Information Security Systems Engineer
TCI has an immediate need for an Information Security Systems Engineer in Melbourne, FL. This is not a Corp2Corp opportunity. This is a long–term contract opportunity with the possibility of hire. In addition to competitive, market–rate based pay, TCI provides all our Consultants with Comprehensive Medical/Dental Insurance, 401k, Life Insurance and Long–Term Disability benefits. Please note that this position requires US Citizenship due to the Public Trust Security Clearance requirement. SUMMARY The IS Systems Engineer will work on a Network Security Engineering Team comprised of Information Security Systems Engineers (ISSEs) supporting managed network infrastructures for federal government customers. RESPONSIBILITIESWork day–to–day with clients to assist in delivering value that SIEM brings to the overall business objective. Developing content for a complex and growing ArcSight infrastructure. This includes use cases for Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists. Provide optimization of data flow using aggregation, filters, etc. Develop custom Flex Connector as required to meet use case objectives. Developing / writing custom parsers using Regular expression (regex) and deploying custom parsers. Life–cycle management of the ArcSight platforms to including coordination and planning of upgrades, new deployments, and maintaining current operational data flows. Maintaining up to date documentation of designs/configurations. Participate in the operation of ArcSight Security Information and Event Management systems to include ArcSight ESM, Connector appliances/SmartConnectors, Logger appliances, Windows and Linux servers. Perform routine equipment checks and preventative maintenance. Apply Configuration Management disciplines to maintain hardware/software revisions, ArcSight content, security patches, hardening, and documentation. REQUIREMENTSA Bachelors Degree in a related field and minimum of 2 years related experience. Minimum of 1 year of experience in Network Security, Security Analysis and/or Incident Response. Minimum of 1 year of experience with Firewalls, Routers, Switches, VPN, etc. Experience with security device and general IT installations, configuration and troubleshooting (e.g., Firewall, IDS, etc.). Experience in UNIX, Linux, and Windows – able to tear down and rebuild a host system. Experience with database installation and configuration. Understanding and operational experience with network security event and intrusion detection architectures. Excellent communication and customer interaction skills. Advanced technical writing skills. UNIX system administration including automation through scripting (perl, shell, python) is a plus. Work is performed on–site; no remote work. This position requires weekend, after hours support, and on–call rotations to meet program requirements. Must currently possess or have the ability to obtain a Public Trust Security Clearance prior to start. PREFERRED (Nice to Have)CompTIA Security+, or higher certification. Understanding and operational experience with network security event and intrusion detection architectures. Understanding of system logs and log analysis. Experience serving Government customers in a security environment a plus. Prior program experience working in a state or federal government WAN architecture is a plus. Understanding of NIST SP800–53 or NIST SP800–171 control framework and FISMA policies. Strong project engineering experience in security–related environments.