Today
Dept of Homeland Security
Unspecified
Unspecified
Security
Rockville, VA (On-Site/Office)
PRISM is currently hiring a highly skilled and experienced ExtraHop Subject Matter Expert (SME) to provide deep technical expertise and leadership in the implementation, management, and optimization of our ExtraHop platform. The ideal candidate will possess a comprehensive understanding of network performance monitoring, security analytics, and the ExtraHop product
suite. As the ExtraHop SME, you will be responsible for ensuring the platform is effectively leveraged to provide actionable insights, improve network and application performance, enhance security posture, and support critical business initiatives.
Location:
• Location: Rockville, MD (Customer site)
• Remote Eligibility: Hybrid with ability to travel to customer site minimum 2-3 days/week
Qualifications:
• A Bachelor's Degree in Engineering, Computer Science, or a related field is preferred.
• Minimum of 3 years of experience as an ExtraHop administrator or subject matter
expert.
• Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.), network
infrastructure (routers, switches, firewalls, load balancers), and application architectures.
• Proven ability to design, implement, and manage large-scale ExtraHop deployments.
• Hands-on experience with ExtraHop Revealand/or other ExtraHop modules.
• Strong analytical and problem-solving skills with the ability to interpret complex data and
translate it into actionable insights.
• Experience in creating custom dashboards, alerts, and reports within ExtraHop.
• Familiarity with security concepts, threat detection methodologies, and security
information and event management (SIEM) systems such as Splunk.
• Familiarity with ExtraHop integration with Splunk, Splunk SOAR and Palo Alto firewalls.
• Excellent communication (both written and verbal) and interpersonal skills with the ability
to effectively communicate technical concepts to both technical and non-technical
audiences.
• Ability to work independently and collaboratively within a team environment.
• ExtraHop certification(s) (e.g., ExtraHop Certified Administrator).
• Experience integrating ExtraHop with other security and IT management tools such as
Splunk and Splunk SOAR.
• Familiarity with scripting languages (e.g., Python) for automation and data manipulation.
Clearance Required:
• Must be a US citizen and pass a background investigation.
• Must have an active DHS Suitability (preferred) or be able to obtain and maintain a DHS
Suitability/Entry on Duty (EOD)
Duties and Responsibilities:
• Serve as the primary point of contact and technical authority for all matters related to the
ExtraHop platform.
• Lead the planning, design, implementation, configuration, integration of the ExtraHop
deployment.
• Develop and implement best practices for utilizing ExtraHop for network performance
monitoring, application performance management (APM), and security investigations.
• Create and customize dashboards, alerts, reports, and triggers within ExtraHop to meet
the specific needs of various teams (e.g., Network, Security, Applications).
• Proactively monitor the ExtraHop environment to ensure optimal performance, health,
and scalability.
• Troubleshoot complex issues related to network and application performance and
security incidents using ExtraHop data.
• Collaborate with cross-functional teams, including Network Engineering, Security
Operations, Application Development, and IT Operations, to provide data-driven insights
and recommendations.
• Develop and maintain comprehensive documentation related to the ExtraHop
environment, configurations, and processes.
• Provide training and knowledge transfer to other team members on the effective use of
the ExtraHop platform.
• Stay up to date with the latest ExtraHop features, updates, and best practices, and
proactively recommend and implement relevant enhancements.
• Work with ExtraHop support and professional services as needed to resolve issues and
implement new functionalities.
• Contribute to the development and refinement of security policies and procedures based
on insights gained from ExtraHop.
• Participate in capacity planning and forecasting for the ExtraHop environment.
Decision Making Authority
Decision-making authority for own individual work efforts delivered as part of day-to-day support
of the program.
suite. As the ExtraHop SME, you will be responsible for ensuring the platform is effectively leveraged to provide actionable insights, improve network and application performance, enhance security posture, and support critical business initiatives.
Location:
• Location: Rockville, MD (Customer site)
• Remote Eligibility: Hybrid with ability to travel to customer site minimum 2-3 days/week
Qualifications:
• A Bachelor's Degree in Engineering, Computer Science, or a related field is preferred.
• Minimum of 3 years of experience as an ExtraHop administrator or subject matter
expert.
• Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.), network
infrastructure (routers, switches, firewalls, load balancers), and application architectures.
• Proven ability to design, implement, and manage large-scale ExtraHop deployments.
• Hands-on experience with ExtraHop Revealand/or other ExtraHop modules.
• Strong analytical and problem-solving skills with the ability to interpret complex data and
translate it into actionable insights.
• Experience in creating custom dashboards, alerts, and reports within ExtraHop.
• Familiarity with security concepts, threat detection methodologies, and security
information and event management (SIEM) systems such as Splunk.
• Familiarity with ExtraHop integration with Splunk, Splunk SOAR and Palo Alto firewalls.
• Excellent communication (both written and verbal) and interpersonal skills with the ability
to effectively communicate technical concepts to both technical and non-technical
audiences.
• Ability to work independently and collaboratively within a team environment.
• ExtraHop certification(s) (e.g., ExtraHop Certified Administrator).
• Experience integrating ExtraHop with other security and IT management tools such as
Splunk and Splunk SOAR.
• Familiarity with scripting languages (e.g., Python) for automation and data manipulation.
Clearance Required:
• Must be a US citizen and pass a background investigation.
• Must have an active DHS Suitability (preferred) or be able to obtain and maintain a DHS
Suitability/Entry on Duty (EOD)
Duties and Responsibilities:
• Serve as the primary point of contact and technical authority for all matters related to the
ExtraHop platform.
• Lead the planning, design, implementation, configuration, integration of the ExtraHop
deployment.
• Develop and implement best practices for utilizing ExtraHop for network performance
monitoring, application performance management (APM), and security investigations.
• Create and customize dashboards, alerts, reports, and triggers within ExtraHop to meet
the specific needs of various teams (e.g., Network, Security, Applications).
• Proactively monitor the ExtraHop environment to ensure optimal performance, health,
and scalability.
• Troubleshoot complex issues related to network and application performance and
security incidents using ExtraHop data.
• Collaborate with cross-functional teams, including Network Engineering, Security
Operations, Application Development, and IT Operations, to provide data-driven insights
and recommendations.
• Develop and maintain comprehensive documentation related to the ExtraHop
environment, configurations, and processes.
• Provide training and knowledge transfer to other team members on the effective use of
the ExtraHop platform.
• Stay up to date with the latest ExtraHop features, updates, and best practices, and
proactively recommend and implement relevant enhancements.
• Work with ExtraHop support and professional services as needed to resolve issues and
implement new functionalities.
• Contribute to the development and refinement of security policies and procedures based
on insights gained from ExtraHop.
• Participate in capacity planning and forecasting for the ExtraHop environment.
Decision Making Authority
Decision-making authority for own individual work efforts delivered as part of day-to-day support
of the program.
group id: PRISMVA
