trust Architecture
Develop strategies to assess current cybersecurity posture and implement improvements aligned with EO 14028
Qualifications & Experience Education & Certifications:
Bachelor’s degree in Cybersecurity, Cybersecurity Operations, Information Technology, or a related field (or equivalent experience)
Certifications such as GIAC GCIH, GIAC GCED, CISSP, CompTIA CySA+, or Microsoft Defender certifications are preferred
Experience:
At least 3 years of working knowledge supporting SIEM platforms, especially Microsoft Sentinel and NetWitness in a government or enterprise environment
Hands-on experience supporting, upgrading, and tuning SIEM systems and related security tools
Technical Skills:
Strong understanding of security information and event management, threat detection, incident response processes, and modern cybersecurity practices
Familiarity with cloud security platforms (Azure, Zscaler, Cloudflare) and vulnerability management tools
Ability to support complex security environments and work effectively with diverse security tools and teams
NexThreat is dedicated to our employees\' well-being, growth, and satisfaction. We offer a competitive compensation package that supports and enables our corporate commitment to excellence. Our extensive benefits include: Medical, Dental, and Vision Insurance; 401(k) Plan with Matching Contributions; Life and AD&D Insurance; Up to Five weeks of PTO; Short-Term and Long-Term Disability Insurance; 529 College Savings Plan; Employee Learning Program with Tuition Reimbursement; Flexible Spending Account (FSA) and Health Savings Account (HSA) Plans; Profit Sharing; Employee Referral Program; $5,000 Company-Paid Travel/Vacation after 5 Years of Service. NexThreat is committed to equal opportunity and fair compensation, and to rewarding excellence.
#J-18808-Ljbffr