Fidelis Administrator - Active TS/SCI with CI Poly

Avint LLC is seeking a SOC Analyst who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The SOC Analyst will contribute to the growth of the company by leading a team to effectively manage policy, and overall programmatic risk. This is a unique opportunity to shape the progress, development, and culture of an exciting and rapid-growing company in the cybersecurity market. This is an in-person role. Job Responsibilities: Shift- Rotational shift ( Night and Day) , 12 hours shift, Need to support on weekends and holidays Monitor security alerts in real-time using advanced tools, triaging and prioritizing incidents based on severity and potential impact. Accept and coordinate incident reports from both internal and external stakeholders, ensuring accurate documentation and prompt follow-up. Perform detailed analysis of security incidents, including root cause identification, impact assessment, and development of remediation recommendations. Conduct forensic investigations of digital artifacts and malware to identify attack vectors, persistence mechanisms, and potential data exfiltration activities. Develop and execute strategies to contain, eradicate, and recover from security incidents, ensuring minimal disruption to operations. Respond rapidly to critical incidents, providing effective mitigation to ongoing threats while maintaining calm and precise communication. Ensure the continuity of SOC operations, particularly during incident response, maintaining service availability and minimizing downtime. Conduct architectural and engineering discovery to identify security gaps and recommend enhancements to SOC capabilities. Manage and update SOC policies, procedures, and performance metrics, ensuring alignment with industry standards and organizational goals. Maintain and oversee inventory systems to track hardware, software, and tool usage effectively. Requirements Top-Secret Clearance Proven experience in a Security Operations Center or similar cybersecurity role. Hands-on expertise with Security Onion and Velociraptor tools for threat detection, response, and forensic analysis. Strong knowledge of incident response lifecycles, forensic methodologies, and malware analysis techniques. Familiarity with network security tools, intrusion detection systems, and SIEM platforms. Ability to analyze complex security events and articulate findings in clear, actionable reports. Excellent problem-solving and decision-making skills, with the ability to perform under pressure. Strong understanding of networking protocols, operating systems, and common attack vectors. Effective communication skills to coordinate with cross-functional teams and external partners. Benefits Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits. From competitive salaries, full health, to a new Open Time Off Policy and Federal Holidays. Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development! Salary range $120,000-$125,000 on-site work. Avint is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity and Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.

Implementing the Microsoft Defender solution and supporting the transition to emerging Microsoft technologies. Experience with the Microsoft Defender Suite including Microsoft Defender for Endpoint (MDE), Microsoft Defender for Office (MDO), Defender Cloud Apps (MDCA), and Mobile Threat Defender (MTD) is needed, and to assist with deployment of complex architectures based on Microsoft Intune, Endpoint manager, and 365 Defender center. In addition to implementing the Microsoft Defender solution including MDE, MDO, MDCA, and MTD, this position will be responsible for developing SOPs/TTPS for maintaining agent handlers, repositories, Microsoft Intune, Microsoft 365 Defender, and Microsoft Defender for Cloud Apps and support the transition from DoD Enterprise Capabilities to emerging Microsoft technologies. This position will deploy complex architectures based on Microsoft Intune, Endpoint manager, and 365 Defender center, coordinating efforts to test and verify solutions for future implementation. This position requires the ability to work core hours between 6:00 am to 6:00 pm during the week and participate in on-call rotation for after-hours support. Requirements Experience with Microsoft Intune and Microsoft Defender Experience with server management, including virtualization, and Windows server administration Experience with scripting languages, including PowerShell and KQL Experience with Azure in hybrid environments, Active Directory on prem and cloud, and Group Policies Experience with end user technology deployments and upgrades Experience with supporting Microsoft Defender for Endpoint (MDE), Microsoft Defender for Office (MDO), Microsoft Defender for Cloud and Sentinel, Microsoft Defender for Endpoint Mobile Threat Defense (MTD), Microsoft Endpoint Manager Admin Center, Microsoft Security Administration, Microsoft Office 365, and Microsoft Configuration management service center Active TS/SCI clearance; willingness to take a polygraph exam HS diploma or GED and 7+ years of experience with supporting IT projects and activities, Associate’s degree and 5+ years of experience with supporting IT projects and activities, or Bachelor’s degree and 3+ years of experience with supporting IT projects and activities DoD 8570 IAT Level II Certification, including CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP Certification  Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification within 60 days of start date Optional Qualifications: Experience in managing and administrating systems associated with software deployments, patches, and scripts to a large enterprise environment Experience in collaborating with peers and managers to identify, manage, and generate appropriate reporting and metrics standards based on deployments and management needs Experience with managing complex IT projects involving multiple teams or organizations Experience with tracking and resolving incidents via ticket queue Experience with providing hands on PC and mobile support to end users Ability to be an active member and solve problems by recommending outside-the-box, cost effective solutions Ability to pay strict attention to detail Possession of excellent written and verbal communication and interpersonal skills Benefits Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients. Why ENS? Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS 401k Contribution from Day 1 PTO + 11 Paid Federal Holidays Long & Short Term Disability Insurance Group Term Life Insurance Tuition, Certification & Professional Development Assistance Workers’ Compensation Relocation Assistance

We are seeking an experienced Senior Firewall Engineer with deep expertise in Palo Alto Networks firewalls to design, implement, and manage advanced network security solutions. The ideal candidate will be responsible for ensuring the security, performance, and reliability of our network infrastructure by leveraging Palo Alto firewall technologies and best practices. This role requires strong technical expertise, problem-solving skills, and the ability to collaborate with cross-functional teams to safeguard the organization’s network environment. Key Responsibilities: Firewall Design & Implementation: Architect, configure, and deploy Palo Alto Networks firewalls (physical and virtual, including PA-Series, VM-Series, and Panorama) to meet organizational security and performance requirements. Policy Management: Develop, implement, and maintain firewall policies, rules, and security profiles to enforce access controls, threat prevention, and compliance with industry standards (e.g., PCI-DSS, HIPAA, NIST). Network Security Operations: Monitor, troubleshoot, and optimize firewall performance, ensuring high availability, low latency, and robust security across the network. Threat Prevention: Configure and manage advanced Palo Alto features such as URL filtering, WildFire, GlobalProtect VPN, IPS/IDS, and application-based policies to mitigate cyber threats. Incident Response: Investigate and respond to security incidents, perform root cause analysis, and implement corrective actions to prevent recurrence. Automation & Scripting: Utilize scripting (e.g., Python, PowerShell) and automation tools to streamline firewall management, policy updates, and reporting processes. Collaboration: Work closely with network engineers, security analysts, and IT teams to integrate Palo Alto firewalls with other systems, such as SD-WAN, cloud platforms (AWS, Azure, GCP), and SIEM solutions. Documentation & Training: Maintain detailed documentation of firewall configurations, policies, and procedures. Provide training and mentorship to junior team members. Compliance & Auditing: Ensure firewall configurations align with regulatory requirements and participate in security audits and assessments. Upgrades & Maintenance: Plan and execute firmware upgrades, patch management, and system migrations for Palo Alto firewalls and Panorama. Vendor Interaction: Collaborate with Palo Alto Networks support and account teams to resolve complex issues and stay updated on product enhancements. Requirements Minimum of 5-7 years of experience in network security, with at least 3 years focused on Palo Alto Networks firewalls. Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE) required. Additional certifications such as CCNP Security, CISSP, or equivalent are a plus. Technical Skills: In-depth knowledge of Palo Alto Networks firewall platforms (PA-Series, VM-Series, Panorama). Expertise in firewall policy management, NAT, VPN (IPsec/SSL), App-ID, User-ID, and threat prevention. Strong understanding of networking protocols (TCP/IP, BGP, OSPF, VLANs, etc.) and network architecture. Proficiency in scripting (Python, PowerShell, or similar) for automation. Familiarity with cloud security (AWS, Azure, GCP) and SD-WAN integration. Soft Skills: Excellent problem-solving, communication, and teamwork skills. Ability to work under pressure and manage multiple priorities. Education: Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience). Preferred Qualifications: Experience with Palo Alto Networks Prisma Access or Prisma Cloud. Knowledge of other firewall platforms (e.g., Cisco ASA, Fortinet, Check Point). Familiarity with SIEM tools (e.g., Splunk, QRadar) and network monitoring solutions. Experience in a highly regulated industry (e.g., finance, healthcare, government). Working Conditions: May require occasional on-call support for critical incidents. Ability to work in a fast-paced, dynamic environment. Benefits Competitive salary commensurate with experience. Comprehensive health benefits package 401(k) with company match. Paid time off and holidays. American Operations Corporation is an EEO employer and does not discriminate on the basis of race, religion, disability, veteran status, gender or sexual orientation.

RP Professional Services is a rapidly growing Technology consulting firm headquartered in Virginia. We’re an 8a and Service-Disabled Veteran-Owned Small Business (SDVOSB) serving both federal and commercial customers. At RP, we help our clients achieve their mission by developing value driven, customized solutions that are executed by the best people. Our dedication to our employees and clients is driven by our promise to deliver Excellence, Value, and Flexibility. "People, not just Resources" is more than our motto; it's the foundation on which we are built! RP Professional Services is seeking a Senior Cyber Security Specialist to support and advise security professionals on emerging cyber threats, risk mitigation strategies, and compliance standards within the Department of Defense (DoD) Intelligence Community (IC). The ideal candidate will have a strong technical background in classified and unclassified systems, insider threat tools, user activity monitoring (UAM), and cyber threat intelligence. This role requires expertise in offensive and defensive cyber capabilities, network security frameworks, and collaboration across government organizations to enhance cybersecurity posture and threat detection capabilities. This position is contingent upon the contract being awarded to RP Professional Services. Requirements: Advise security professionals on emerging cyber threats, risk mitigation strategies, and industry regulations. Support DoD Intelligence Community operations with expertise in cybersecurity threat management. Apply classified and unclassified system knowledge to facilitate security standards and compliance. Assist non-IT professionals in understanding Department of Defense network standards for effective insider threat tool deployment. Coordinate with cyber threat intelligence teams to develop strategic threat assessments and response plans. Promote and implement technical solutions that support mission-critical cybersecurity objectives. Conduct user activity monitoring (UAM) and cybersecurity evaluations to detect anomalous behaviors and insider threats. Assess and advise on both offensive and defensive cybersecurity strategies within DoD and Intelligence frameworks. Utilize expertise in at least one of the following cybersecurity domains: Risk/Vulnerability/Threat Assessments Cloud Security Security Operations Firewall (FW), Intrusion Prevention System (IPS), Intrusion Detection System (IDS) Configuration Penetration Testing Forensics Threat Intelligence Threat Hunting Maintain awareness of state, local, and federal cybersecurity developments, standards, frameworks, and regulations and their impact on operations. Support counterintelligence, insider threat, and law enforcement investigations through cybersecurity expertise. Requirements Bachelor’s degree in Computer Science or a related field. Minimum fifteen (15) years of experience advising security professionals on emerging cyber threats. Minimum ten (10) years of experience working within the DoD Intelligence Community. Demonstrated knowledge of DoD/IC computer systems, protections, and cybersecurity threats. Experience advising non-IT professionals on DoD network standards for insider threat tools. Strong coordination skills for collaborating across organizations and implementing cybersecurity solutions. Preferred Qualifications:  Certified Information Systems Security Professional (CISSP). Knowledge of user activity monitoring (UAM) software and processes. Expertise in DoD cybersecurity compliance frameworks and regulations. Strong background in counterintelligence and insider threat investigations. Experience working across government security agencies, military cybersecurity teams, and intelligence divisions. Salary Range: $220,000 - $240,000 The salary range for this role considers a wide range of factors, including, but not limited to, skill sets, equity, experience and training, licensure and certifications, and other business and organizational needs. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case.   Benefits Health Benefits: Medical, Vision, Dental Up to 4% retirement match with 100% vesting Company paid STD and LTD Company paid basic life insurance Competitive PTO package RP Professional Services, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

The Associate Director is responsible for managing the Cyber Response Team in the US and leading overall delivery of incident response cases in the region. This role involves leading the technical aspects of the cyber response practice, managing our technical team members as well as managing client relationships. This role will report to Global Head of Cyber Response and work in tandem with European, Middle East and Asia colleagues on a follow-the-sun basis. The successful candidate will have a strong technical skill set, deep understanding of the North American cyber incident response market and a deep understanding of current and emerging advanced threat actors. They will have a proven track record of responding to advanced threats leveraging forensics and threat hunting technology. Role tasks and responsibilities Technical response Oversee incident response cases for all host and network based investigations, be responsible for the overall quality of our technical incident response work. Ownership of the entire lifecycle of a cyber incident including identification, containment, eradication and recovery. A particular area of specialty in eradication and recovery from an incident. Threat hunting using EDR tooling to evaluate an attacker's spread through a system and network, anticipating and thwarting further attacker activity. Perform live compromise assessments for organizations who suspect a compromise. Detect and hunt unknown live, dormant, and custom malware in memory across multiple systems in an enterprise environment. Demonstrate a deep understanding of both existing and emerging threat actors, as well as experience identifying rapidly changing tools, tactics and procedures of attackers. Advise on the safe technical recovery of an organizations IT systems balancing the need to understand what has happened but speed up recovery. Be responsible for Control Risks technical Cyber Response strategy. Identify, design and then implement solutions that meet these strategic objectives. Client Management To build and develop client relationships facilitating where appropriate introduction and provision of additional Control Risks services. Working closely with the Global Head of Cyber Response and Global colleagues to ensure a cohesive go-to-market approach. Possess and develop working knowledge of key insurer and law firm relationships that may drive growth. Reporting Provide situation reports and other significant case related material to the client and the Director of Cyber Response. Provide documentation to the relevant consultants in sufficient time to allow review and feedback, before submitting to a client. Report on the performance of the Technical Cyber Response work and forecast technical and resource requirements in the near and long term. Team management Establish resourcing requirements for our already growing Cyber Response practice, hire and then manage these technical individuals. Establish relationships with key recruiters and where possible align with the Cyber Crisis Management teams resourcing plans. Align with and help to expand the already re-occurring Internship Program and where business need requires onboard interns into the technical team. Define clear roles and responsibilities for new hires including a learning pathway for training & development. Ensure new joiners have appropriate time dedicated to technical development and research whilst balancing un-predictable workload. Governance Own the technical response Standard Operating Procedures, working with the team to ensure they are kept up to date with the latest threats. Ensure issues identified during delivery of cases are identified, escalated and resolved efficiently. Supporting the growth of the Cyber Response practice Refining Control Risks’ cyber response methodologies and approaches and tailoring the approach in changing market conditions. Identifying potential new areas of growth and opportunity. Requirements Candidates must be legally authorized to work in the US on a permanent basis without sponsorship. Candidates must possess unrestricted US work authorization. Proven experience in technically responding to significant and complex cyber attacks and information security related advisory Proven experience of managing and/or building the requisite technologies necessary for responding to a wide variety of common cyber security incidents Demonstrable experience of operating within a commercial environment and engaging with key stakeholders in insurance and risk management. Technical degree or demonstrated knowledge of common networks, software and hardware used in business environments Experience in conducting log analysis and digital forensics following a cyber incident Experience of working with law firms, communications experts, and others on sensitive investigations. Track record of developing consultative relationships with clients Excellent people management skills Fluent in English (written and spoken) Excellent presentation skills Excellent analytical skills Preferred: Strong understanding of MITRE ATT&CK techniques / sub-techniques. The ability to articulate TTPs to clients in non-technical terms. Preferred: Experience in generating SIGMA rules for host detection, SNORT rules for network detection and YARA Signatures for file and memory artefact identification. Preferred: Experience in engaging in industry and law enforcement intelligence forums Preferred: Experience of supporting cross-jurisdictional response cases Preferred: Qualifications such as: CREST Registered Intrusion Analyst (CRIA), Certified Network Intrusion Analyst (CCNIA), Certified Host Intrusion Analyst (CCHIA), SANS Advanced Incident Response, Threat Hunting, and Digital Forensics (FOR508) or Enterprise-Class Incident Response & Threat Hunting (FOR608), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) and full membership of ISACA. The base salary range for this position is $140,000-$150,000 per year. Exact compensation offered may vary depending on job-related knowledge, skills, and experience. Control Risks is committed to a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs. Control Risks participates in the E-Verify program to confirm employment authorization of all newly hired employees. The E-Verify process is completed during new hire onboarding and completion of the Form I-9, Employment Eligibility Verification, at the start of employment. E-Verify is not used as a tool to pre-screen candidates. For more information on E-Verify, please visit www.uscis.gov. Benefits Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer. Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working. Medical Benefits, Prescription Benefits, FSA, Dental Benefits, Vision Benefits, Life and AD&D, Voluntary Life and AD&D, Disability Benefits, Voluntary Benefits, 401 (K) Retirement, Nationwide Pet Insurance, Employee Assistance Program. As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.

RP Professional Services is a rapidly growing Technology consulting firm headquartered in Virginia. We’re an 8a and Service-Disabled Veteran-Owned Small Business (SDVOSB) serving both federal and commercial customers. At RP, we help our clients achieve their mission by developing value driven, customized solutions that are executed by the best people. Our dedication to our employees and clients is driven by our promise to deliver Excellence, Value, and Flexibility. "People, not just Resources" is more than our motto; it's the foundation on which we are built! RP Professional Services is seeking a Mid-Level Threat Manager to identify, assess, and mitigate security risks, particularly those related to violent threats, insider threats, and intelligence vulnerabilities. This role requires expertise in threat assessment and management (TAM), risk mitigation strategies, and collaboration with military and government agencies. The ideal candidate will possess structured professional judgment expertise, law enforcement and intelligence experience, and a deep understanding of threat management frameworks within the Department of Defense (DoD) and Intelligence Community (IC). This position is contingent upon the contract being awarded to RP Professional Services. Requirements: Conduct structured threat assessments utilizing industry-recognized methodologies. Apply Structured Professional Judgment (SPJ) tools, such as WAVR-21 and TRAP-18, to evaluate threats. Develop and implement risk mitigation strategies for military and civilian leadership. Provide written and verbal briefings on threat intelligence, security risks, and emerging patterns. Support local, state, and federal threat management teams focused on preventing violent behavior. Collaborate with law enforcement, intelligence agencies, and government organizations to assess threats. Utilize DoD and commercial databases to compile and analyze threat intelligence reports. Ensure compliance with national security protocols, regulations, and industry best practices. Conduct training programs for leadership teams on threat management and risk mitigation. Requirements Certified Threat Assessment Professional (administered by the Association of Threat Assessment Professionals - ATAP). Must be an active ATAP member. Minimum six (6) years in threat assessment and/or threat management. Minimum five (5) years of compensated professional experience in Threat Assessment and Management (TAM) OR two (2) years of ATAP membership in good standing and two (2) years of compensated professional experience (which may be concurrent). Minimum three (3) years of experience advising military or civilian leaders on threat assessment strategies. Direct experience working with the DoD population in a security or intelligence capacity. Experience supporting threat management units or teams focused on assessing and mitigating violent behavior risks. Familiarity with Intelligence and/or Law Enforcement communities, including Government, DoD, and commercial databases used to compile analytic products. Preferred Qualifications: Advanced certifications such as CISSP, CISM, CEH, or GCIH. Strong understanding of geopolitical risks and global threat landscapes. Proven ability to train personnel in threat assessment methodologies and risk mitigation strategies. Salary Range: $155,000 - $170,000 The salary range for this role considers a wide range of factors, including, but not limited to, skill sets, equity, experience and training, licensure and certifications, and other business and organizational needs. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case.   Benefits Health Benefits: Medical, Vision, Dental Up to 4% retirement match with 100% vesting Company paid STD and LTD Company paid basic life insurance Competitive PTO package RP Professional Services, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.