Zenetex LLC

  • Computer Network Defense Senior SME

    Posted Date 2 months ago(5/24/2018 2:49 PM)
    Job ID
    2018-1645
    # of Openings
    1
    Job Location
    US-AZ-Fort Huachuca
    Category
    Information Technology
  • Overview

    ZENETEX specializes in management and technology support services for a variety of Federal agencies and commercial organizations nationwide. Our company is experiencing tremendous growth across all of our practice areas! In support of future work, we are reviewing resumes for the position of Computer Network Defense Senior Subject Matter Expert (SME). This is a contingent position - actual employment will be dictated by contract award. Candidates meetiing the minimum requirements will be contacted by a member of our recruiting team. This position will support the mission to operate, monitor, secure, and sustain Army NIPRNet and SIPRNet CND services and shall provide CND services to CONUS users 24-hours a day, seven days a week, and will require an active TS/SCI DoD Security Clearance. We are unable to consider candidates not cleared at this level. 

    Primary Duties and Responsibilities

    This work will be in support of the U.S. Army Regional Cyber Center (USARCC-C) based in Fort Huachuca, AZ. In this position you may perform a variety of duties as follows: 

    • Develop Intrusion Protection System/Intrusion Detection System procedures; correlate and react to security events; perform first- and second-level triage; and forward suspicious activity

    • Use a Security Information Management tool to aggregate approximately 13.6 million security events per day from multiple sources. During the life of this contract, other sources may be Active Directory domain controllers and DNS servers

    • Perform advanced systems administration for the enterprise sensor mission relative to platform architecture, configuration, lifecycle support, and technology refresh and infusion

    • Develop and document disaster recovery procedures for managed CND systems, including IPS/IDS, system baseline tools, host-based systems and agents, server managers, applications, and remote management systems. Store written procedures in the Document Management System database

    • Perform daily backups, implement system upgrades, and verify system configurations, accounts, and passwords conform to baseline standards

    • Establish and maintain written procedures to set up, track, and document status and location of hardware and software for each baseline of sensors. Store written procedures in the Document Management System database

    • Maintain, update, test, and implement signatures and policies for each baseline of sensors; changes must be approved through the established ITIL process

    • Build, configure, and assist with implementation of newly fielded sensors that support missions

    • Monitor all sensors and agents managed for security event analysis and response. Respond to a detected event and perform triage, ensure proper handling of the associated trouble ticket, and process events according to the CND SOP and appropriate TTPs

    • Maintain and update the triage database with current threat data and response methods

    • Maintain and update SIM tool software rules for optimal detection of malicious or unauthorized activity. Report system incidents and problems according to CND SOPs and service level agreements

    • Validate security event information from the ITSM ticket which includes at a minimum event name, date, time, location, source IP address, destination IP address, source ports, and destination ports. Contact the responsible NEC if additional information is required

    • Provide data analysis as tasked by the COR

    Education and Experience Requirements

    Education:

    • Bachelor’s Degree preferred

    Certifications:

    • Global Information Assurance Certification (GIAC) – Information Security Fundamentals or equivalent.

    • CND-IS Baseline Certification

    Security Clearance

    • This position will require U.S. citizenship and an active DoD Top Secret/SCI clearance

    ZENETEX is an equal opportunity/affirmative action employer. Qualified applicants are considered for employment without regard to age, race, national origin, sexual orientation, gender, gender identity and expression, disability, veteran status, or any other characteristic protected by law. 

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Need help finding the right job?

    We can recommend jobs specifically for you! Click here to get started.