Cybersecurity Data Orchestration and Automation Engineer
Published | May 6, 2021 |
Location | Fairfax, VA |
Category | Default |
Job Type | Full-time |
Description
ECS is seeking a Cybersecurity Data Orchestration and Automation Engineer to work Remote.
Job Description:
The Cybersecurity Data and Orchestration Engineer is driven to solve complex business and cybersecurity problems by integrating cybersecurity solutions to provide enterprise capabilities that are greater than the sum of their parts. The Engineer will be responsible for creating and maintaining integrations between differing cybersecurity platforms and data sources that drive holistic and automated cybersecurity capabilities. This includes aggregating data for advanced analysis through AI and ML as well as automated workflows and responses. The Engineer's automation and integration solutions help transform formerly stove-piped capabilities into unified, seamless, and automated workflows that increase efficiency and reduce knowledge gaps though the creation of a common data picture. This seamless capability will drive increased security and efficiency for ECS's customers.
A base knowledge of cybersecurity is required to understand the components that comprise an effective cybersecurity program and how they fit together. The data engineer should be expert in scripting, web APIs, data bases, and log parsing that is part of creating an integrated security platform. The data engineer should be well-versed in enterprise security products such as antivirus, Endpoint Detection and Response (EDR) tools, NACs, Vulnerability Management, and SIEMs.
As part of building integrations, the Engineer will have to have the skills to create and manage the infrastructure that enables data to flow and synchronize. Linux and Bash knowledge are a requirement for running infrastructure. Familiarity with Docker containers is also desired. Experience with Security, Orchestration, Automation, and Response (SOAR) tools is a plus.
While technical expertise is required, the ability to work within an organization to accomplish goals is an important part of this role. The Engineer will be expected to interface with a wide variety of teams and maintain relationships that enable successful integration of the disparate parts of an Enterprise class cyber security solution. The Engineer will work with Data Scientists and Cybersecurity Analysts to ensure that clear cybersecurity problems are being addressed and that the solution addresses the problem.
Required Skills:
- Must be a US Citizen.
- 2+ years of relevant industry work experience in cybersecurity or data science.
- Design and develop data ingestion frameworks, real-time processing solutions, and data processing/transformation frameworks, leveraging open-source tools.
- Elasticsearch SIEM experience.
- Logstash pipeline experience.
- Kibana visualization experience.
- Proficient in Python.
- Knowledgeable in at least one of the following scripting languages: Bash, PowerShell, JavaScript.
- Expert at Web API integrations.
- Experience using version control systems such as Git.
- Demonstrated expertise in integrating disparate systems together.
Desired Skills:
- Top Secret/SCI clearance eligible.
- Docker administration.
- AWS/Cloud Expertise
- Kubernetes administration.
- Airflow experience.
- Forescout/C2C experience.
- Antivirus experience.
- Webfilter/IDS/IPS experience.
- Vulnerability Management experience (Nessus, Tripwire, etc.).
- Secure Configuration experience (SCCM or similar).
- Ability to engage multiple stakeholders for data and operational access.
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3000+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.