About

• Description
• Serve as the lead systems administrator overseeing the configuration, maintenance, and optimization of ITCSU enterprise systems and virtualized environments.
• Manage virtual servers hosted on VMware ESXi hypervisors and several physical servers utilizing Dell, Cisco UCS, and Cisco HyperFlex hardware platforms.
• The CND Incident Response (CND/IR) Analyst shall identify, collect, and analyze network and host data, and report events or incidents that occur or might occur within a network to mitigate immediate and potential network and host threats.
• Provide trend analysis and reports on Computer Network Defense activity.
• Maintain situational awareness of Cyber incidents and activity with appropriate partners via tools and reporting mechanisms.
• Research, identify, and verify new Advanced Persistent Threat tactics, techniques, and procedures from commercial and government sources.
• Provide recommendations to strengthen the client’s overall Cybersecurity posture.
• Apply knowledge of monitoring, analyzing, detecting, and responding to Cyber events and incidents within information systems and networks.
• Advise on an integrated, dynamic Cyber defense and leverage Cybersecurity solutions to deliver Cybersecurity operational services, including intrusion detection and prevention, situational awareness of network intrusions, security events, and data spillage, and incident response actions.
• Designs, develops, engineers, and implements solutions that meet security requirements, and is responsible for the integration and implementation of computer system security solutions.
• Engineer will serve as an Information System Security Engineer (ISSE).
• Requirements
• Minimum of seven (7) years of experience performing computer network defense (CND) incident triage.
• Demonstrated experience managing VMware ESXi environments, virtual server provisioning, and performance optimization.
• Strong understanding of server hardware platforms including Dell, Cisco UCS, and Cisco HyperFlex systems.
• Experience maintaining Active Directory, Group Policy, DNS/DHCP, WSUS, and Microsoft Exchange or similar enterprise systems.
• Proficiency with VEEAM or equivalent enterprise backup and recovery solutions.
• Proven ability to perform STIG compliance, patch management, and vulnerability remediation in accordance with DoD and RMF standards.
• Experience analyzing log files, firewalls, firewall logs, and intrusion detection systems and IDS Logs to identify possible threats to network security, and to perform command and control functions in response to incidents.
• Experience in Host Based Security Systems (HBSS), ACAS vulnerability scanning software and Cyber Security Vulnerability Alerts (IAVA).
• HBSS resources must possess appropriate certifications and experience at contract start.
• This position requires a fully adjudicated Secret clearance level at contract start but must be eligible for a Top Secret (TS)/Sensitive Compartmented Information (SCI).
• Position shall meet the requirements of an IAT III/ IAM III per the DoD 8570.01-M, Certified Information Systems Security Professional (CISSP) certification preferred.