Seize your opportunity to make a personal impact as an IDS/IPS Security Engineer Lead supporting the United States Postal Service. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.

At GDIT, people are our differentiators. As an IDS/IPS Security Engineer Lead, you will help ensure today is safe and tomorrow is smarter. Our work depends on an IDS/IPS Security Engineer Lead joining our team to analyze design, develop, implement, and support code for our government customer, the United States Postal Service.

   

HOW AN IDS/IPS SECURITY ENGINEER LEAD WILL MAKE AN IMPACT

Operate, maintain, and deploy IDS and IPS devices.  Taking the steps needed to implement the latest automation and/or LLM into detection. Maintain intrusion ruleset, optimizing detection, configure NGFW ACLs, general device configuration and maintenance, troubleshoot the devices when needed.Provide operational requirements and recommendations to the Security Architects for service enhancements and system improvements. Start reviewing the possibilities for transforming into a NDR or XDR solution for the Enterprise.On-call availability for network impacting or network outage situations outside of business hours Effectively work within a Security team, and support and collaborate with other teams Conduct Intrusion event analysis and support security operation center (SOC) incident response, threat detection teams.Develop documentation, e.g., standard operating procedures (SOP), and support audit events Develop reports on systems status and performance.

WHAT YOU’LL NEED TO SUCCEED:

Education:

Bachelor’s or Master’s degree, Information Systems, Cybersecurity, or other related fields. Or equivalent work experience.NOTE: If resources do not have a relevant college degree, an additional 4 years of relevant work experience is required.

Required Experience:

9+ years of security or cybersecurity experienceCISCO Firepower Threat Defense IDS/IPS, FMC Prior job experience maintaining and troubleshooting IDS/IPS devices Experience with Splunk and other SIEM tools. Proficiency with packet analysis/Wireshark Networking – routing and switching, TCP/IP stack, IP subnets, VPN Scripting – python, Perl, JavaScript. Experience with threat analysis, triage, and mitigation   Experience with Linux Experience with packet analysis Knowledge of databases Knowledge of networking and network protocols Certification in one or more of the following: Security+ or CISSPNetworking+, CCNA Route Switch or CCNA Security, CCNP Route Switch or CCNP SecurityExperience with threat analysis, triage, and mitigation Tipping Point IDS, ATD, DDI, DDD, SPS, SMS Understanding of NGFW ACLs Experience writing Snort rules Proficiency with Wireshark Experience with Splunk Ability to write clear procedural and technical documentation Experience troubleshooting network problems at layers 1, 2, and 3 

Security Clearance Level:

Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprintingThis position has a U.S. residency requirement. The USPS security clearance process requires the selected candidate to have resided in the U.S. (including U.S. Territories) for the last five years as follows: U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 6 months consecutively in the last 3 years (unless they meet certain exceptions). Non-U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 90 days consecutively in the last 3 years.

Location:

Morrisville, NCRemote considered

GDIT IS YOUR PLACE:

401K with company matchComprehensive health and wellness packagesInternal mobility team dedicated to helping you own your career.Professional growth opportunities including paid education and certifications.Cutting-edge technology you can learn fromRest and recharge with paid vacation and holidays

#IDS #IPS #zxc726