IDS/IPS Security Engineer

Information Technology Raleigh, North Carolina Job ID: 2018-890


About the Team

STG is a leading provider of mission-critical technology, cyber and data solutions to more than 50 US Federal Agencies. STG has been consistently listed amongst Washington Technology’s Top 100 Government Technology Contractors. We provide performance-oriented solutions in cyber security and secure information systems, software development, systems and services, and intelligence and analytics. We serve our customers at more than 250 locations at home and overseas.

About the Job

STG is seeking a talented, dynamic, and experienced IDS/IPS Security Engineer to add to its team in support of the United States Postal Service.  The Security Engineer will be responsible for the security architecture across a variety of applications and domains.  The ideal candidate will have expertise in certificate management, change review, and IDS/IPS administration and analysis.

Key Responsibilities

  • Maintaining the intrusion ruleset
  • Assist in optimizing detection capabilities
  • Configuring NGFW ACLs
  • Performing general device configuration and maintenance
  • Troubleshooting network devices when required
  • Assisting analyst teams with investigations
  • Support Solution Architects with design input and recommendations

Minimum Qualifications

  • 5+ years of cybersecurity, information security operations, or related information technology operational functions experience
  • Bachelors degree in Information Technology or related discipline
  • Prior job experience maintaining and troubleshooting IDS/IPS devices
  • Certification in one or more of the following: Security+ or CISSP
  • Experience with Linux
  • Experience with packet analysis
  • Knowledge of databases
  • Knowledge of networking and network protocols
  • On-call availability for network impacting or network outage situations outside of business hours
  • Ability to effectively work within a Security team, and support and collaborate with other teams
  • Ability to obtain a security clearance

Preferred Qualifications

  • Networking+, CEH, GCIH, CCNA Route Switch or CCNA Security, CCNP Route Switch or CCNP Security, CCIE Route Switch or CCIE Security
  • Experience with threat analysis, triage, and mitigation
  • Understanding of NGFW ACLs
  • Experience writing Snort rules
  • Proficiency with Wireshark
  • Experience with Splunk
  • Ability to write clear procedural and technical documentation
  • Knowledge of external authentication and user management
  • Experience troubleshooting network problems at layers 1, 2, and 3

The employment policy of STG, Inc. is to provide equal employment opportunity for all qualified employees and applicants without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status and to ensure affirmative action is taken in fulfillment of this policy.