Navitas Business Consulting, Inc.
25-1069: Network Detection and Response (NDR) Architect
Navitas Business Consulting, Inc., Arlington, Virginia, United States, 22201
Network Detection and Response (NDR) Architect
Job ID #:
24-1069
Clearance:
Active Secret Clearance Required
Location:
Arlington, VA (Hybrid)
Who We Are:
Since our inception back in 2006, Navitas has grown to be an industry leader in the digital transformation space, and we’ve served as trusted advisors supporting our client base within the commercial, federal, and state and local markets.
What We Do:
At our very core, we’re a group of problem solvers providing our award‑winning technology solutions to drive digital acceleration for our customers! With proven solutions, award‑winning technologies, and a team of expert problem solvers, Navitas has consistently empowered customers to use technology as a competitive advantage and deliver cutting‑edge transformative solutions.
What You’ll Do:
As the selected Network Architect, you’ll be responsible for developing and implementing Network security solutions on our flagship Prime engagement!
Responsibilities will include but are not limited to:
Architect comprehensive NDR solutions tailored to organizational needs
Implement and configure NDR platforms like ExtraHop Reveal(x), Darktrace, or Vectra Cognito
Integrate NDR solutions with existing security infrastructure (SIEM, SOAR, etc.)
Design and implement network segmentation strategies to minimize attack surface
Network Traffic Analysis
Analyze network traffic patterns to identify anomalies and potential threats
Develop custom detection rules and algorithms for identifying sophisticated attacks
Utilize machine learning and AI capabilities of NDR tools for advanced threat detection
Perform regular network behavior analysis to establish baselines and detect deviations
Incident Response and Forensics
Lead incident response efforts for network‑related security events
Conduct in‑depth forensic analysis of security incidents
Develop and maintain incident response playbooks
Coordinate with other security teams during major security events
Continuous Improvement and Optimization
Regularly assess and optimize NDR tool configurations
Stay updated on emerging threats and adjust detection capabilities accordingly
Conduct periodic security assessments and penetration tests
Identify and implement new NDR technologies and methodologies
Reporting and Communication
Generate comprehensive reports on network security status and incidents
Present findings and recommendations to both technical and non‑technical stakeholders
Develop and deliver training sessions on NDR tools and best practices
Collaborate with cross‑functional teams to align NDR strategies with business objectives
Compliance and Governance
Ensure NDR practices align with relevant regulatory requirements (e.g., GDPR, HIPAA, PCI DSS)
Develop and maintain documentation for audits and compliance checks
Contribute to the development of security policies and procedures
What You’ll Need:
Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.) and OSI model
Proficiency in network security architectures and best practices
Strong knowledge of common attack vectors and techniques (e.g., APTs, malware, DDoS)
Expertise in one or more NDR platforms (ExtraHop, Darktrace, Vectra, etc.)
Familiarity with SIEM and SOAR technologies
Understanding of encryption technologies and PKI
Knowledge of cloud security principles and practices
Programming and Scripting
Proficiency in at least one scripting language (Python, PowerShell, Bash)
Experience with API integration and automation
Ability to develop custom tools and scripts for security analysis
Analytical and Problem‑Solving Skills
Strong analytical thinking and problem‑solving abilities
Experience in interpreting complex data sets and identifying patterns
Ability to think like an attacker to anticipate and mitigate threats
Soft Skills
Excellent written and verbal communication skills
Strong leadership and team collaboration abilities
Ability to explain complex technical concepts to non‑technical audiences
Proactive and self‑motivated with a passion for cybersecurity
Preferred Qualifications:
Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field
5+ years of experience in network security or related roles
Relevant certifications such as:
ExtraHop Certified Professional
CISSP
GIAC Security Expert (GSE)
CEH
CCNP Security
Experience with threat hunting and advanced persistent threat (APT) detection
Familiarity with regulatory compliance standards (GDPR, HIPAA, PCI DSS, etc.)
Tools and Technologies:
NDR Platforms: ExtraHop Reveal(x), Darktrace, Vectra Cognito
Network Analysis Tools: Wireshark, tcpdump, Netflow analyzers
SIEM Systems: Splunk, IBM QRadar, LogRhythm
SOAR Platforms: Palo Alto Cortex XSOAR, Swimlane, Phantom
Firewalls and IPS/IDS systems
Endpoint Detection and Response (EDR) solutions
Cloud Platforms: AWS, Azure, Google Cloud
Virtualization Technologies: VMware, Hyper‑V
Containerization and Orchestration: Docker, Kubernetes
Navitas Business Consulting Inc. is an Equal Opportunity Employer with a commitment to diversity. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, sexual orientation, disability status, protected veteran status, or any other characteristic protected by law.
#J-18808-Ljbffr
24-1069
Clearance:
Active Secret Clearance Required
Location:
Arlington, VA (Hybrid)
Who We Are:
Since our inception back in 2006, Navitas has grown to be an industry leader in the digital transformation space, and we’ve served as trusted advisors supporting our client base within the commercial, federal, and state and local markets.
What We Do:
At our very core, we’re a group of problem solvers providing our award‑winning technology solutions to drive digital acceleration for our customers! With proven solutions, award‑winning technologies, and a team of expert problem solvers, Navitas has consistently empowered customers to use technology as a competitive advantage and deliver cutting‑edge transformative solutions.
What You’ll Do:
As the selected Network Architect, you’ll be responsible for developing and implementing Network security solutions on our flagship Prime engagement!
Responsibilities will include but are not limited to:
Architect comprehensive NDR solutions tailored to organizational needs
Implement and configure NDR platforms like ExtraHop Reveal(x), Darktrace, or Vectra Cognito
Integrate NDR solutions with existing security infrastructure (SIEM, SOAR, etc.)
Design and implement network segmentation strategies to minimize attack surface
Network Traffic Analysis
Analyze network traffic patterns to identify anomalies and potential threats
Develop custom detection rules and algorithms for identifying sophisticated attacks
Utilize machine learning and AI capabilities of NDR tools for advanced threat detection
Perform regular network behavior analysis to establish baselines and detect deviations
Incident Response and Forensics
Lead incident response efforts for network‑related security events
Conduct in‑depth forensic analysis of security incidents
Develop and maintain incident response playbooks
Coordinate with other security teams during major security events
Continuous Improvement and Optimization
Regularly assess and optimize NDR tool configurations
Stay updated on emerging threats and adjust detection capabilities accordingly
Conduct periodic security assessments and penetration tests
Identify and implement new NDR technologies and methodologies
Reporting and Communication
Generate comprehensive reports on network security status and incidents
Present findings and recommendations to both technical and non‑technical stakeholders
Develop and deliver training sessions on NDR tools and best practices
Collaborate with cross‑functional teams to align NDR strategies with business objectives
Compliance and Governance
Ensure NDR practices align with relevant regulatory requirements (e.g., GDPR, HIPAA, PCI DSS)
Develop and maintain documentation for audits and compliance checks
Contribute to the development of security policies and procedures
What You’ll Need:
Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.) and OSI model
Proficiency in network security architectures and best practices
Strong knowledge of common attack vectors and techniques (e.g., APTs, malware, DDoS)
Expertise in one or more NDR platforms (ExtraHop, Darktrace, Vectra, etc.)
Familiarity with SIEM and SOAR technologies
Understanding of encryption technologies and PKI
Knowledge of cloud security principles and practices
Programming and Scripting
Proficiency in at least one scripting language (Python, PowerShell, Bash)
Experience with API integration and automation
Ability to develop custom tools and scripts for security analysis
Analytical and Problem‑Solving Skills
Strong analytical thinking and problem‑solving abilities
Experience in interpreting complex data sets and identifying patterns
Ability to think like an attacker to anticipate and mitigate threats
Soft Skills
Excellent written and verbal communication skills
Strong leadership and team collaboration abilities
Ability to explain complex technical concepts to non‑technical audiences
Proactive and self‑motivated with a passion for cybersecurity
Preferred Qualifications:
Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field
5+ years of experience in network security or related roles
Relevant certifications such as:
ExtraHop Certified Professional
CISSP
GIAC Security Expert (GSE)
CEH
CCNP Security
Experience with threat hunting and advanced persistent threat (APT) detection
Familiarity with regulatory compliance standards (GDPR, HIPAA, PCI DSS, etc.)
Tools and Technologies:
NDR Platforms: ExtraHop Reveal(x), Darktrace, Vectra Cognito
Network Analysis Tools: Wireshark, tcpdump, Netflow analyzers
SIEM Systems: Splunk, IBM QRadar, LogRhythm
SOAR Platforms: Palo Alto Cortex XSOAR, Swimlane, Phantom
Firewalls and IPS/IDS systems
Endpoint Detection and Response (EDR) solutions
Cloud Platforms: AWS, Azure, Google Cloud
Virtualization Technologies: VMware, Hyper‑V
Containerization and Orchestration: Docker, Kubernetes
Navitas Business Consulting Inc. is an Equal Opportunity Employer with a commitment to diversity. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, sexual orientation, disability status, protected veteran status, or any other characteristic protected by law.
#J-18808-Ljbffr