COMPANY DESCRIPTION
Must be a U.S. citizen; NS2 does not offer Visa sponsorships for this role.
All internals must have manager’s approval to transfer.
Job Description: As the SIEM Engineering Manager at NS2, you will be entrusted with the critical role of managing the team that maintains and expands our SIEM infrastructure. Your day-to-day responsibilities will include planning, designing, and overseeing SIEM deployment, data ingestion, and monitoring projects across multiple air-gapped deployments; supervision of SIEM Engineers focused on reducing NS2's Risk through effective monitoring, alerting and reporting; interfacing with other engineering organizations; and reporting to management. This position will require being onsite in the Herndon, VA office at least three times a week.
The SIEM Engineering Manager at NS2 is Responsible for:
- regular status reporting of SIEM engineering activities
- coordination with other engineering and management teams
- education of NS2 SIEM users
- maintenance of an effective SIEM engineering team
Minimum Qualifications:
- Bachelor's degree in Computer Science, Information Security, or related field or equivalent professional experience
- CISSP certification
- PMP and/or CSM certification
- Effective communication and collaboration skills
- Problem-solving skills and the ability to think strategically about security
- Continuous learning mindset to stay updated with the rapidly evolving cyber threat landscape
- Minimum 3 years of hands-on experience in SIEM Administration and Architecture
- The below ideal core competencies and experience should align candidates for success in the NS2 Environments:
- Windows and Linux operating system administration
- Hardware, software, and network-level troubleshooting
- Automation via infrastructure as Code (IaC), e.g. Terraform, Ansible, etc.
- Programming/scripting experience e.g.: Python, PowerShell, Bash, Golang, C, JS, SQL, etc.
- Log management and parsing strategies
- CI/CD pipeline experience e.g.: Jenkins, Concourse, Github Actions, etc.
- Cloud Platforms, e.g. AWS, Azure, GCP
- Familiarity with security compliance frameworks and regulations such as NIST 800-171 or 800-53
- Must be a US citizen and able to obtain and maintain a clearance.
Preferred Qualifications
- Splunk Architect certification
- Splunk Administrator certification
- Red Hat Enterprise Linux certifications, such as RHCSE or RHCSA
- Cloud provider (AWS, Azure, GCP) certifications
- Infrastructure automation experience (terraform, ansible, concourse, etc.)
- Prior DoD or FedRAMP experience
We win with inclusion
Washington DC