Cyber Security Engineer, National Incident Response Team

The National Incident Response Team (NIRT), a national service provider for the Federal Reserve System (FRS), delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the Federal Reserve System. The mission of the National Incident Response Team is to play a leading role in the Federal Reserve System's efforts to protect its information systems against unauthorized use. As a Cyber Security Engineer this role will support the activities that provide security monitoring and incident response services to the FRS, with a focus on consuming, transforming, extracting and delivering clean and timely data to/from the tools used in the process. This role will also complete projects and tasks on an as needed basis, run and support the tools of the operation and interact directly with FRS technical and business customers located across the United States. Development and administration of new data feeds and services requires an understanding of how to design and deploy data manipulation technologies and often focuses on the routine installation of agents/data collectors, producing effective documentation, tuning and aggregation to support security analysts and incident response teams. Duties also include the development of custom data parsers, custom scripting, event log analysis and reporting, and exploring opportunities for advanced threat detection. The successful candidate for this position will have experience with the administration of security monitoring tools. The candidate will be professional and approachable, able to share knowledge with other staff, provide support to security analysts, and work side-by-side with other security departments to ensure that the FRS security systems are brought together for an effective and advanced security monitoring and incident response program. The candidate must be a self-starter, able to take project tasks from start to completion without direct supervision. The role will interact directly with NIRT's technical and business customers located across the United States. Requires:  5 years (8 years preferred) of combined IT and security work experience with a broad range of exposure to systems analysis, application development, systems administration and over 3 years experience (over 5 years preferred) in computer network defense, computer network exploitation, incident response, computer forensics, malware reversing, cyber intelligence or engineering principles discipline.     The candidate should possess in-depth knowledge and understanding of a breadth of information technologies and information security topics. Specifically, this should include the following: Experience with commercial SIEM products like Qradar Familiarity with Big Data technologies, such as Kafka Project and support experience Understanding of Information security architecture Enabling security event collection, parsing and correlation across diverse data sets Experience providing support to IT systems, including day-to-day operations, monitoring and problem resolution for applications, and servers Experience with Linux and windows servers Ability to analyze and work with structured data for the purpose of integrating across platforms. Basic bash scripting abilities Experience with cloud and container environments Demonstrated capability to learn and develop new analytical skills. Strong conceptual and practical understanding of IT Infrastructure designs, technologies, products, and services. This should include knowledge of networking protocols, firewall functionality, host and network intrusion detection systems, operating systems, databases, encryption, load balancing, and other technologies. Excellent technical writing and oral communication capabilities Ability to provide off hours support as required by project schedules or management Ability to obtain and maintain National Security Clearance. Top 5 Required Technical Skills: Linux OS/Unix utilization Windows utilization Data manipulation SIEM utilization System configuration Preferred Skills: Experience using various tools and technologies to transform data into information used in cyber security contexts. Certified Information Systems Security Professional (CISSP) or Associate (ISC)2 certified/qualified or ability to actively work towards obtaining certification. Education/Certifications: Bachelor degree in Computer Science or a related discipline and experience in security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience. 256996
Salary Range: NA
Minimum Qualification
Less than 5 years

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.