Cyber / Palo Alto Engineer , Mid

Cyber / Palo Alto Engineer , Mid

REQUIRES AN EXISTING/ACTIVE TS/SCI WITH CI POLYGRAPH - NO REMOTE WORK, MUST WORK ON SITE

Position Description:

Work individually or in a small integrated team, and potentially lead a task, project, or team to analyze root causes and resolve issues. Assist more senior level technicians, specialists, and managers in their activities. Provide expertise in the engineering design, development, direction, and implementation of enterprise network cyber defense capabilities. Apply familiarity with the utilization, configuration, and implementation of cyber defense capabilities, including firewalls, Host Based Security Systems, web content filters, email security capabilities, Intrusion Detection System, Intrusion Prevention System, Security Incident and Event Management tools, Domain Name System security practices, advanced log analysis, network monitoring, network flow analysis, packet capture analysis, network proxies, anti-virus capabilities, Linux/UNIX command line, and access control lists.

Basic Qualifications:

• 4+ years of experience with privileged and elevated access using cybersecurity tools, especially PaloAlto Firewalls

• Experience with Windows and Linux, including installing, configuring, or maintaining servers operating systems and applications

• Experience working with STIGs, SCAP, and cybersecurity best practices

• Knowledge of DoD Risk Management Framework

• Active TS/SCI clearance; willingness to take a polygraph exam

• HS diploma or GED and 7+ years of experience conducting or supporting cyber engineering projects and activities, Associate's degree and 5+ years of experience conducting or supporting cyber engineering projects and activities, Bachelor's degree and 3+ years of experience conducting or supporting cyber engineering projects and activities, or Master's degree and 1+ years of experience conducting or supporting cyber engineering projects and activities

• DoD Information Assurance Technician (IAT) Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification

• Ability to obtain a DoD Cyber Security Service Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification, within 30 days of hire

Optional Qualifications:

• Trellix Endpoint Security Suite (ESS) (or former McAfee HBSS, ePO, FireEye MVX, NX, HX, PX, IA, AX, IAS PCAP), Splunk/Cribl, or ForeScout experience

• Experience with Gigamon, Ansible, Encase, Fidelis, Suricata, Varonis, or VMWare tools

• Experience with Cloud Enterprise, authorizing cloud systems, and Cloud services, including AWS, Azure, or GCP

• Experience with big data analytics, machine learning, artificial intelligence, or anomaly detection

• Experience with Zero-Trust Architecture

• Experience with DevSecOps, CI/CD, IaC and CaC, IT Infrastructure Library, and IT Service Management

• Experience scripting in PowerShell and BASH command line interfaces or in Python or Perl scripting languages

• Experience in a consulting or client-facing environment

• Ability to automate security configurations of Linux and Windows systems, and recommend and implement remediations for non-compliant security controls

• Possession of excellent verbal and written communication skills, including using presentations to convey complex ideas to client and internal staff

• Possession of excellent problem-solving skills