IDS / IPS Security Engineer 105571BR

  • Raytheon
  • Morrisville, North Carolina, United States
  • 01/29/2018

Job Description

Raytheon Blackbird Technologies is looking for an individual who will join the security team of a major nationwide organization, with thousands of sites, to continually improve its complex multi-protocol nationwide network.A Security Engineer in IDS/IPS, and preferably SourceFire or TippingPoint technology, is needed to support the customer team. The ideal candidate for this job will be an experienced information security engineer and/or analyst who is goal-oriented and strives to exceed expectations.

This position can be a Salary Grade G08 or G09 based on the candidate’s qualifications as they relate to the skills, experience and responsibility requirements for the position.

Responsibilities will include:

- Develops a secure IDS/IPS architecture for a nationwide organization, ensuring a defense-in-depth strategy for the network
- Maps network landscape, identify security problems (including misconfigurations) and provide solutions
- Leads cost-effective short- and long-term efforts to dramatically improve visibility of network threats, vulnerabilities, and risk
- Engages with other internal and external forces to get and share information to improve processes and security posture
- Contributes to securing and monitoring traffic at egress/ingress points across the network
- Develops requirements and implements proof of concept testing to ensure technologies meet business needs and security requirements
- Supports other team members’ efforts requiring deep understanding of IDS/IPS, routing, firewalls, network architecture, etc.

Required Skills:
- The position requires U.S. Person status or a Non-U.S. Person be eligible to obtain Authorization.
- 4-6 years of relevant work experience
- Sourcefire and/or Snort experience

- Knowledge of IP networking and network security
- Enterprise IDS/IPS experience particularly with SourceFire or TippingPoint
- Creates IDS/IPS policies for deployment
- Validates, tests, and manages IDS/IPS configurations and policies
- Performs IDS/IPS log and data analysis
- Escalates events and unusual activity of note for further incident response investigation (sending appropriate alert/information to the SOC)
- Leads IDS/IPS troubleshooting efforts, including log analysis and network captures/analysis
- Extensive technical knowledge of systems engineering, integration, networking, and network architectures
- Knowledge of networking protocols, IT services and security implications – TCP/IP, SSH, SMB, SMTP, SNMP, S/FTP, HTTP/S, DNS, Active Directory, Load-balancers, etc
- Understanding of system troubleshooting, integration, deployment, and administration
- Understanding and/or experience with networking technologies (routing, switching, VLANs, subnets, firewalls)
- Working knowledge of IT security products and technologies (IDS/IPS, Malware Protection, URL filtering, Pen tests, Firewall & ACL configuration)
- Ensures best practices and security standards are met
- Ability to program in scripting or more advanced languages such as PERL, Python, Linux Shell Script
- Network security documentation experience
- Ability to solve and document solutions

Desired Skills:
- Specific experience with Sourcefire or TippingPoint Sensors, ATA, SMS
- In-depth knowledge of and experience with Sourcefire or Tipping Point products/services, e.g., IPS, ATA, SMS, DDI, TMCM
- Advanced scripting experience in one of the following: PowerShell, bash/ksh/sh, Cisco, JunOS sh/csh, Perl, Tcl, or Lua
- Some programming skills in any of:C, C++, C#, Python, PHP, HTML, JavaScript, .NET, Ruby, Perl, Java, etc
- Some familiarity with common network vulnerability/penetration testing tools including, but not limited to, Kali Linux tools, Nessus, and Nmap
- Understanding of Windows and/or Linux/Unix-based operating systems
- Some Splunk query-development expertise
- Additional experience with security tools: Symantec Endpoint Protection, Akamai Web Application Firewall, Gigamon, Websense Web, Email, and DLP, RedSeal, Splunk Enterprise
- Excellent writing skills
- Strong understanding of IT security principles, technologies, best practices, and NIST guidance and experience with standards-compliance (NIST, PCI, etc.)
- Experience evaluating systems, network devices and enterprise networks for IA/security vulnerabilities and performing IT security vulnerability analysis
- Working knowledge of IT Security Incident response, SOC operations
- Advanced Wireshark experience

Required Education:
Bachelor’s Degree with a major in Information Technology, Computer Science/Computer Engineering, Engineering, Science or a related field. Two years of related work experience may be substituted for each year of degree-level education.

Desired Certifications:
DODI 8570.1-M Compliance at IAT Level II;
Security+, CISSP, Certified Ethical Hacker (C|EH), SFCP, GCIA, ISSEP, ISSMP, GCIH, GCFA, CSLC, CISM, CCNA, CCNP, SourceFire Certified Professional


Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Cyber, Security, Network Communications Research, All, Warfighter Support Services Raytheon Intelligence, Information and Services delivers innovative technology to make the world a safer place. Our expertise in cyber, analytics and automation allow us to reach beyond what others think is possible to underpin national security and give our global customers unique solutions to solve the most pressing modern challenges -- from the cyber domain to automated operations, and from intelligent transportation solutions to creating clear insight from large volumes of data. IIS operates at nearly 550 sites in 80 countries, and is headquartered in Dulles, Virginia. The business area generated approximately $6 billion in 2016 revenues. As a global business, our leaders must have the ability to understand, embrace and operate in a multicultural world -- in the marketplace and the workplace. We strive to hire people who reflect our communities and embrace diversity and inclusion to advance our culture, develop our employees, and grow our business. JBRaytheon ICJBMeta // SKCYB85