Recro Corporation
Endace Platform Engineer (Cyber Engineer) with Security Clearance
Recro Corporation, Fairfax, Virginia, United States, 22032
Endace Platform Engineer (Cyber Engineer) with Security Clearance
Apply to the Endace Platform Engineer (Cyber Engineer) with Security Clearance role at Recro Corporation.
Recro, a Certified Small Business, helps federal agencies achieve their goals through IT infrastructure, cybersecurity, DevOps, cloud services, and digital transformation. We prioritize innovation, employee growth, and a collaborative work environment, guided by our core value – to make a difference.
Locations: McLean, VA; JB Andrews, MD; Norfolk, VA; Tampa, FL; Colorado Springs, CO; Reston, VA; College Park, MD.
Clearance: TS/SCI (Willing to obtain a CI Poly).
Responsibilities
Architect, deploy, integrate, and operate Endace packet capture, monitoring, and network recording platforms across a large, distributed enterprise.
Design, install, configure, maintain, and optimize Endace systems while integrating with SIEM/SOAR, detection engineering, analytics tooling, and broader Zero Trust security controls.
Lead the design, deployment, and configuration of Endace appliances for enterprise‑scale packet capture.
Develop packet capture strategies aligned to network architecture, mission requirements, and Zero Trust visibility controls.
Build high‑availability, scalable, and resilient Endace clusters across data centers and cloud‑connected environments.
Integrate Endace with analytics ecosystems (SIEM, SOAR, NDR, EDR, threat intel, investigation platforms).
Maintain and tune Endace hardware and software for optimal performance, including upgrades, patching, sensor tuning, and storage lifecycle.
Troubleshoot packet loss, timing drift, flow indexing issues, clock synchronization, and performance bottlenecks.
Monitor device health, capacity, and telemetry fidelity to ensure consistent, forensically‑sound data capture.
Manage PCAP retention strategies, indexing policies, and storage allocation across distributed deployments.
Align Endace visibility architecture with Zero Trust telemetry requirements and continuous verification workflows; ensure packet capture and telemetry support identity‑aware network segmentation and policy enforcement.
Support development of traffic baselines, segmentation decisions, and enforcement models using Endace data.
Automate deployment, configuration, and sustainment workflows using Ansible, Terraform, or scripting.
Build dashboards, runbooks, playbooks, and investigation workflows for SOC, threat hunters, and IR teams.
Partner with network engineering, cloud teams, and security operations to ensure full‑spectrum telemetry coverage.
Deliver training and guidance to operational teams on Endace platform usage and best practices.
Required Qualifications
5+ years of experience in cybersecurity engineering, network security, or SOC tooling.
Strong understanding of packet analysis, network forensics, deep packet inspection, and PCAP workflows.
Proficiency in Linux administration and scripting (Python, Bash, PowerShell).
Experience supporting regulated or high‑security environments (DoD, IC, FedRAMP, PCI, HIPAA).
Familiarity with Zero Trust Architecture, segmentation principles, and identity‑centric policy models.
Demonstrated experience integrating Endace with SIEMs, SOAR tools, and investigation platforms.
Solid understanding of core network protocols (TCP/IP, TLS, DNS, HTTP/S, NetFlow/IPFIX, etc.).
Active TS/SCI clearance; willingness to take a polygraph exam.
Associate’s degree and 5+ years of experience supporting IT projects and activities, Bachelor’s degree and 3+ years, or Master’s degree and 1+ year (experience may substitute for degree).
DoD 8570.01‑M Information Assurance Technician (IAT) Level II Certification (Security+, CCNA‑Security, GSEC, SSCP, CySA+, GICSP, or CND).
Ability to obtain a DoD 8570.01‑M Cybersecurity Service Provider certification.
Infrastructure Support Certification (CEH, CHFI, CFR, Cloud+, or CND) within 30 days of start date.
Preferred Qualifications
Proven hands‑on experience deploying, configuring, and managing Endace DAG/EndaceProbe solutions in production.
Familiarity with complementary network tools (Zeek, Suricata, Arkime, NDR platforms).
Experience with cloud networking and packet capture strategies in AWS, Azure, or GCP.
Certifications such as CISSP, GCIA, GNFA, GCIH, or vendor‑specific credentials.
Strong analytical and problem‑solving ability.
Excellent communication and documentation skills.
Able to collaborate with cross‑functional technical and non‑technical stakeholders.
Comfortable leading architecture conversations and driving platform strategy.
Benefits at Recro
100% paid medical, dental, and vision
401k with 6% matching and profit sharing
PTO – 120 hours
Federal Holidays
Education and Tuition Reimbursements
Wellness Benefits
A lot of cool gear!
Company Culture
A Great Culture – we build a culture where amazing people can do their best work.
A Great Place to Work – employees are treated like people, not line items.
A Great Place to Contribute – diverse perspectives improve each challenge.
A Great Place to Grow – we invest in each other through teamwork, collaboration, and training.
Seniority level Mid‑Senior level
Employment type Part‑time
Job function Engineering and Information Technology
Industries Industrial Machinery Manufacturing
Referrals increase your chances of interviewing at Recro Corporation by 2x.
Chantilly, VA $130,000.00-$150,000.00 3 weeks ago
Reston, VA $123,000.00-$176,000.00 1 week ago
Washington DC‑Baltimore Area $80,000.00-$120,000.00 3 days ago
Washington, DC $150,000.00-$180,000.00 2 months ago
Fairfax, VA $99,008.00-$134,368.00 4 months ago
Washington DC‑Baltimore Area $60,000.00-$80,000.00 18 hours ago
Washington DC‑Baltimore Area $120,000.00-$165,000.00 19 hours ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Recro, a Certified Small Business, helps federal agencies achieve their goals through IT infrastructure, cybersecurity, DevOps, cloud services, and digital transformation. We prioritize innovation, employee growth, and a collaborative work environment, guided by our core value – to make a difference.
Locations: McLean, VA; JB Andrews, MD; Norfolk, VA; Tampa, FL; Colorado Springs, CO; Reston, VA; College Park, MD.
Clearance: TS/SCI (Willing to obtain a CI Poly).
Responsibilities
Architect, deploy, integrate, and operate Endace packet capture, monitoring, and network recording platforms across a large, distributed enterprise.
Design, install, configure, maintain, and optimize Endace systems while integrating with SIEM/SOAR, detection engineering, analytics tooling, and broader Zero Trust security controls.
Lead the design, deployment, and configuration of Endace appliances for enterprise‑scale packet capture.
Develop packet capture strategies aligned to network architecture, mission requirements, and Zero Trust visibility controls.
Build high‑availability, scalable, and resilient Endace clusters across data centers and cloud‑connected environments.
Integrate Endace with analytics ecosystems (SIEM, SOAR, NDR, EDR, threat intel, investigation platforms).
Maintain and tune Endace hardware and software for optimal performance, including upgrades, patching, sensor tuning, and storage lifecycle.
Troubleshoot packet loss, timing drift, flow indexing issues, clock synchronization, and performance bottlenecks.
Monitor device health, capacity, and telemetry fidelity to ensure consistent, forensically‑sound data capture.
Manage PCAP retention strategies, indexing policies, and storage allocation across distributed deployments.
Align Endace visibility architecture with Zero Trust telemetry requirements and continuous verification workflows; ensure packet capture and telemetry support identity‑aware network segmentation and policy enforcement.
Support development of traffic baselines, segmentation decisions, and enforcement models using Endace data.
Automate deployment, configuration, and sustainment workflows using Ansible, Terraform, or scripting.
Build dashboards, runbooks, playbooks, and investigation workflows for SOC, threat hunters, and IR teams.
Partner with network engineering, cloud teams, and security operations to ensure full‑spectrum telemetry coverage.
Deliver training and guidance to operational teams on Endace platform usage and best practices.
Required Qualifications
5+ years of experience in cybersecurity engineering, network security, or SOC tooling.
Strong understanding of packet analysis, network forensics, deep packet inspection, and PCAP workflows.
Proficiency in Linux administration and scripting (Python, Bash, PowerShell).
Experience supporting regulated or high‑security environments (DoD, IC, FedRAMP, PCI, HIPAA).
Familiarity with Zero Trust Architecture, segmentation principles, and identity‑centric policy models.
Demonstrated experience integrating Endace with SIEMs, SOAR tools, and investigation platforms.
Solid understanding of core network protocols (TCP/IP, TLS, DNS, HTTP/S, NetFlow/IPFIX, etc.).
Active TS/SCI clearance; willingness to take a polygraph exam.
Associate’s degree and 5+ years of experience supporting IT projects and activities, Bachelor’s degree and 3+ years, or Master’s degree and 1+ year (experience may substitute for degree).
DoD 8570.01‑M Information Assurance Technician (IAT) Level II Certification (Security+, CCNA‑Security, GSEC, SSCP, CySA+, GICSP, or CND).
Ability to obtain a DoD 8570.01‑M Cybersecurity Service Provider certification.
Infrastructure Support Certification (CEH, CHFI, CFR, Cloud+, or CND) within 30 days of start date.
Preferred Qualifications
Proven hands‑on experience deploying, configuring, and managing Endace DAG/EndaceProbe solutions in production.
Familiarity with complementary network tools (Zeek, Suricata, Arkime, NDR platforms).
Experience with cloud networking and packet capture strategies in AWS, Azure, or GCP.
Certifications such as CISSP, GCIA, GNFA, GCIH, or vendor‑specific credentials.
Strong analytical and problem‑solving ability.
Excellent communication and documentation skills.
Able to collaborate with cross‑functional technical and non‑technical stakeholders.
Comfortable leading architecture conversations and driving platform strategy.
Benefits at Recro
100% paid medical, dental, and vision
401k with 6% matching and profit sharing
PTO – 120 hours
Federal Holidays
Education and Tuition Reimbursements
Wellness Benefits
A lot of cool gear!
Company Culture
A Great Culture – we build a culture where amazing people can do their best work.
A Great Place to Work – employees are treated like people, not line items.
A Great Place to Contribute – diverse perspectives improve each challenge.
A Great Place to Grow – we invest in each other through teamwork, collaboration, and training.
Seniority level Mid‑Senior level
Employment type Part‑time
Job function Engineering and Information Technology
Industries Industrial Machinery Manufacturing
Referrals increase your chances of interviewing at Recro Corporation by 2x.
Chantilly, VA $130,000.00-$150,000.00 3 weeks ago
Reston, VA $123,000.00-$176,000.00 1 week ago
Washington DC‑Baltimore Area $80,000.00-$120,000.00 3 days ago
Washington, DC $150,000.00-$180,000.00 2 months ago
Fairfax, VA $99,008.00-$134,368.00 4 months ago
Washington DC‑Baltimore Area $60,000.00-$80,000.00 18 hours ago
Washington DC‑Baltimore Area $120,000.00-$165,000.00 19 hours ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr