IDS/IPS Security Engineer Lead

Clearance Level
None
Category
Cyber and IT Risk Management
Location
Morrisville, North Carolina
(Onsite Workplace)
Apply Now
Key Skills For Success

IPS/IDS

Linux

SIEM Tools

REQ#: RQ206100
Public Trust: MBI (T2)
Requisition Type: Pipeline
Your Impact

Own your opportunity to work alongside federal civilian agencies. Make an impact by providing services that help the government ensure the well being of U.S. citizens.

Job Description

Seize your opportunity to make a personal impact as an IDS/IPS Security Engineer Lead supporting the United States Postal Service. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.

At GDIT, people are our differentiators. As an IDS/IPS Security Engineer Lead, you will help ensure today is safe and tomorrow is smarter. Our work depends on an IDS/IPS Security Engineer Lead joining our team to analyze design, develop, implement, and support code for our government customer, the United States Postal Service.

   

HOW AN IDS/IPS SECURITY ENGINEER LEAD WILL MAKE AN IMPACT

  • Operate, maintain, and deploy IDS and IPS devices.  Taking the steps needed to implement the latest automation and/or LLM into detection. 
  • Maintain intrusion ruleset, optimizing detection, configure NGFW ACLs, general device configuration and maintenance, troubleshoot the devices when needed.
  • Provide operational requirements and recommendations to the Security Architects for service enhancements and system improvements. Start reviewing the possibilities for transforming into a NDR or XDR solution for the Enterprise.
  • On-call availability for network impacting or network outage situations outside of business hours 
  • Effectively work within a Security team, and support and collaborate with other teams 
  • Conduct Intrusion event analysis and support security operation center (SOC) incident response, threat detection teams.
  • Develop documentation, e.g., standard operating procedures (SOP), and support audit events 
  • Develop reports on systems status and performance.

WHAT YOU’LL NEED TO SUCCEED:

Education:

  • Bachelor’s or Master’s degree, Information Systems, Cybersecurity, or other related fields. Or equivalent work experience.
  • NOTE: If resources do not have a relevant college degree, an additional 4 years of relevant work experience is required.

Required Experience:

  • 9+ years of security or cybersecurity experience
  • CISCO Firepower Threat Defense IDS/IPS, FMC 
  • Prior job experience maintaining and troubleshooting IDS/IPS devices 
  • Experience with Splunk and other SIEM tools. 
  • Proficiency with packet analysis/Wireshark 
  • Networking – routing and switching, TCP/IP stack, IP subnets, VPN 
  • Scripting – python, Perl, JavaScript. 
  • Experience with threat analysis, triage, and mitigation   
  • Experience with Linux 
  • Experience with packet analysis 
  • Knowledge of databases 
  • Knowledge of networking and network protocols 
  • Certification in one or more of the following: Security+ or CISSP
  • Networking+, CCNA Route Switch or CCNA Security, CCNP Route Switch or CCNP Security
  • Experience with threat analysis, triage, and mitigation 
  • Tipping Point IDS, ATD, DDI, DDD, SPS, SMS 
  • Understanding of NGFW ACLs 
  • Experience writing Snort rules 
  • Proficiency with Wireshark 
  • Experience with Splunk 
  • Ability to write clear procedural and technical documentation 
  • Experience troubleshooting network problems at layers 1, 2, and 3 

Security Clearance Level:

  • Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
  • This position has a U.S. residency requirement. The USPS security clearance process requires the selected candidate to have resided in the U.S. (including U.S. Territories) for the last five years as follows: U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 6 months consecutively in the last 3 years (unless they meet certain exceptions). Non-U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 90 days consecutively in the last 3 years.

Location:

  • Morrisville, NC
  • Remote considered

GDIT IS YOUR PLACE:

  • 401K with company match
  • Comprehensive health and wellness packages
  • Internal mobility team dedicated to helping you own your career.
  • Professional growth opportunities including paid education and certifications.
  • Cutting-edge technology you can learn from
  • Rest and recharge with paid vacation and holidays

#IDS #IPS #zxc726

Work Requirements
Years of Experience

9 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

Travel Required

Less than 10%

Salary and Benefit Information

The likely salary range for this position is $108,979 - $147,443. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
View information about benefits and our total rewards program.

About Our Work

We are GDIT. A global technology and professional services company that delivers technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across over 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, cloud, cyber and application development. Together with our customers, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans