CND / Splunk Engineer - Military veterans preferred

Description

SAIC is looking for a well-qualified Computer Network Defense (CND) Engineer to join an exciting program in Northern Virginia. As a CND Engineer, you will be responsible for testing, implementing, deploying, maintaining, reviewing, and administering the hardware, software, and documentation required to support Computer Network Defense capabilities.  This may include, but is not limited to, Splunk, Security Information and Event Management (SIEM) products, vulnerability scanning tools, endpoint security applications, and other CND tools as deployed within hosted information systems.  You will develop and manage the tools, tactics, and techniques that will be used to monitor the network to actively remediate unauthorized activities (dashboards, queries, scan policies, etc.).  You will develop and maintain system documentation as it pertains to CND capabilities and their implementation (CONOPs, SOPs, etc.).  You will be expected to provide reports as needed for the health, wellness, and availability of CND tools within hosted information systems and addresses any issues in a timely manner.

Qualifications

• An active Top Secret clearance with eligibility for access to sensitive compartmented information (TS/SCI);
• Having completed a counter-intelligence scope polygraph (CSP) within the last seven (7) years;
• Bachelor's Degree and 9 years experience, Master's Degree and 7 years experience. Additional experience may be substituted in lieu of a degree. 
• One of the following certifications:
• International Council of Electronic Commerce Consultants (EC-Council) Certified Ethical Hacker (CEH) certification, or
• The Global Information Assurance Certification (GIAC) Security Essentials Certification (GSEC);
• Seven years or more experience in implementing and maintaining CND technologies on a multi-platform (Windows, RedHat, Linux, etc) enterprise-grade WAN.
• Four years or more experience in implementing, maintaining, and operating a SIEM and/or vulnerability scanner product;
• Four years or more experience in maintaining and operating Red Hat Enterprise Linux servers

Desired Qualifications

• An active Top Secret clearance with access to SCI;
• Seven years or more experience in developing, maintaining, and operating Splunk or other SIEM products;
• Seven years or more experience in developing, maintaining, and operating Tenable/ACAS or other equivalent vulnerability scanning products