USA, ILLINOIS Hines Full-Time
Security Clearance: Secret
• Monitoring various security tools (e.g., Splunk, Palo Alto Networks, Source Fire, Cisco ASA) to identify potential incidents, network intrusions, and malware events, etc. to ensure confidentiality, integrity, and availability of VA architecture and information systems are protected • Reviewing and analyzing log files to report any unusual or suspect activities • Utilize incident response use-case workflows to follow established and repeatable processes for triaging and escalating • Generating trouble tickets and performing initial validation and triage to determine whether incidents are security events using open source intelligence (OSINT) • Following established incident response procedures to ensure proper escalation, analysis and resolution of security incidents • Reporting incidents to US CERT and providing detailed information for use in after action reports • Analyzing and correlating incident event data to develop preliminary root cause and corresponding remediation strategy • Providing technical support for new detection capabilities, recommendations to improve upon existing tools/capabilities to protect the VA network, and assessments for High Value Assets • Supporting on-site during the following shift times- Tues – Sat or Sun – Thur, 2:00pm CST to 10:30pm CST
See Qualifications / Requires Bachelor's Degree in related field or equivalent experience and two to four years of related experience.
ManTech International Corporation is comprised of approximately 7,300 talented employees who use advanced technology to help government and industry meet some of their greatest challenges around the world. We adhere to the simple, no-nonsense values on which ManTech was founded more than four decades ago, aligning squarely with the mission objectives of our customers. As our customer base continues to expand and diversify, we continue to diversify our workforce and solutions. Nearly half our employees have a military background, and approximately 70 percent hold a government security clearance. As a leading provider of innovative technology services and solutions for the nation's defense, security, health, space, and intelligence communities; we hold nearly 1,100 active contracts with more than 50 different government agencies.