Home > Hampton jobs > Hampton computer/technical

Posted: Sunday, December 31, 2017 1:57 PM

Mission Statement: Tests, implements, deploys, maintains, reviews and administers the infrastructure hardware and software that are required to effectively manage the computer network defense (CND) service provider network resources. Monitors network to actively remediate unauthorized activities.A? Administer computer network defense (CND) test bed(s), and test and evaluate new CND applications, rules/signatures, access controls, and configurations of CND service provider managed platforms Coordinate with Computer Network Defense (CND) Analysts to manage and administer the updating of rules and signatures (eg, intrusion detection/protection systems, anti-virus, and content blacklists) for specialized computer network defense (CND) applications Create, edit, and manage changes to network access control lists on specialized computer network defense (CND) systems (eg, firewalls and intrusion prevention systems) Identify potential conflicts with implementation of any computer network defense (CND) tools within the CND service provider area of responsibility (eg, tool/signature testing and optimization) Perform system administration on specialized computer network defense (CND) applications and systems (eg, anti-virus, audit/ remediation) or Virtual Private Network [VPN] devices, to include installation, configuration, maintenance, and backup/restoration Assist in identifying, prioritizing, and coordinating the protection of critical computer network defense (CND) infrastructure and key resources Must have a good understanding of networks at the packet level and be able to analyze packet captures at the expert level.A? Basic experience administering and Automating Linux Systems Scripting experience in Powershell/BASH Programming and Automation experience utilizing Ruby/Python/Perl Network Access Control (NAC) experience: ForeScout CounterACT, Cisco ICE Firewall experience: Cisco ASA, Cisco IOS FW, Palo Alto Network TAP/SPAN aggregators: Cisco Nexus with Data Broker, Gigamon, Ixia Virtualization experience: VMware ESX and NSX, KVM, Xen Server HBSS Operations, In-depth experience with configuring and analyzing results from but not limited to HIPS, DLP and VSE ACAS Operations (Security Center, Nessus Scanner and PVS), SPLUNK operations, Fidelis - In-depth operational work with network IDS and incident response including but not limited to FidelisA? HBSS ExperienceA? HBSS Operations, In-depth experience with configuring and analyzing results from but not limited to HIPS, DLP and VSE Maintain and administer the HBSS operations for the campus wide Enterprise computing systems Install HBSS agent and modules to servers and end user machines (modules: ACCM,DLP,HIPS,MOVE,PA,RSD,VSE) Respond to escalated support requests for technical assistance Validate and coordinate HBSS scheduled maintenance Create custom queries to meet varying informational demands Maintain and administer the campus wide Enterprise computing systems to meet the DoD mandated security requirements and directives Create custom Firewall policies and work with Cybersecurity and incident teams to identify, configure and apply host based IPS signatures to protect against zero-day threat Create firewall and IPS exclusions based on customer demand and the A&A approval process Work with the trouble ticket system to coordinate troubleshooting efforts with the end user and their varying issues Troubleshoot VM and SQL issues that conflict with the basic functionality of ePO Understand client's operational and sustainment methodologies and processes. Monitor HBSS to detect faulty operation, anomalies, and security events. Develop, run, analyze, and maintain reports using SQL and HBSS reporting. Develop sorting rules, dashboards, data monitors, and filters using HBSS.A? ACAS ExperienceA? Provide cyber security remote scanning and remediation support, as necessary, to sites preparing for CCRIs. Assist the PMO with maintenance of base/site lists and Internet Protocol host counts. Maintain effective communications with other teams essential to ACAS operation (eg, Base Boundary, Server Consolidated Environment,etc.). Support the reporting of compliance data via ACAS to the e-MASS Facilitate, as necessary, the transition of ACAS Security Centers new virtual infrastructure; as needed Author custom security policies. Perform systems analysis, design review, programming, documentation and implementation of complex system applications and related IT/ADP systems concepts. Participate in all phases of the software life cycle with emphasis on the planning, analysis, programming, testing and acceptance phases. Author and/or assist in the authoring of configuration files, signatures and other such files necessary to add new vulnerability discovery capabilities into the ACAS system tool. Assist vulnerability personnel in the implementation of the DISA Information Assurance and Vulnerability Management programs including vulnerability tracking and compliance reporting. Assist with implementation of DISA-released software patches, updates, and upgrades. Accommodate, as necessary, PMO-led pilot programs of Internet Protocol version 6 (IPv6) and Passive Vulnerability Scanner on ACAS. Experience with Microsoft SQL 2008 Experience with Windows Server 2008 R2 Scripting experience (Perl, JavaScript, HTML) Knowledge of data communications, local-area networking, wide-area networking, routers, and switches Thorough understanding of Internet Protocol (IP) routing, switching and the OSI model. Education Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience. Qualifications 1.A? Comprehensive knowledge of data security administration principles, methods, and techniques.2.A? Certification in one or more specific technologies may be required, depending on job assignment.3.A? Requires familiarity with domain structures, user authentication, and digital signatures.4.A? Requires understanding of firewall theory and configuration.5.A? Requires understanding of DHS/DoD policies and procedures, including FIPS 199, FIPS 200, NIST 800-53, DHS 4300A SSH and other applicable policies.6. Comprehensive knowledge of Physical Security principles, methods, and techniques.7. 5-8 years of related experience in data security administration.8. DoD 8570 // IAT Level II - One of the following cerifications is required:A? CEHGICSPSSCP9. One of the following Computing Environment certifications will be required within 90 days of hire:CiscoJuniperMicrosoftVMWareRHEL 6/7SolarisAs a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.A? #BICES


• Location: Hampton

• Post ID: 32920092 hampton is an interactive computer service that enables access by multiple users and should not be treated as the publisher or speaker of any information provided by another information content provider. © 2018