Sr. Principal Cybersecurity Application Administrator/Architect

Master’s Degree with 6 years of relevant experience; OR a Bachelor’s Degree with 8 years of relevant experience
Candidates must have a current DOD Secret level security clearance (at a minimum) in order to be considered
Candidates must have the ability to obtain, and maintain, access to DOD Top Secret level security clearance as a condition of continued employment
Candidates must have the ability to obtain, and maintain, access to Special Programs as a condition of employment
Must have a current DoD 8570 IAM level III security certification (CISM, GSLC, CCISO, CISSP)
Experience with Splunk to include managing/maintaining indexers, search heads, heavy forwarders, forwarders, data inputs, and deployment servers, creating and maintaining dashboards for users, creating custom extracts/regular expressions, familiarity with Splunk Query Language
Experience with cybersecurity practices, network technologies, system development lifecycles, and understanding of information technology infrastructure management/monitoring and applications
Experience with Linux, network architectures, Active Directory, and Group Policy management.

Design and develop new systems, applications, and solutions for external customer’s enterprise-wide cyber systems and networks
Ensure system security needs are established and maintained for operations development, security requirements definition, security risk assessment, systems analysis, systems design, security test and evaluation, certification and accreditation, systems hardening, vulnerability testing and scanning, incident response, disaster recovery, and business continuity planning and provides analytical support for security policy development and analysis
Integrate new architectural analysis of cyber security features and relates existing system to future needs and trends, embeds advanced forensic tools and techniques for attack reconstruction, provides engineering recommendations, and resolves integrations and testing issues
May interface with external entities including law enforcement, intelligence and other government organizations and agencies.

Bachelor’s degree in Cyber Security
Active Top Secret, TS/SCI, SAP/SAR access, or Polygraph is preferred
10 years of experience with Certification and Accreditation of classified systems and Risk Management Framework
Splunk Certified Enterprise Administrator and/or Architect certification
Advanced technical knowledge of Splunk or Trellix in regard to configuration, deployment, and sustainment
Work under minimal direction and independently determine and develop approach to solutions
Adhere to strict Information Systems security guidelines in all cases
Maintain security audit and logging information on all classified networked and standalone computers as directed by the Information Systems Security Manager (ISSM)
Experience developing guidelines, monitoring policies, and enforcing standards for cybersecurity frameworks and industry best practices supporting National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, CNSSI 1253, and DoD Risk Management Framework (RMF)
Trellix experience to include administration of Anti-Virus, Exploit Protection, Data Loss Protection (DLP), and policy configuration & agent deployment
Nessus/ACAS experience on large enterprise networks.