Current jobs related to Detection Engineer- Secret Cleared - Ashburn - Federal Staffing Solutions Inc.
-
Cybersecurity Threat Detection Specialist
3 weeks ago
Ashburn, Virginia, United States 00100 LEIDOS, INC. Full timeJob SummaryLeidos is seeking a highly skilled Cyber Threat Hunter to join our NOSC Cyber Team. As a Cyber Threat Hunter, you will play a critical role in identifying and mitigating cyber threats to the Department of Homeland Security (DHS) networks.Key ResponsibilitiesCreate and maintain threat models to identify defensive gaps and prioritize mitigations in...
-
Cyber Threat Detection Specialist
2 weeks ago
Ashburn, Virginia, United States Leidos Full timeJob SummaryLeidos is seeking an experienced threat detection engineer to contribute to our team's efforts in cyber security. The ideal candidate will have a strong background in threat detection and response, with expertise in Splunk SIEM and advanced threat detection techniques.Key ResponsibilitiesDevelop and maintain Splunk correlation rules for continuous...
-
Cybersecurity Threat Detection Specialist
2 weeks ago
Ashburn, Virginia, United States Leidos Full timeJob SummaryLeidos is seeking an experienced Cybersecurity Threat Detection Specialist to join our team. As a key member of our cybersecurity team, you will be responsible for proactively searching for threats, inspecting traffic for anomalies and new malware patterns, and investigating and analyzing logs.Key Responsibilities:Develop and Implement Threat...
-
Cybersecurity Threat Detection Specialist
1 week ago
Ashburn, Virginia, United States Leidos Holding Full timeJob Title: Cybersecurity Threat Detection SpecialistLeidos is seeking an experienced cybersecurity professional to join our team as a Cybersecurity Threat Detection Specialist. The successful candidate will be responsible for proactively searching for threats, inspecting traffic for anomalies and new malware patterns, and developing custom content within the...
-
Cybersecurity Threat Detection Specialist
6 days ago
Ashburn, Virginia, United States Leidos Holding Full timeJob Title: Cybersecurity Threat Detection SpecialistLeidos is seeking an experienced cybersecurity professional to join our team as a Cybersecurity Threat Detection Specialist. The successful candidate will be responsible for proactively searching for threats, inspecting traffic for anomalies, and developing custom content within the Splunk SIEM using...
-
Cybersecurity Incident Response Analyst
1 day ago
Ashburn, United States Leidos Full timeDescription Our company is currently seeking a skilled Cybersecurity Incident Response Analyst to join our team. In this role, you will be responsible for supporting our cyber security operations center (SOC) and providing 24x7x365 support to detect, prevent, and eradicate cyber threats to our networks. This position involves monitoring, intrusion detection,...
-
Cyber Threat Hunter
3 weeks ago
Ashburn, Virginia, United States 00100 LEIDOS, INC. Full timeAbout the RoleLeidos is seeking a highly skilled Cyber Threat Hunter to join our team. As a Cyber Threat Hunter, you will play a critical role in identifying and mitigating cyber threats to our clients' networks and systems.Key ResponsibilitiesCreate and maintain threat models to identify defensive gaps and prioritize mitigationsAuthor, update, and maintain...
-
Cyber Threat Intelligence Specialist
3 weeks ago
Ashburn, Virginia, United States Leidos Full timeJob SummaryLeidos is seeking a highly skilled Cyber Threat Hunter to join our NOSC Cyber Team. As a Cyber Threat Hunter, you will be responsible for identifying and mitigating advanced cyber threats to the Department of Homeland Security (DHS) networks.Key ResponsibilitiesCreate and maintain threat models to identify defensive gaps and prioritize...
-
Cybersecurity Operations Specialist
6 days ago
Ashburn, Virginia, United States Gray Tier Technologies LLC Full timeJob Title: Incident Response Analyst Tier 2Gray Tier Technologies LLC is seeking an experienced Incident Response Analyst to support our highly visible cyber security operations center (SOC) for Customs Border Protection (CBP), cyber analysis, application development, and a 24x7x365 support staff.Key Responsibilities:Shift schedule: 7am-7pm, Thurs-Sat, every...
-
Cyber Threat Intelligence Specialist
2 weeks ago
Ashburn, Virginia, United States Leidos Full timeAbout the RoleLeidos is seeking a highly skilled Cyber Threat Hunter to join our NOSC Cyber Team. As a Cyber Threat Hunter, you will play a critical role in identifying and mitigating cyber threats to the Department of Homeland Security (DHS) networks.Key ResponsibilitiesCreate and maintain threat models to identify defensive gaps and prioritize...
-
Cyber Threat Hunter
2 weeks ago
Ashburn, Virginia, United States Leidos Full timeCyber Threat Hunter Job DescriptionLeidos is seeking a highly skilled Cyber Threat Hunter to join our NOSC Cyber Team. As a Cyber Threat Hunter, you will play a critical role in identifying and mitigating cyber threats to the Department of Homeland Security (DHS) networks.Key Responsibilities:Create Threat Models to identify defensive gaps and prioritize...
-
Cyber Threat Hunter
5 days ago
Ashburn, Virginia, United States 00100 LEIDOS, INC. Full timeCyber Threat Hunter Job DescriptionLeidos is seeking a highly skilled Cyber Threat Hunter to join our NOSC Cyber Team. The ideal candidate will possess a strong background in cybersecurity, threat hunting, and incident response.Key Responsibilities:Create Threat Models to identify defensive gaps and prioritize mitigationsAuthor, update, and maintain SOPs,...
-
Cyber Threat Analyst
4 weeks ago
Ashburn, Virginia, United States Leidos Full timePosition OverviewLeidos is on the lookout for a Cyber Threat Analyst to enhance our Cybersecurity Team. The successful candidate will be analytical, inquisitive, and skilled at recognizing subtle patterns and irregularities in data.Develop Threat Models to gain insights into the organization, pinpoint security weaknesses, and prioritize remediation...
-
Cybersecurity Solutions Engineer
4 weeks ago
Ashburn, Virginia, United States Leidos Full timeJob Overview:The Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a vital US Government initiative dedicated to thwarting, detecting, containing, and eliminating cyber threats to CBP networks. This is achieved through vigilant monitoring, intrusion detection, and protective security measures for...
-
Cyber Security Operations Center Analyst
5 days ago
Ashburn, Virginia, United States Leidos Full timeJob Title: Cyber Security Operations Center AnalystLeidos is seeking an experienced Cyber Security Operations Center Analyst to support this highly visible cyber security operations center (SOC) for Customs Border Protection (CBP), cyber analysis, application development, and a 24x7x365 support staff.The Department of Homeland Security (DHS), Customs and...
-
Cyber Threat Hunter
2 weeks ago
Ashburn, Virginia, United States 00100 LEIDOS, INC. Full timeCyber Threat Hunter Job DescriptionLeidos is seeking a highly skilled Cyber Threat Hunter to join our NOSC Cyber Team. The ideal candidate will possess a strong background in cybersecurity, threat hunting, and incident response.Key Responsibilities:Create and maintain threat models to identify defensive gaps and prioritize mitigationsAuthor and update SOPs,...
-
Incident Response Analyst Tier 2
4 weeks ago
Ashburn, United States Gray Tier Technologies LLC Full timeGray Tier technologies is seeking an experienced Incident Response Analyst to support this highly visible cyber security operations center (SOC) for Customs Border Protection (CBP), cyber analysis, application development, and a 24x7x365 support staff. Primary Responsibilities: Shift schedule: 7am-7pm, Thurs-Sat, every other Wednesday. The ideal candidate...
-
Systems Integration Engineer
3 weeks ago
Ashburn, Virginia, United States Cubic Corporation Full timeJob OverviewBusiness Unit:Cubic DefenseCompany Overview:Joining Cubic means becoming part of a forward-thinking organization that develops and implements technology solutions in transportation to enhance everyday experiences and defense capabilities to support mission success and safety for those serving our nation. Our dedicated teams worldwide are...
-
Cloud Security Penetration Tester
4 weeks ago
Ashburn, Georgia, United States Gray Tier Technologies LLC Full timeCompany Overview:Gray Tier Technologies LLC is seeking a skilled Penetration Tester to enhance the security posture of the Department of Homeland Security (DHS) and Customs and Border Protection (CBP) Security Operations Center (SOC). This program is pivotal in safeguarding against cyber threats to CBP networks through comprehensive monitoring, intrusion...
-
Splunk Engineer
4 days ago
Ashburn, Virginia, United States Critical Solutions Full timeJob Title: Splunk EngineerCritical Solutions is seeking a highly skilled Splunk Engineer to join our team in Ashburn, VA. As a Splunk Engineer, you will be responsible for supporting our federal program by providing engineering and administration for a large distributed clustered Splunk environment.Key Responsibilities:Provide overall engineering and...
Detection Engineer- Secret Cleared
4 months ago
We connect our employees with some of the best opportunities around.
Time and time again, our employees tell us that the most important thing we offer is respect. Federal Staffing Solutions puts people to work in all types of jobs. When you work with us, you build a relationship with a team of employment professionals in your community who have, in turn, built personal relationships with the businesses that are hiring.
We are looking for a Threat Detection Engineer to work onsite in Ashburn, VA supporting our client.
The Threat Detection Engineer shall have the following qualifications:
- In-depth knowledge of Firewalls/Proxies/Intrusion Detection Systems/ Domain Name Servers/DHCP/VPN and other network technologies and tools
- Experience updating, maintaining, and creating IDS variables within a complex enterprise network
- Expert in creating, modifying, tuning IDS signatures/SIEM Correlation Searches/yara rules and/or other detection signatures
- Familiarity with disk based forensic methodologies, Windows, and Linux forensic artifacts
- Experience with Endpoint Detection and Response (EDR) tools such as Carbon Black, Tanium, Crowdstrike, etc
- Able to create, modify, update, and maintain Python and Powershell scripts that enhance endpoint detection capabilities
- In-depth knowledge of attacker tactics, techniques, and procedures
- Author, test, and maintain automation scripts within SOAR platform
- The candidate must currently possess a Secret Clearance.
Additional Qualifications:
In addition to clearance requirement, all personnel must have a current or be able to favorably pass a 5 year background investigation (BI).
- BS degree in Science, Technology, Engineering, Math or related field and 8 years of prior relevant experience with a focus on cyber security or Masters with 6 years of prior relevant experience.
- Should have 5 years of experience serving as a digital media analyst or as a computer forensic analyst.
- Ability to work independently with minimal direction; self-starter/self-motivated
- Must have one of the following:
- CCFP – Certified Cyber Forensics Professional
- CHFI – Computer Hacking Forensic Investigator
- CISSP – Certified Information Systems Security
- ECSA – EC-Council Certified Security Analyst
- EnCE GCFA – Forensic Analyst
- GCFE – Forensic Examiner
- GCIH – Incident Handler
- GISF – Security Fundamentals
- GREM – Reverse Engineering Malware
- GXPN – Exploit Researcher and Advanced Penetration Tester
- LPT – Licensed Penetration Tester
- OSCE (Certified Expert)
- OSCP (Certified Professional)
- OSEE (Exploitation Expert)
- OSWP (Wireless Professional)
- CIRC
- FIWE
- WFE-E-CI
- FTK-WFE-FTK
- CCFP – Certified Cyber Forensics Professional
Preferred Qualifications:
- One of the following certifications:
- SANS Global Information Assurance Certification (GIAC)
- Certified Intrusion Analyst (GCIA) SANS
- Global Information Assurance Certification (GIAC)
- Certified Forensic Analyst (GCFA) SANS
- Global Information Assurance Certification (GIAC)
- Certified Network Forensic Analyst (GNFA)
- Certified Information System Security Professional (CISSP)
- SANS Global Information Assurance Certification (GIAC)
Essential Requirements:
- US Citizenship is required.
- Active secret clearance.
Job Duties:
- Identify gaps in malicious activity detection capabilities
- Create new signatures / rules to improve detection of malicious activity
- Test and tune existing signatures / rules to ensure low rate of false positives
- Assist in playbook development for alert triage and Incident Response
- Define and implement alert and threat detection metrics, statistics, and analytics
- Recommend new tools/technologies to improve network visibility
- Support Incident Response and Forensic operations as required to include static/dynamic malware analysis and reverse engineering
- Author and maintain scripts for threat detection and automation
Equal Opportunity Employer
