Sign Up Sign Up Log In Sign Up
This job has expired and you can't apply for it anymore. Start a new search.

SourceFire Subject Matter Expert

The SourceFire Subject Matter Expert will support Raytheon's DOMino contract, a single-award IDIQ worth over $1 billion. This contract delivers full lifecycle development and sustainment for the Department of Homeland Security’s (DHS) National Cybersecurity Protection System (NCPS). The NCPS assists more than 100 federal civilian government agencies with the protection of their networks against advanced cyber threats. Under this contract, Raytheon will support the government in the design, development, operations and maintenance services for the NCPS. Raytheon will build the mission critical cybersecurity solutions that will enable the timely dissemination of threat warnings and improve information sharing across DHS's stakeholder community.

The successful SourceFire Subject Matter Expert supports the development and implementation of cyber engineering strategies, tools and techniques to enhance a system’s cyber-resiliency against existing and emerging cyber-threats. The successful candidate will be required to perform hands-on technical analysis of test data and use critical thinking and a broad understanding of different technologies to identify areas susceptible to cyber-attack, based upon provided cyber-threat intelligence. Upon identifying susceptibilities, assist in developing recommended improvements to engineering requirements and specifications. The candidate will support development of presentations and reports to document findings, and will require good communication and interpersonal skills to convey findings in a tactful manner and at the technical proficiency of the audience.

Responsibilities also include:

  • Capable of providing cybersecurity engineering support on systems, system elements, interfacing systems, components, security tools, devices and/or processes for developmental and operational cyber tools
  • Possess in-depth technical and theoretical knowledge of cyber defensive operations and technologies
  • Capable of working independently or as a team member to solve cybersecurity engineering problems
  • Develop and analyze available COTs cyber protection tools that will improve security posture and provide recommendations that support the remediation and protection of systems
  • Perform requirements traceability to assessment findings
  • Perform cyber criticality, mission impact, and risk analysis of recommended tools
  • Translate analytical findings into security “use cases” that can be implemented within available surveillance capabilities
  • Provide detailed and accurate technical reporting of analysis results in the form of PowerPoint presentations and/or Word documents, as well as oral briefings on complex technical subjects attuned to senior management, technical, or non-technical audiences
Required Skills:
  • Install and configure the tool (including any work that needs to be done on the underlying OS)
  • Integrate the tool for RBAC services such as AD, LDAP, TACACS+
  • Configure the tool to work with system health monitoring tools via SNMP for status
  • Create and edit profiles appropriate for the customer environment
  • Understand filters with profiles and impact they have on performance
  • Monitor the tool's health and performance
  • Tune system parameters to enhance/improve system performance
  • Provide Tier 2/3 troubleshooting for SourceFire issues, either within the tool or as part of an integrated team of professionals addressing larger issues
  • Configure, troubleshoot, and monitor event flows including the integration of SourceFire data into a SIEM for use by cyber intrusion analysts
  • Act as the senior subject matter expert on the tool for interactions with other teams
  • Develop documentation (installation guides, support staff training materials, etc.)
  • Knowledge of router and firewall functionality on a network.
  • Prior experience with network intrusion
  • An active Top Secret clearance with SCI eligibility (SSBI in the last five years)
Desired Skills:
  • Should hold one or more of the following certifications in good, current standing: CISA, GCIH, GCED, CISSP, CASP, or Security+
  • 3+ years of related Identity Management tools engineering experience, including installing, configuring and troubleshooting experience with one or more of these tools:
    • CyberArk
    • SailPoint
    • CA PAM
    • Tenable-Nessu
  • One or more active certification listed below:
    • Tenable Certificate of Proficiency
    • SailPoint Certified IdentityIQ Engineer
    • SailPoint Certified IdentityIQ Architect
    • CyberArk Trustee certification (Level 1)
    • CyberArk Defender certification (Level 2)
    • CyberArk Sentry certification (Level 3)
    • CyberArk Guardian certification (Level 4
  • Able to work across multiple organizations, cultures, and service providers to synthesize actionable information
Required Education (including Major):

•Bachelor's degree and a minimum of 8 years of prior relevant experience.
•A Master’s degree in a related discipline may be substituted for two (2) years of experience
•Professional experience may be substituted for a degree

This position can be located to Arlington, VA and Pensacola, FL.

DOMino


This position requires a U.S. Person who is eligible to obtain any required Export Authorization.


139537BR 139537

Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Advertisement




Send me email alerts for similar jobs

JOIN US