Previous Job
Security Operations Engineer
Ref No.: 18-00043
Location: Manassas, Virginia
Position Type:Direct Placement
Start Date: 03/13/2018

The Security Operations Engineer is responsible for implementing security tools, security tool usage, keeping tools upgraded and configured properly, etc. The Security Operations Engineer provides oversight and subject matter expert to SOC and Security Analysts. The Security Operations Engineer is responsible for monitoring, evaluating, and maintaining security systems and procedures to safeguard internal information systems, networks, databases, and Web-based assets.

  1. 30%: Conducts vulnerability assessments and monitor systems, networks, databases and Web-based assets for potential system breaches. Recommends and implements changes to enhance systems security and prevent unauthorized access.
  2. 30%: Responds to alerts from information security tools. Report, investigate, and resolve security incidents.
  3. 20%: Responds to security tool outages, degradations in service, tune security rules and alerts, and setup/maintain security tool dashboards and reporting.
  4. 10%: Researches security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach. Ensure compliance with regulations and privacy laws.
  5. 10%: Educates and communicates security requirements and procedures to all users and new employees.
HS Graduate or GED
Type of Credentials/Licenses: ANSI 17024 related certification required. CEH, CISSP, or GIAC preferred.

Related Work Experience: 4-6 Years
The work experience / skills / abilities required to perform the job effectively.
• Demonstrated working knowledge of vulnerability assessment and penetration testing tools.
• Proven ability to work effectively both independently and/or in a team setting.
• Ability to communicate technical information to a non-technical audience.
• Strong analytical, problem-solving and critical-thinking skills.
• Strong attention to detail.
• Strong organizational and time-management skills.
• Strong multi-tasking, follow-through and prioritization skills.
• Proven ability to create clear concise technical documentation.
• Strong written and verbal communication skills.
• Excellent customer service skills with the ability to manager both internal and external customers.
• Intermediate to advanced level of expertise in at least one of the following areas: Windows, RHEL, Solaris,
or Networking.
• Prior experience in the deployment, installation, and configuration of security tools.
• Prior experience with 2 or more vendor products, to include: Splunk, Tripwire, Nessus (Tenable), FireEye,
SourceFire/FirePOWER (Cisco), Websense/Blue Coat/Palo Alto or a similar URL filtering appliance,
Trend Micro, and Symantec Endpoint Protection.
• Prior experience with Security Information and Event Management (SIEM) systems.
• Demonstrated work experience with the following: computer networking, cryptography, security
engineering and architecture, vulnerability assessments, or operating systems required.
• Proven experience in performing administration functions of Linux/UNIX & Windows systems, network,
firewall, and DNS experience.
• Prior experience with Cloud security is a plus.
• Prior experience in incident response preferred.

This position is an individual contributor and has no supervisory responsibilities. Provides functional expertise through day-to-day work tasks. Works under the supervision of management.