Yesterday
Top Secret
Mid Level Career (5+ yrs experience)
IT - Security
Columbus, OH•Ft Belvoir, VA•Battle Creek, MI
SIEM Content Developer
**Contingent on contract award**
Work shall be performed at DLA locations in Columbus, Ohio, Ft. Belvoir, Virginia or Battle Creek, MI.
Description
Connected Logistics is recruiting for a SIEM Content Developer to support DLA's External Application Incident Response Support Services (EAIRSS).
This position involves researching and developing new threat detection use cases based on emerging threats, threat intelligence research and Threat Detection Analyst feedback. You will work with stakeholders and cybersecurity tool SMEs to identify gaps in security protection and analytics capabilities. You will develop custom scripts to enhance SIEM functionality, reviews the quality of data feeds and recommend and/or implement improvements and collaborates with stakeholders to identify critical systems and application components to develop alerting priorities and create signatures tailored to individual programs and applications.
Requirements
Five (5) years of relevant IT experience
Three (3) years working with a SIEM in a content development or Incident Response role.
Three (3) years of System and/or Network Administration experience
Understanding of various log formats
Understanding of the MITRE ATT&CK framework
Strong understanding of network architecture
Experience developing and maintaining scripts (preferably using Powershell, Python or SPL)
Understanding of Defense-in-Depth
Must possess a current DOD Top Secret Clearance and be eligible for an IT-I Critical Sensitive security clearance or Tier 5
Must have Baseline Certification for IT-II and CNDSP/CSSP-IR when on boarding and must have one of the “Computer Network Defense” CE Certifications within six (6) months of on-boarding.
Connected Logistics respects the need for confidentiality for all applicants.
Connected Logistics offers an excellent benefits package that includes health, dental, vision, life and disability insurance, a great 401(k) package, and generous Paid Time Off.
EQUAL OPPORTUNITY EMPLOYER. It is our policy to abide by all federal, state and local laws prohibiting employment discrimination solely on the basis of a person’s race, religious creed, color, national origin, ancestry, physical disability, mental condition (including, but not limited to, cancer related or HIV related), marital status, sex, gender (including sex stereotyping), age, sexual orientation, military status, or any other protected status except where a reasonable, bona fide occupational qualification exists
**Contingent on contract award**
Work shall be performed at DLA locations in Columbus, Ohio, Ft. Belvoir, Virginia or Battle Creek, MI.
Description
Connected Logistics is recruiting for a SIEM Content Developer to support DLA's External Application Incident Response Support Services (EAIRSS).
This position involves researching and developing new threat detection use cases based on emerging threats, threat intelligence research and Threat Detection Analyst feedback. You will work with stakeholders and cybersecurity tool SMEs to identify gaps in security protection and analytics capabilities. You will develop custom scripts to enhance SIEM functionality, reviews the quality of data feeds and recommend and/or implement improvements and collaborates with stakeholders to identify critical systems and application components to develop alerting priorities and create signatures tailored to individual programs and applications.
Requirements
Five (5) years of relevant IT experience
Three (3) years working with a SIEM in a content development or Incident Response role.
Three (3) years of System and/or Network Administration experience
Understanding of various log formats
Understanding of the MITRE ATT&CK framework
Strong understanding of network architecture
Experience developing and maintaining scripts (preferably using Powershell, Python or SPL)
Understanding of Defense-in-Depth
Must possess a current DOD Top Secret Clearance and be eligible for an IT-I Critical Sensitive security clearance or Tier 5
Must have Baseline Certification for IT-II and CNDSP/CSSP-IR when on boarding and must have one of the “Computer Network Defense” CE Certifications within six (6) months of on-boarding.
Connected Logistics respects the need for confidentiality for all applicants.
Connected Logistics offers an excellent benefits package that includes health, dental, vision, life and disability insurance, a great 401(k) package, and generous Paid Time Off.
EQUAL OPPORTUNITY EMPLOYER. It is our policy to abide by all federal, state and local laws prohibiting employment discrimination solely on the basis of a person’s race, religious creed, color, national origin, ancestry, physical disability, mental condition (including, but not limited to, cancer related or HIV related), marital status, sex, gender (including sex stereotyping), age, sexual orientation, military status, or any other protected status except where a reasonable, bona fide occupational qualification exists
group id: 10435775
