Posted 1 day ago
Top Secret/SCI
$140,000 - $145,000
Polygraph
IT - Security
McLean, VA (On-Site/Office)
Zachary Piper Solutions is seeking a Network Intrusion Detection Engineer to support an IC customer. This is a full-time, on-site position. You will deploy, tune, and maintain IDS/IPS solutions in a complex enterprise environment running Red Hat Enterprise Linux.
*This position requires an active TS/SCI Clearance w/ CI Poly to be considered for the role*
Key Responsibilities:
Required Qualifications:
Compensation & Benefits:
This position will start accepting applicants on 1/5/2026 and will remain open for 30 days
Network Intrusion Detection Engineer, IDS, IPS, Suricata, Snort, Corelight, Vectra AI, Intrusion Detection Systems, Intrusion Prevention Systems, Network Security, Cybersecurity, YAML configuration, Red Hat Enterprise Linux, RHEL, Linux Administration, SE-Linux, Kernel Modules, NIC tuning, Napatech NIC, Packet Capture, DMA, RSS queues, Interrupt Coalescing, NIC acceleration, TS/SCI Clearance, DoD 8570, IAT Level II, Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, CEH, CHFI, CFR, Cloud+, CND Certification, SIEM Integration, Splunk, Bash, Python, Ansible, Automation, Network Protocols, Event Correlation, Containerization, Docker, Kubernetes, NDR Solutions, FireEye, Trellix, Darktrace, Fortinet FortiNDR, Trend Vision, Documentation, Runbooks, Troubleshooting, Performance Tuning, Communication Skills, Self-Starter, Team Collaboration.
#LI-ONSITE
#LI-CS1
*This position requires an active TS/SCI Clearance w/ CI Poly to be considered for the role*
Key Responsibilities:
- Design, deploy, and maintain IDS/IPS systems across large enterprise networks.
- Optimize YAML configurations for accurate detection and minimal false positives.
- Tune IDS/IPS for high-performance packet capture and NIC optimization.
- Integrate IDS/IPS with SIEM and security monitoring platforms.
- Troubleshoot IDS/IPS issues on RHEL, including kernel modules and SE-Linux policies.
- Document configurations, tuning processes, and deployment steps.
- Stay current on IDS/IPS software updates and best practices.
Required Qualifications:
- Hands-on experience with Suricata, Snort, Corelight, or similar IDS/IPS tools.
- Strong Linux administration skills (RHEL), including package and kernel module management.
- Expertise in YAML configuration and IDS/IPS performance tuning.
- Familiarity with NIC features (DMA, RSS, interrupt moderation, offload capabilities).
- TS/SCI clearance w/ ability to obtain a counter-intelligence polygraph and DoD 8570 IAT Level II certification.
- Associate's degree + 5 years, Bachelor's + 3 years, or equivalent experience.
Compensation & Benefits:
- Salary range: $140,000 - $145,000 based on experience.
- Comprehensive benefits package including health, dental, vision, 401(k), paid holidays, PTO , and sick leave (as required by law).
This position will start accepting applicants on 1/5/2026 and will remain open for 30 days
Network Intrusion Detection Engineer, IDS, IPS, Suricata, Snort, Corelight, Vectra AI, Intrusion Detection Systems, Intrusion Prevention Systems, Network Security, Cybersecurity, YAML configuration, Red Hat Enterprise Linux, RHEL, Linux Administration, SE-Linux, Kernel Modules, NIC tuning, Napatech NIC, Packet Capture, DMA, RSS queues, Interrupt Coalescing, NIC acceleration, TS/SCI Clearance, DoD 8570, IAT Level II, Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, CEH, CHFI, CFR, Cloud+, CND Certification, SIEM Integration, Splunk, Bash, Python, Ansible, Automation, Network Protocols, Event Correlation, Containerization, Docker, Kubernetes, NDR Solutions, FireEye, Trellix, Darktrace, Fortinet FortiNDR, Trend Vision, Documentation, Runbooks, Troubleshooting, Performance Tuning, Communication Skills, Self-Starter, Team Collaboration.
#LI-ONSITE
#LI-CS1
group id: 10430981
