This site uses cookies. To find out more, see our Cookies Policy

CIRT Countermeasures Engineer in Herndon, VA at ManTech

Date Posted: 8/27/2018

Job Snapshot

  • Employee Type:
  • Location:
    Herndon, VA
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:

Job Description



Clearance Level Needed:






We need you to protect and defend the largest target in the world using your expertise in Host Based IDS, IPS and specialized network defense. This position will utilize the latest cyber tools available and assist in creating new ones and allow you to advance the nation's information security posture. This Herndon based position will be Monday - Friday with core hours. At ManTech, you ll help protect our national security while working on innovative projects that offer opportunities for advancement.

Responsibilities include, but are not limited to:

The CIRT/CSOC Countermeasures Lead on this Agency-level Cyber Security support contract manages a team of analysts with duties including:

• Subject matter expertise in the creation, editing, and management of signatures, rules and filters for specialized network defense systems including but not limited to:
• Network and host-based IDS, IPS, firewall, web application firewall,
• Proxy and
• SIEM systems
• Manages and administers the tuning of rules, signatures, and custom content for specialized CND applications and systems
• Identifies potential conflicts with implementation of any CND tools within the enterprise and develop recommendations to remediate these conflicts
• Manages inter-agency relationships with partner organizations to facilitate mission execution
• Innovates creative solutions to challenging problems
• Provides logical use case development
• Provides and tracks requirements to engineering partners
• Identifies gaps in visibility or coverage of cyber defense systems
• Prepare and brief management and partner organizations on current state/proposed solutions
• Prepare data analytics and reporting

Position Requirements:

Clearance Level: Top Secret SCI ++

Required Experience/Skills:
• Excellent interpersonal, organizational, writing, communications, and briefing skills
• Strong analytical and problem solving skills
• Demonstrated expertise utilizing SIEM tools for use case development and application
• Minimum of five years of progressively responsible experience in Cyber Security, InfoSec, Security Engineering, Network Engineering with emphasis in cyber security issues and operations, computer incident response, systems architecture, data management

Required Tools:
Familiarity with the following classes of enterprise cyber defense technologies:

• Security Information and Event Management (SIEM) systems

• Network Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS)

• Host Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS)

• Network and Host malware detection and prevention

• Network and Host forensic applications

• Web/Email gateway security technologies

Required Certifications:
DOD 8570 IAT Level I or CSSP-IR

Required Degree:
BS (bachelor's degree in electrical engineering, computer engineering, computer science, or other closely related IT discipline)

Security Requirements:
TS/SCI with Poly

Job Requirements

Requires Bachelors degree or equivalent and 5 years of related experience. Minimum of four years experience in technology/tools specific to the target platforms.