Senior Cyber Security Engineer

Description

Summary: MANTECH seeks a Senior Cyber Security Engineer to support mission-critical cybersecurity operations by designing, deploying, and maintaining secure data collection and monitoring solutions. Highlights: 1. Support mission-critical cybersecurity operations 2. Design, deploy, and maintain secure data collection solutions 3. Troubleshoot and resolve system issues Apply Now MANTECH seeks a motived, career and customer-oriented Senior Cyber Security Engineer to join our team in Chantilly, VA. In this role, you will support mission-critical cybersecurity operions by designing, deploying, and maintaining secure, resilient da collection and monitoring solutions th enable informed decision-making across the enterprise.   Responsibilities include but are not limited to: Troubleshoot new and existing da collection issues to ensure accure and reliable ingestion of security-relevant da. Diagnose and resolve system issues th impact stability, performance, or usability. Deploy, manage, and maintain supported and unsupported Splunk Add-ons required for specific da sources. Develop and maintain documention, including Body of Evidence (BOE) artifacts, engineering documention, change management records, system security plans, and accredition merials, as required. Deliver a comprehensive Splunk deployment document detailing specificions, deployment methods, and architectural considerions for production environments. Implement and maintain strict role-based access control to ensure da is accessible on a valided need-to-know basis. Design and deploy Splunk forwarders using centralized configurion management through the Splunk Deployment Server to support rapid and consistent deployments.   Minimum Qualificions: Bachelor’s degree, or 4+ additional years of cyber engineering experience in lieu of a degree. 5+ years of experience in a cybersecurity engineering role. Experience with deploying Security Informion and Event Management (SIEM) plforms and/or Splunk in a large enterprise environment. Experience with deploying or managing AWS, Microsoft Azure, or other cloud environments. Experience with scripting languages such as Python or Powershell Knowledge of Linux systems administrion, general opering system security practices, TCP/IP networking, and network security concepts. Knowledge of Certificion and Accredition (C&A) processes. Knowledge of DoD policy and technical security guidance for informion systems. DoD Directive 8570.1 IAT Level II or higher certificion, or the ability to obtain within six (6) months.   Preferred Qualificions: Experience with Linux distributions, including Red H and CentOS. Experience with AWS or other cloud environments. Knowledge of ICS 500-27 audit collection requirements. Familiarity with Enterprise Security Services, Host Based Security Services, Enterprise Vulnerability Scanning Services, and User Activity Monitoring (UAM). Ability to modify feed creion to ingest customer logs in standardized forms to meet policy and compliance requirements. Splunk Architect certificion or higher Experience with Cribl   Clearance Requirements: An active TS/SCI with Polygraph is required.   Physical Requirements: Must be able to remain in a stionary position 50% of the time. Occasionally moves about inside the office to access file cabinets, office machinery, or to communice with co-workers, management, and customers via email, phone, or virtual communicion, which may involve delivering presentions. Apply Now