Job Description

TCI has an immediate need for an IDS/IPS Security Engineer in Morrisville, NC. This is not a Corp2Corp opportunity. This is a long-term contract opportunity with the possibility of hire. In addition to competitive, market-rate based pay, TCI provides all our Consultants with Comprehensive Medical/Dental Insurance, 401k, Life Insurance and Long-Term Disability benefits.
Please note that this position requires a DoD Public Trust Security Clearance.
SEEKING LOCAL CANDIDATES ONLY; NO REMOTE WORK
SUMMARY
The Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) Security Engineer will be knowledgeable in CISCO Firepower platforms, Next Generation firewalls, intrusion detection and protection systems.
RESPONSIBILITIES
  • Operate, maintain, and deploy IDS and IPS devices.
  • Maintain intrusion ruleset, optimizing detection, configure NGFW ACLs, general device configuration and maintenance, and troubleshoot the devices when needed.
  • Provide operational requirements and recommendations to the Security Architects for service enhancements and system improvements.
  • On-call availability for network impacting or network outage situations outside of business hours
  • Effectively work within a Security team, and support and collaborate with other teams.
  • Conduct Intrusion event analysis and support the security operation center (SOC) incident response, threat detection teams.
  • Develop documentations, e.g. standard operating procedures (SOP), and support audit events.
  • Develop reports on systems status and performance.
REQUIREMENTS
  • Extensive experience (5+ years) in information security operations and/or related IT operational functions.
  • Must possess a minimum of a Bachelor’s Degree in Computer Science, Information Technology or Information Security (Master’s Degree is preferred).
  • Experience with CISCO Firepower Threat Defense IDS/IPS, FMC.
  • Prior job experience maintaining and troubleshooting IDS/IPS devices.
  • Experience with Splunk and other SIEM tools.
  • Proficiency with packet analysis/Wireshark.
  • Networking - routing and switching, TCP/IP stack, IP subnets, VPN.
  • Scripting - python, perl, JavaScript.
  • Experience with threat analysis, triage, and mitigation.
  • Experience with Linux.
  • Experience with packet analysis.
  • Knowledge of databases.
  • Knowledge of networking and network protocols.
  • Security+ OR CISSP certification is required.
  • Must be able to obtain a Public Trust Security Clearance.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online