Find your job at www.LoveYourJob.com
Job Title: IT Security
Location: Lexington, MA
Duration: 36 Months and 40 hours per week
*Applicants must meet the eligibility requirements to obtain a Security Clearance for access to classified information. An Active Secret Clearance without incident is desired.
Our client’s ISD Cyber Security Sector is responsible for monitoring and protecting Laboratory information systems. The sector operates and maintains computer network defense (CND) tools and data sources (network and host level) in support of incident response and mitigation processes. Services include briefings to management, advising them of issues that may affect the Laboratory's security posture. The sector also conducts vulnerability assessment scanning at the network, system, and application levels, and coordinates mitigations and communications to the Laboratory community.
Position Scope/Job Functions
Security Infrastructure Operations:
-Responsible for day to day support and maintaining security Infrastructure Systems (e.g. Intrusion Prevention Systems, Anti-Virus, Web Proxy Systems, Full Packet Capture, Online and Offline Malware- Analysis Systems and SIEM platform)
-Duties include but not limited to system troubleshooting, vendor coordination, OS patching and updating.
-Ensure all devices are under configuration management, receiving signature updates and maintain operational readiness -Monitor performance metrics and log data for continuous improvement and tuning to match current threats -Update rule-sets/policy on infrastructure systems to support overall Laboratory defensive systems -Maintain and update documentation, including standard operating procedures.
Security Infrastructure Engineering:
- Assist in evaluating potential security software, tools or devices.
-Assist in testing of new network security systems and changes to existing network security devices.
Develops, publishes, and maintains system documentation (e.g. Requirements, Design/Build, Testing, and SOP) according to department standards.
Through log and data analysis, determine scope or extent at which other systems were exposed to the same threat.
Identify, implement or request solutions (e.g. blocks) to mitigate future risk to the Laboratory.
Cyber Security and External Awareness:
-Participation in external Cyber Security working groups (e.g. FFRDC)
-Monitor current malicious cyber activity at large and research how vulnerabilities are being exploited and software affected.
- Proactively identify opportunities to mitigate potential threats based on research
-Proactively identify any patterns within device and server logs based on research to potentially identify systems of interest or mitigate future risk to the Laboratory system.
Communication & Collaboration:
-Develop metrics and presentations that demonstrate Threat assessment team effectiveness
-Coordinate efforts among analyst to enhance mitigation efforts and avoid duplication of efforts.
-Coordinate with Security Services Department on threat impact, nature and potential scope.
-Develop and publish detailed Threat Assessment reports as required.
-Evaluate potential security software, tools or devices -Test new network security systems and changes to existing network security devices.
-Develop technical project plans, requirement documentation, test plans, change requests, and communications to users.
This position is under general supervision of the IT Security Operations Team Lead.
- Strong working knowledge of various enterprise network and standalone infrastructure security systems and technologies.
- Experience with enterprise log management platforms (e.g., Splunk).
- Experience with IDS/IPS systems, Firewalls, Web Proxy and full packet capture systems.
- Proven ability to script in Perl or Python.
- Excellent customer service, written and oral communication skills.
- Demonstrated ability to work in a fast-paced environment at times with minimal supervision and execute operations, project and administrative tasks with a high degree of quality, while following existing processes and establishing new operational procedures and best practices where necessary.
- Demonstrated ability to work with members of other teams and staff to achieve department and organizational goals.
- Strong understanding of network routing and switching and TCP/IP protocols.
- Strong working knowledge of the Linux Operating system
- Good understanding of the Windows Operating system (desktop and server)
- Ability to work independently toward delivery of goals as well as collaborate in team efforts.
- Skill in building consensus among stakeholders and colleagues.
This position requires an individual with excellent communication (both oral and written) and organizational skills. The individual must be able to work in a fast-paced environment with minimal supervision. They must be able to execute operations, project, and administrative tasks with a high degree of quality and consistency by following existing operational procedures and best practices. Additionally, the position requires the ability to work with members of other teams and staff to accomplish department and organizational goals.
Bachelor's Degree in Computer Science, Information Technologies, Engineering or equivalent experience.
CompTIA Security+, SANS Certified Incident Handler (GCIH) or equivalent certification
Knowledge of DoD and NIST security standards and procedures
ITILv3 Foundations Certification
POST-OFFER BACKGROUND CHECK IS REQUIRED. An essential function of this job is physical attendance. Digital Prospectors is an Equal Opportunity Employer which includes providing equal employment opportunity for all protected classes including veterans and individuals with disabilities.
Our client, one of the most prestigious Research and Development Labs in the country, is working on solutions to our nation's most complex defense and commercial related challenges. We have placed hundreds of talented engineers with this client over the years - If you are qualified - we can get you in!!!
The mission is critical and the work is as cutting-edge as it is rewarding. The teams are superbly managed groups of world class engineers from all types of interesting and diverse backgrounds - AND THEY ARE HIRING!
Make this your next career move as one of our many long-term contractors or employees!
Work as our full-time employee with full benefits (Medical, Dental, Vision, STD, LTD, PTO, Retirement, etc.) - OR - work as a W2 hourly contractor at a higher pay rate if you don't need the benefit package.
ABOUT DIGITAL PROSPECTORS:
Founded in 1999, Digital Prospectors is an award-winning recruiting and consulting firm that specializes in placing contract, contract-to-hire and direct hire engineers into rewarding opportunities with our impressive and ever-growing client base. We believe that all people should love their jobs.
Come see why Digital Prospectors has been voted “Best Staffing Firm to Temp For” by Staffing Industry Analysts, "Best of Staffing" for candidate satisfaction by Inavero / CareerBuilder.com, "Top Temporary Placement Firm" by Boston Business Journal, "Best Company To Work For" by Business NH magazine, "Excellence in IT and Engineering Staffing” by TechServe Alliance, "Top IT Services Company" by Inc. Magazine, "Most Reliable Staffing Agency" in Forbes Magazine and "Top Ranked Staffing Firm" by Staffing Industry Analysts.