SIEM/SOAR Sentinel Engineer

Overview

Hybrid
Depends on Experience
Full Time

Skills

Agile
Azure
Bash
Computer Science
Cyber Security
CyberArk
DHCP
DNS
DevOps
DevSecOps
Google Cloud
Google Cloud Platform
Kanban
LDAP
Linux
MS SQL
MongoDB
MySQL
NFS
Oracle
PKI
PowerBI
Powershell
Project management
Python
SMTP
SNMP
SQL
SSL
Scrum
TCP / IP
TLS
UNIX
VACCINATION
Windows
cloud security
collaborate
demands
design patterns
firewall
firewalls
keyboard
multi - line telephone
network intrusion
networking concepts
problem - solving
security information and event management
security strategy
telephone system
writing
SIEM
SOAR
MS
Sentinel

Job Details

Bering Support Professional Services (BSPS) a subsidiary of Bering Straits Native Corporation is currently seeking a qualified SIEM/SOAR MS Sentinel Engineer for a position in Washington DC. This position is remote however, you will be expected to come into the office occasionally. In course of regular job duties, the selected candidate will gain exposure to many different enterprise-grade security technologies, which perform critical functions such as vulnerability scanning, malware detection, network intrusion prevention, firewall blocking, enterprise-wide incident response, and security information and event management (SIEM). Some examples of the 20+ cutting-edge security technologies that the selected candidate will work with are: SentinelOne, Palo Alto firewalls, Microsoft Security Suite, and CyberArk.

ESSENTIAL DUTIES & RESPONSIBILITIES


The Essential Duties and Responsibilities are intended to present a descriptive list of the range of duties performed for this position and are not intended to reflect all duties performed within the job. Other duties may be assigned. Cyber Security Engineer will be responsible for ensuring proper implementations of Cloud Security best practices and design patterns. They will work extensively with the multiple business units for log ingestion, data enrichment, and automation via the SIEM/SOAR platform. They will also support the Security Operations Center (SOC) for advanced SIEM queries and analytic alerts. QUALIFICATIONS - EXPERIENCE, EDUCATION AND CERTIFICATION
To perform this job successfully, an individual must be able to satisfactorily perform each essential duty. The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Required (Minimum Necessary) Qualifications (applies to both this section and KSAO’s) • Bachelor's Degree Computer Science or Information Technology or Cybersecurity Engineering or relevant work experience
• 2+ years' experience as a Security Engineer or SOC Analyst
• 2+ years of SIEM/SOAR Engineering Experience
• Any of the following professional certification are desired, but not required:
o CompTIA Network+
o CompTIA Security+
o Azure certs (AZ-500, AZ-700, AZ-305)
o Any DOD IAT Level 1 Certification
• Proficiency of SIEM technologies and operations
• Experience using a SIEM Platform such as
o Microsoft Sentinel
o RSA Netwitness
o Splunk
• Excellent analytical and problem-solving skills
o Ability to work independently to solve complex problems with minimal oversight
• Excellent communications skills
o Ability to communicate effectively to senior management and federal client staff
o Business writing skills
o Ability to collaborate effectively with peer Knowledge, Skills, Abilities, and Other Characteristics • Experience with SOAR platforms
• Familiarity with programming and scripting languages (Python, PowerShell, Bash).
• Strong experience with cloud security, cloud provider ecosystems (Amazon AWS/Microsoft Azure/Google Cloud Platform) & migrating Enterprise from traditional data center Infrastructure, Application and Data designs to hybrid or fully-cloud enabled practices.
• Familiarity with various log ingestion methodologies into a SIEM environment.
• Knowledge of cloud networking architecture, cloud operations, security, automation, and orchestration.
• Experience\knowledge of Microsoft security tools (Sentinel, Microsoft Defender for Cloud Apps, Microsoft Defender for Endpoint, etc.…)
• Experience with Log Analytics, KQL queries, Government logging requirements(M-21-31)
• Possess clear understanding of security protocols and standards and have experience with security architecture.
• Experience with Linux/UNIX Windows Servers, MS SQL, Oracle, MySQL, MongoDB.
• Experience in networking concepts and services, such as, VPNs, IPsec, PKI and TCP/IP.
• Experience in various reporting tools such as PowerBI and Power Automate

Preferred
• N/A


NECESSARY PHYSICAL REQUIREMENTS


The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Employee must maintain a constant state of mental alertness at all times. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.


Essential and marginal functions may require maintaining physical condition necessary for bending, stooping, sitting, walking or standing for prolonged periods of time; most of time is spent sitting in a comfortable position with frequent opportunity to move about.

DOT COVERED/SAFETY-SENSITIVE ROLE REQUIREMENTS


• This position is not subject to federal requirements regarding Department of Transportation “safety-sensitive” functions.


WORK ENVIRONMENT


Work Environment characteristics described here are representative of those that must be borne by an employee to successfully perform the essential functions of this job.


Job is performed in an office setting with exposure to computer screens and requires extensive use of a computer, keyboard, mouse, and multi-line telephone system. The work described herein is primarily a modern office setting. Occasional travel may be required. SUPERVISORY RESPONSIBILITIES


• No supervisory responsibilities. ADDITIONAL QUALIFYING FACTORS


As a condition of employment, you will be required to pass a pre-employment drug screening and have acceptable background check results. If applicable to the contract, you must also obtain the appropriate clearance levels required and be able to obtain access to military installations.
Shareholder Preference. BSNC gives hiring, promotion, training and retention preference to BSNC shareholders, shareholder descendants and shareholder spouses who meet the minimum qualifications for the job. Bering Straits Native Corporation is an equal opportunity employer. All applicants will receive consideration for employment, without regard to race, color, religion, creed, national origin, gender, or gender-identity, age, marital status, sexual orientation, veteran status, disability, pregnancy or parental status, or any other basis prohibited by law. We participate in the E-Verify Employment Verification Program. We are a drug free workplace.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Bering Straits Native Corporation