Job Description
Responsibilities for this Position
Location: USA NC Morrisville
Full Part/Time: Full time
Job Req: RQ206100
Type of Requisition: Pipeline
Clearance Level Must Currently Possess: None
Clearance Level Must Be Able to Obtain: None
Public Trust/Other Required: MBI (T2)
Job Family: Cyber and IT Risk Management
Job Qualifications: Skills: IPS/IDS, Linux, SIEM Tools
Certifications: None
Experience: 9 + years of related experience
US Citizenship Required: No
Job Description: Seize your opportunity to make a personal impact as an
IDS/IPS Security Engineer Lead supporting the United States Postal Service. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.
At GDIT, people are our differentiators. As an
IDS/IPS Security Engineer Lead , you will help ensure today is safe and tomorrow is smarter. Our work depends on an
IDS/IPS Security Engineer Lead joining our team to analyze design, develop, implement, and support code for our government customer, the United States Postal Service.
HOW AN IDS/IPS SECURITY ENGINEER LEAD WILL MAKE AN IMPACT - Operate, maintain, and deploy IDS and IPS devices. Taking the steps needed to implement the latest automation and/or LLM into detection.
- Maintain intrusion ruleset, optimizing detection, configure NGFW ACLs, general device configuration and maintenance, troubleshoot the devices when needed.
- Provide operational requirements and recommendations to the Security Architects for service enhancements and system improvements. Start reviewing the possibilities for transforming into a NDR or XDR solution for the Enterprise.
- On-call availability for network impacting or network outage situations outside of business hours
- Effectively work within a Security team, and support and collaborate with other teams
- Conduct Intrusion event analysis and support security operation center (SOC) incident response, threat detection teams.
- Develop documentation, e.g., standard operating procedures (SOP), and support audit events
- Develop reports on systems status and performance.
WHAT YOU'LL NEED TO SUCCEED: Education :
- Bachelor's or Master's degree, Information Systems, Cybersecurity, or other related fields. Or equivalent work experience.
- NOTE: If resources do not have a relevant college degree, an additional 4 years of relevant work experience is required.
Required Experience: - 9+ years of security or cybersecurity experience
- CISCO Firepower Threat Defense IDS/IPS, FMC
- Prior job experience maintaining and troubleshooting IDS/IPS devices
- Experience with Splunk and other SIEM tools.
- Proficiency with packet analysis/Wireshark
- Networking - routing and switching, TCP/IP stack, IP subnets, VPN
- Scripting - python, Perl, JavaScript.
- Experience with threat analysis, triage, and mitigation
- Experience with Linux
- Experience with packet analysis
- Knowledge of databases
- Knowledge of networking and network protocols
- Certification in one or more of the following: Security+ or CISSP
- Networking+, CCNA Route Switch or CCNA Security, CCNP Route Switch or CCNP Security
- Experience with threat analysis, triage, and mitigation
- Tipping Point IDS, ATD, DDI, DDD, SPS, SMS
- Understanding of NGFW ACLs
- Experience writing Snort rules
- Proficiency with Wireshark
- Experience with Splunk
- Ability to write clear procedural and technical documentation
- Experience troubleshooting network problems at layers 1, 2, and 3
Security Clearance Level :
- Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
- This position has a U.S. residency requirement. The USPS security clearance process requires the selected candidate to have resided in the U.S. (including U.S. Territories) for the last five years as follows: U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 6 months consecutively in the last 3 years (unless they meet certain exceptions). Non-U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 90 days consecutively in the last 3 years.
Location :
- Morrisville, NC
- Remote considered
GDIT IS YOUR PLACE: - 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to helping you own your career.
- Professional growth opportunities including paid education and certifications.
- Cutting-edge technology you can learn from
- Rest and recharge with paid vacation and holidays
#IDS #IPS #zxc726
The likely salary range for this position is $108,979 - $147,443. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Scheduled Weekly Hours: 40
Travel Required: Less than 10%
Telecommuting Options: Onsite
Work Location: USA NC Morrisville
Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc .
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
PI277548183
Seize your opportunity to make a personal impact as an
IDS/IPS Security Engineer Lead supporting the United States Postal Service. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.
At GDIT, people are our differentiators. As an
IDS/IPS Security Engineer Lead , you will help ensure today is safe and tomorrow is smarter. Our work depends on an
IDS/IPS Security Engineer Lead joining our team to analyze design, develop, implement, and support code for our government customer, the United States Postal Service.
HOW AN IDS/IPS SECURITY ENGINEER LEAD WILL MAKE AN IMPACT - Operate, maintain, and deploy IDS and IPS devices. Taking the steps needed to implement the latest automation and/or LLM into detection.
- Maintain intrusion ruleset, optimizing detection, configure NGFW ACLs, general device configuration and maintenance, troubleshoot the devices when needed.
- Provide operational requirements and recommendations to the Security Architects for service enhancements and system improvements. Start reviewing the possibilities for transforming into a NDR or XDR solution for the Enterprise.
- On-call availability for network impacting or network outage situations outside of business hours
- Effectively work within a Security team, and support and collaborate with other teams
- Conduct Intrusion event analysis and support security operation center (SOC) incident response, threat detection teams.
- Develop documentation, e.g., standard operating procedures (SOP), and support audit events
- Develop reports on systems status and performance.
WHAT YOU'LL NEED TO SUCCEED: Education :
- Bachelor's or Master's degree, Information Systems, Cybersecurity, or other related fields. Or equivalent work experience.
- NOTE: If resources do not have a relevant college degree, an additional 4 years of relevant work experience is required.
Required Experience: - 9+ years of security or cybersecurity experience
- CISCO Firepower Threat Defense IDS/IPS, FMC
- Prior job experience maintaining and troubleshooting IDS/IPS devices
- Experience with Splunk and other SIEM tools.
- Proficiency with packet analysis/Wireshark
- Networking - routing and switching, TCP/IP stack, IP subnets, VPN
- Scripting - python, Perl, JavaScript.
- Experience with threat analysis, triage, and mitigation
- Experience with Linux
- Experience with packet analysis
- Knowledge of databases
- Knowledge of networking and network protocols
- Certification in one or more of the following: Security+ or CISSP
- Networking+, CCNA Route Switch or CCNA Security, CCNP Route Switch or CCNP Security
- Experience with threat analysis, triage, and mitigation
- Tipping Point IDS, ATD, DDI, DDD, SPS, SMS
- Understanding of NGFW ACLs
- Experience writing Snort rules
- Proficiency with Wireshark
- Experience with Splunk
- Ability to write clear procedural and technical documentation
- Experience troubleshooting network problems at layers 1, 2, and 3
Security Clearance Level :
- Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
- This position has a U.S. residency requirement. The USPS security clearance process requires the selected candidate to have resided in the U.S. (including U.S. Territories) for the last five years as follows: U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 6 months consecutively in the last 3 years (unless they meet certain exceptions). Non-U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 90 days consecutively in the last 3 years.
Location :
- Morrisville, NC
- Remote considered
GDIT IS YOUR PLACE: - 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to helping you own your career.
- Professional growth opportunities including paid education and certifications.
- Cutting-edge technology you can learn from
- Rest and recharge with paid vacation and holidays
Job Tags
Full time, Temporary work, Part time, Work experience placement, Immediate start, Remote work, Worldwide, Flexible hours,