Sr. IDS (Corelight) Engineer

Overview

Remote
$140,000 - $180,000
Contract - Independent
Contract - W2
Contract - 1 Year(s)
No Travel Required

Skills

5 yrs IDS
3+ years with Corelight
Zeek
Bro

Job Details

Role and Responsibilities

Looking for a highly skilled IDS Engineer to join our security team. The IDS Engineer will be responsible for designing, implementing, and maintaining the IDS infrastructure to ensure that our organization is protected against cyber-attacks. The successful candidate will have a strong background in network security and experience with intrusion detection systems.

Key Responsibilities:
Monitor and analyze network traffic for suspicious activity using specialized tools and software.
Manage IDS systems, including sensors, management servers, and analysis tools.
Develop and refine IDS rules, including ET Pro signatures, to improve the accuracy of the system's detection capabilities.
Configure and manage Corelight sensors to improve visibility into network traffic and enhance IDS capabilities. This includes planning, deployment & network placement based on network flows.
Assist IDS team in operationalizing the Corelight platform for enhanced network visibility and threat detection. This includes the creation of operational documentation and diagrams.
Develop and refine Corelight Zeek scripts to improve the accuracy and effectiveness of IDS rules.
Respond to security incidents promptly and effectively to mitigate risk.
Stay up to date with industry trends and threats to ensure that our IDS system is prepared to detect new and emerging threats
Collaborate with other security teams, such as the Security Operations Center (SOC) and Incident Response (IR) teams, to ensure that our organization's security posture is strong and effective.
Perform regular maintenance tasks and troubleshoot any issues that arise with the IDS infrastructure.
Implement automation, disaster recovery, and system resilience best practices.
Drive overall Corelight SaaS Cloud architecture, working closely with Engineering, Product, and other technical leaders.
Provide advice and assistance on cloud architecture and API s.
Evaluate new projects and changes in design for security implications, and work with design teams to mitigate and resolve based on value/impact/effort balance.

Qualifications:
Bachelor s degree in computer science, Information Technology, or a related field
5-7+ years of experience in network security or a related field
Experience with intrusion detection systems, such as Snort, Suricata, or Bro
Knowledge of network protocols, such as TCP/IP, DNS, and HTTP
Experience with network analysis tools, such as Wireshark or tcp dump
Knowledge of cybersecurity principles and best practices
Strong analytical and problem-solving skills.
Experience presenting to executive-level stakeholders and other high-profile audiences.
Ability to develop and maintain a presentation library that can be used across multiple projects and initiatives.
Excellent written and verbal communication skills, with the ability to tailor messaging to different audiences.
Experience working in a fast-paced environment with changing priorities.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.