Computer Network Defense - Secret - RAF Molesworth UK
General Dynamics
Cambridgeshire-MolesworthUnited Kingdom
5d ago
  • Conducts DoD HBSS / ACAS deployment and management of required modules and policies following DoD security standards
  • Knowledgeable in the use of Cybersecurity tools for conducting vulnerability testing and analysis of managed systems. This includes, but is not limited to, Nessus / ACAS, DISA SRR Scripts, SCAPs with HBSS -
  • PA, HBSS-ACCM and DISA Manual STIG

  • Addresses all technical problems associated with the HBSS / ACAS suite of tools and provides proactive support
  • Troubleshoot VM and SQL issues that conflict with the basic functionality of ePO
  • Performs Computer Security Incident Response activities for a large organization, coordinates with other government agencies to record and report incidents
  • Monitors and analyzes Intrusion Detection Systems (IDS) to identify security issues for remediation
  • Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
  • Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systems
  • Assists with implementation of counter-measures or mitigating controls
  • Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices
  • Performs periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance
  • Provides guidance and work leadership to less-experienced technical staff members
  • Maintains current knowledge of relevant technology as assigned
  • Basic experience administering and Automating Linux Systems
  • Scripting experience in PowerShell / BASH
  • Programming and Automation experience utilizing Ruby / Python / Perl
  • Network TAP / SPAN aggregators : Cisco Nexus with Data Broker, Gigamon, Ixia
  • Virtualization experience : VMware ESX and NSX, KVM, Xen Server
  • HBSS Operations, In-depth experience with configuring and analyzing results from but not limited to HIPS, DLP and VSE
  • ACAS Operations (Security Center, Nessus Scanner and PVS)
  • SPLUNK operations
  • Fidelis - in-depth operational work with network IDS and incident response including but not limited to Fidelis
  • Tuning cyber defense tools
  • Integration of Splunk
  • Security architecture design
  • Implement new cyber capabilities
  • Implement regional based IPS
  • Develops documentation on new or existing systems
  • Develops and conducts tests to ensure systems meet documented user requirements
  • Identifies; analyzes; and resolves system problems
  • Provides system / equipment / specialized training and technical guidance
  • Provides guidance and work leadership to less-experienced systems engineers
  • Serves as liaison with clients; participating in meetings to ensure client needs are met
  • Maintains current knowledge of relevant technology as assigned
  • Education :

    Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.

    Qualifications :

    1. 5-8 years of related experience in data security administration.

    2. Must possess and maintain a Secret Clearance

    3. DoD 8570 requirements and be eligible for IAT level II and CSSP-Infrastructure.

    4. 1+ years of direct HBSS administrative experience

    5. 2+ years system administration experience with MS Exchange, MS SQL, and / or MS SharePoint

    6. 2+ years previous experience managing firewalls, Email Security, Web Security or IPS / IDS devices

    7. Previous experience working in a NATO or coalition environment

    8. Strong knowledge of McAfee and Tenable products and supporting applications such as Microsoft Structured Query language (MS SQL), Microsoft Windows 7, Server 2008, and Linux / UNIX operating systems

    9. Must be able to support advanced tuning of HBSS / ACAS

    10. Knowledge of Department of Defense (DoD) processes and procedures related to audits, documentation, and security compliance

    11. Proficient in using DoD scanning and vulnerability discovery tools (Nessus / ACAS / PVS, DISA SRR Scripts, SCAPs with HBSS -

    PA, HBSS-ACCM and DISA Manual STIG

    12. Experienced in developing system / security policy and other related documentation

    13. Experienced in configuring Network based, Host based Firewalls, IDS / IPS, SIEM, and Log analysis Systems

    14. Aptitude to evaluate security solutions to ensure they meet system security requirements; technically capable of proposing, coordinating, implementing, and enforcing information systems security policies, and standards

    15. Background in providing guidance to system and network engineering teams related to maintaining an appropriate operational Cybersecurity posture for a system, program, or enclave

    16. Ability to develop and maintain documentation for system certification and accreditation purposes in accordance with DoD and other applicable policies

    17. Comprehensive knowledge of data security administration principles, methods, and techniques

    18. Certification in one or more specific technologies may be required, depending on job assignment

    19. Requires familiarity with domain structures, user authentication, and digital signatures

    20. Requires understanding of firewall theory and configuration

    21. Requires understanding of DHS / DoD policies and procedures, including FIPS 199, FIPS 200, NIST 800-53, DHS 4300A SSH and other applicable policies

    22. Depending on job assignment, additional specific certifications may be required

    23. This position may be required to complete short-term deployments to austere locations worldwide

    24. The work is typically performed in an office environment, which requires normal safety precautions; work may require some physical effort in the handling of light materials, boxes or equipment

    The above job description is not intended to be, nor should it be construed as, exhaustive of all responsibilities, skills, efforts, or working conditions associated with this job.

    Requests for reasonable accommodations will be considered to enable individuals with disabilities to perform the principal (essential) functions of this job.

    For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector.

    Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide.

    GDIT is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class. #BICES and #CJPOST

    Add to favorites
    Remove from favorites
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form