DHS HSEN - Security Architect (SIEM & SOAR) @ Versar, Inc | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
DHS HSEN - Security Architect (SIEM & SOAR) jobs in Washington, DC
Be an early applicantLess than 25 applicants
company-logo

Versar, Inc · 12 hours ago

DHS HSEN - Security Architect (SIEM & SOAR)

positionWashington, DC
timeFull-time
remoteRemote
senioritySenior Level
date6+ years exp
ftfMaximize your interview chances
ConstructionManagement Information Systems
badNo H1BnoteU.S. Citizen Onlynote

Insider Connection @Versar, Inc

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Designing, implementing, and maintaining SIEM and SOAR solutions by collaborating effectively with NOSC-Cyber and other key stakeholder groups.
Work in partnership with network and security engineers and cloud development teams to drive improvements to security requirements.
Research the latest capabilities of SIEM, SOAR platforms and IT technologies (e.g. firewalls, operating systems, networks, storage, virtualization, AD, IPS, Proxies etc.) and be able to present findings to management.
Optimize SIEM, SOAR and NOSC-Cyber architecture to improve efficiency and effectiveness of the platforms and processes
Design and implement threat detection, automate incident response processes, integration of various security tools with SIEM and SOAR platforms via APIs
Maintain SIEM applications to collect and aggregate IDS and IPS data from network sensors, raw data from collection agents, firewalls, proxy servers, DLP, antivirus, vulnerability scanner elements, and other security‐relevant devices
Design and document existing production Swimlane environment to include Visio diagrams.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

SIEMSOARSplunkSwimlaneIncident ResponseEndpoint SecurityNetwork SecurityCloud SecurityAWSAzurePythonPowerShellPHPPerlWindowsLinuxCISSPCCNP SecurityCCIE SecurityComptia Security+

Required

At least six (6) years of professional experience cybersecurity, NOC/SOC environments, and IT Services environment, providing incident response
Demonstrated experience with SIEM and SOAR tool suites, with an emphasis on Swinlane and Splunk
Demonstrated experience endpoint security, network security (Firewalls, IPS/IDS, DNS, Proxy, etc.), data and application security, cloud security and technologies
Must be resourceful in learning a very complex and dynamically changing network
Must be a self-starter, able to work independently, and able to manage time effectively
Working knowledge of cloud platforms such as AWS, Azure
Ability to communicate effectively with all levels of an organization from engineering, operations, and management
U.S. citizenship required and eligibility for a DHS EOD is required to be considered for this position.
BA or BS (Cyber Security, Computer Science, Information Systems, Software Engineering, Computer Engineering, or related field); relevant experience may be a substitute for education.

Preferred

Certification involving cybersecurity
Comptia Security+
Splunk
CISSP
CCNP Security
CCIE Security
Splunk
Swimlane
Knowledge of at least one programming or scripting language (ex. Python, PowerShell, PHP, Perl)
Windows/Linux experience

Company

Versar, Inc

twittertwittertwitter
company-logo
Versar, Inc is now Versar Global Solutions.
dateFounded in 1969
location
Springfield, Virginia, USA
people-size201-500 employees
web-link
http://www.geomet.com/

Funding

Current Stage
Growth Stage
Total Funding
unknown
Key Investors
Graycliff Partners
2020-08-10Debt Financing· undefined

Leadership Team

leader-logo
Dwane Stone
CEO
linkedin
leader-logo
Kevin Gooch
Senior Vice President
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot