Apply on Employer Site

GuidePoint Security · 1 month ago

Arkime Engineer (TS/SCI CI Poly)

Washington, DC

Full-time

Onsite

Senior Level

5+ years exp

GuidePoint Security is a trusted cybersecurity provider that helps organizations minimize risk through expert solutions. They are seeking a highly skilled Arkime Implementation & Sustainment Engineer to design, deploy, and enhance their enterprise packet-capture and network visibility capabilities, while collaborating with various teams to improve threat detection and response.

Cyber SecurityInformation TechnologySecurity

Comp. & Benefits

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Architect, deploy, and configure Arkime clusters, capture nodes, viewer nodes, and storage subsystems

Design packet capture strategies aligned to network topology, mission requirements, and Zero Trust monitoring needs

Develop and automate deployment workflows using scripts, orchestration tools, and configuration management

Integrate Arkime with SIEM, SOAR, EDR, and threat intel platforms to enrich detection and investigation workflows

Conduct regular tuning of parsers, views, tags, and sessions to support detection engineering and threat hunting

Perform version upgrades, patching, configuration changes, data lifecycle management, and log retention optimization

Align Arkime data capture with Zero Trust Architecture (ZTA) telemetry requirements

Support development of visibility baselines, identity-aware policies, and segmentation enforcement strategies

Work with network engineering, cloud engineering, and security operations to ensure end-to-end telemetry coverage

Develop dashboards, queries, workflows, and documentation for SOC, detection engineers, and incident responders

Provide training, playbooks, and technical expertise to internal engineering and operations teams

Qualification

Arkime expertiseZero Trust ArchitecturePacket analysisLinux systems administrationSIEM/SOAR integrationAutomation toolsCloud networkingAnalytical skillsTechnical guidanceProblem-solving skills

Required

5+ years of experience in cybersecurity, network security engineering, or security operations

Strong background in packet analysis, PCAP management, DPI technologies, and network protocols (TCP/IP, DNS, TLS, HTTP, etc.)

Familiarity with Suricata, Zeek, or other packet/flow analysis platforms

Experience engineering within a Zero Trust Architecture (ZTA), including segmentation, continuous verification, and identity-centric access

Proficiency with Linux systems administration, containers, and distributed systems

Experience leveraging SIEM/SOAR platforms and integrating packet telemetry with detection workflows

Familiarity with automation tools (Ansible, Terraform, scripts) and infrastructure-as-code concepts

Active TS/SCI clearance; willingness to take a polygraph exam

Associate's degree and 5+ years of experience supporting IT projects and activities, Bachelor's degree and 3+ years of experience supporting IT projects and activities, or Master's degree and 1+ year of experience supporting IT projects and activities. Years of experience may be accepted in lieu of degree

DoD 8570.01-M Information Assurance Technician (IAT) Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification

Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CHFI, CFR, Cloud+, or CND certification within 30 days of start date

Preferred

Hands-on experience implementing and maintaining Arkime/Moloch in production environments

Experience with cloud networking and traffic inspection in AWS/Azure/GCP

Experience with Elastic Stack or similar search/index pipelines

Background supporting regulated or high-security environments (FedRAMP, DoD, IC, PCI, etc.)

Security certifications (e.g., CISSP, GCIH, GCIA, GNFA, GCED)

Strong analytical and problem-solving skills

Ability to translate technical findings into clear operational guidance

Comfortable leading discussions with engineers, analysts, architects, and leadership

Benefits

Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)

Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans

12 corporate holidays and a Flexible Time Off (FTO) program

Healthy mobile phone and home internet allowance

Eligibility for retirement plan after 2 months at open enrollment

Pet Benefit Option