Information Systems Security Engineer (ISSE) - Military Veterans

The mission of the Lone Wolf program is to support, operate, and maintain the Distributed Continuity Integrated Network - Top Secret Enterprise Services (DCIN-TS ES) which is a DoD-provided, TS/SCI, integrated voice, video, and data, global communications network that facilitates collaboration among senior leaders and key staff. The Lone Wolf program boasts a professional workforce comprised of specialists throughout the Information Technology lifecycle and who contribute to a positive work environment.

The Lone Wolf Team is Mission Focused, Customer Oriented, Process Guided, and Solutions Driven. Candidates interested in joining the team must be critical thinkers, have a strong work ethic, and be able to work independently or as a member of a team in a dynamic environment that supports a critical and rewarding mission. We value candidates who are detail-oriented while also being able to think and react quickly to emerging and unique problem sets. To be successful, you must be able to rapidly adapt and learn how to operate the front and back end of new products and processes. The Team is expected to grow and is looking for people who can apply disciplined processes and provide imaginative solutions that enable the adoption of innovation and emerging technologies that create opportunities for transformative change.

Responsibilities:

The duties and responsibilities of the Information Systems Security Engineer include, but are not limited to, the following:

• Provide overall Tier II and III engineering and administration support in a large Cyber Environment with various Cyber Tools, primarily focusing on the SIEM product SPLUNK.
• Create custom dashboards, write queries, build and generate reports, and set up alerts and notifications using all Cyber tools.
• Demonstrate proficiency in recognizing and onboarding new data sources into Cyber tools, and analyze the data for anomalies and trends.
• Implement and manage Cyber Tool apps, queries, dashboards, alerts, and reports to provide actionable insights to various teams.
• Perform log auditing and management. Collaborate closely with the operations team to monitor systems and environments for security incidents and general security operations.
• Choose the appropriate standards, processes, procedures, and tools throughout the system development life cycle to support the generation of cybersecurity engineering products.
• Design technical, operational, and organizational control solutions to maintain an acceptable security posture.
• Administer and operate information security compliance tools/platforms, with a special focus on managing Tenable Security Center and NESSUS.
• Provide guidance on vulnerability and malware remediation.
• Identify potential conflicts with the implementation of any cybersecurity tools within the enterprise and develop recommendations to resolve these conflicts.
• Provide Tier II and III maintenance and troubleshooting support for deployed cybersecurity technologies.
• Assist with periodic and regular security assessments.
• Assist with the development and maintenance of information security policies, standards, and control procedures to enable compliance with RMF.
• Assist with POA&M management, mitigation statement formulation, and interfacing with system administrators to resolve open findings on high and at-risk systems.

• Tier I, II, III Splunk Admin Knowledge
• Working experience with ForeScout
• 2+ years of experience in a Splunk roleworking in a Splunkclustered environment.
• 2+ years of knowledge and experience with Tenable Security Center and Trellix administration.
• Experience with developing and presenting vulnerability information for technical and non-technical audiences.
• Experience with MS Office products, specifically Word, Excel, PowerPoint, SharePoint, Teams, and especially Project.
• Exceptional attention to detail; excellent verbal and written communication skills; strong critical thinking, organizational, time-management, and problem-solving skills.
• Ability to work both independently and as part of a team in a dynamic environment.

• Must have active Top Secret clearance with SCI or TS with the ability to acquire SCI

• High School Diploma

• 10 years of related experience

• Certified in accordance with Cyber Workforce Management Program DoDD 8140.1 and DoD 8570.01-M IAT level II baseline certification requirements such as SEC+ or equivalent.
• Must have at least one of the following certifications: Splunk Core Certified Advanced Power User, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, or Splunk Core Certified Consultant

• BS or BA degree in a Computer Science or a related scientific discipline and 5+ years of experience in an administrator position
• Ability to work within VMWare, VCenter and Nutanix building Red Hat systems.
• Managing and maintaining Red Hat Satellite/Ansible
• Possess understanding and experience with common cybersecurity toolsets and processes to include STIGS, IAVA Management and Implementation, and OPORD/FRAGO support.
• Demonstrated experience in analysis simulation environment, configuring/troubleshooting software/hardware enhancements, application deployments, and infrastructure upgrades in a dynamic information system hosting environment.