IA Security Engineer (ArcSight Logger – IAT II)

Location: Richmond, VA
Date Posted: 09-13-2017
IA Security Engineer (ArcSight Logger – IAT II):

Silotech Group Inc. is a dynamic IT and Management Consulting firm based in the San Antonio, TX area. We are currently seeking an IA Security Engineer (ArcSight Logger – IAT II) for a full-time position in support of the Defense Logistics Agency located in Richmond, VA.

Scope of Work:

The JETS Program provides the full range of IT services, technical and management expertise that support applications, software, hardware, infrastructure, and systems, across the DLA IT Enterprise. Support is provided for information technology solutions, technical support, maintenance, and sustainment; operations support; application development, maintenance and technical support; and lifecycle management. Additionally, the program also supports administrative program management support for IT program offices and DLA Information Operations (J6) Office.   The program provides support technology services across the DLA Information Operations Enterprise, the DLA Program Executive Offices (PEO), and all other technology services currently supported through DLA Contracting Services Office (DCSO) acquisitions.
 
Duties of an IA Security Engineer may include:
 
  • Perform a variety of routine project tasks applied to specialized information assurance problems
  • Execute integration of electronic processes or methodologies to resolve total system problems, or technology problems as they relate to IA requirements
  • Conduct security assessments and security consulting services
  • Analyze information security requirements
  • Apply analytical and systematic approaches in the resolution of problems of work flow, organization, and planning
  • Responsible for integration and sustainment of the DLA NOSC ArcSight Connector Appliance models operating on both HP and Dell platforms
  • Utilize Connector Appliance and Logger diagnostic tools to analyze the architecture's current health
  • Demonstrate expertise in the ArcSight recommended configurations of Connector Appliance (CA) containers supporting the Windows Unified Connector (WUC), Syslog, IIS, Database and Exchange SmartConnectors including software based agents
  • Possess knowledge of commands necessary to manage CA and Logger via UNIX, SSH and the Graphical User Interface (GUI)
  • Solid background in REGEX, MySQL, and Boolean to develop reports, dashboards and log searches on Logger in order to validate log data and identify malicious traffic
  • Experience in the proper configuration of Logger Storage Groups, Logger Receivers and SAN systems to support event load for over 40K DLA devices and optimization to reduce time spent in data mining
 
Required Skills / Experience:
  • Possess a relevant certification meeting the DOD 8570.01 IAT level II. One of the following:
    • CCNA Security
    • GICSP
    • GSEC
    • Security+ CE
    • SSCP
  • Must hold a DOD 8570 CNDSP Infrastructure certification. One of the following:
    • SSCP
    • CEH
  • Four (4) years of relevant IT experience
  • Two (2) years of experience maintaining ArcSight Logger in a DOD environment
  • Experience creating custom reports in ArcSight Logger
  • Experience in the integration and sustainment of ArcSight Connector Appliance and Logger components
  • DOD IA experience
  • Five (5) years of Information Security experience
  • Must have an active DOD Top Secret Clearance at time of proposal submission 
  • Knowledge of DOD directives 8500.2, 8530.2, CJCSI 6510, and DISA STIGS- specifically requirements pertaining to the access and retention of network device logs
  • Must possess active Top Secret clearance 
Benefits:
  • 3 weeks of paid vacation, plus 10 Federal holidays paid off,
  • 401K Matching
  • Silotech pays for 75% of the employees medical coverage and 40% of the employee family's coverage.
  • Employee enrichment program. Silotech reimburses for successful completion of certifications.
  • Referral incentive bonus for new hires that are with the company for 6 months up to 3K.
Contact: Jimmy Vick  
email: jvick@silotechgroup.com cell:870-897-8903 office: 210-569-0957
or
this job portal is powered by CATS