View all jobs
CIRT Developer (Cyber Monitoring Integration)
Beltsville, MDThis position will work a rotating hybrid schedule in Beltsville, MD. WEEK 1 - 2 days onsite, 3 days remote WEEK 2 - 3 days onsite, 2 days remote.
This role supports the Cyber Incident Response Team (CIRT).
Duties of this position include:
Qualifications:
Basic Qualifications- To be considered for this position, you must at minimum meet the knowledge, skills, and abilities listed below:
This role supports the Cyber Incident Response Team (CIRT).
Duties of this position include:
- Implement cyber monitoring capabilities within our SIEM and detection tools.
- Develop and enhance threat dashboards and advanced analysis capabilities.
- Provide tuning of threat detection tools.
- Onboard and integrate cyber monitoring tools from the analyst’s perspective.
- Coordinate with engineers to assist in building and maintaining platforms.
- Coordinate with cyber threat experts to implement the latest signatures.
- Maintain Splunk dashboards and reports.
- Write Zeek (Bro), Suricata and Snort signatures.
- Maintain an understand Python and JavaScript within our tools.
- Maintain an understanding of Cloud Development with Microsoft Azure/MDE.
- Maintain an understanding of Machine Learning and User and Entity Behavior Analytics.
Qualifications:
Basic Qualifications- To be considered for this position, you must at minimum meet the knowledge, skills, and abilities listed below:
- Requires a BS 2-4 Years, MS 0-2 or HS 8-10 years of experience.
- US Citizenship is required with the ability to obtain an interim Secret clearance before start date and be able to obtain a Top Secret security clearance.
- Must be able to work a hybrid schedule
- Must possess one of the following certifications or the ability to obtain before start date: CCNA Security, CND, CySA+, GICSP, GSEC, Security+CE, or SSCP.
- Must be a US citizen