Intrusion Protection System (IPS) Signature Manager

Quantico, VA

Please go to our website to apply: https://www.caskgov.com/careers/openings/.

POSITION: IPS Signature Manager

LOCATION: Quantico, VA

STATUS: Fully Funded

CLEARANCE: Active Secret Clearance Required

TRAVEL: Up to 25%

DESCRIPTION:

Cask is seeking an Intrusion Protection System (IPS), Signature Manager, to support the Marine Corps Cyberspace Operations Group (MCCOG). The applicant will be responsible for collecting and analyzing network and computing events presented via numerous sources to identify and document malicious or unauthorized activity on the Enterprise Network. Conduct initial, formal incident reporting and use appropriate skills and techniques in scoping, containing, and eradicating incidents based on the processes outlined in CJCSM 6510.01B, “Cyber Incident Handling Program,” dated 10 July 2012 or later.

As an IPS Signature Manager, you will:

Develop IPS signatures

Analyze application traffic

Manage and tune signatures for the appropriate level of detection

Write scripts, policies, and indicators used to identify malicious activity.

Analyze network and application-layer protocols, file format

Research security vulnerabilities and threats

Perform leading-edge exploitation techniques and threat research

Act as subject matter expert on cyber threats

Work with leadership to continuously evolve, inform and guide network defense strategy.

Required Skills / Preferred Qualifications:

Bachelor's degree or combined experience/education as a substitute for minimum education.

Three (3) years of demonstrated experience as an IPS Signature Manager or similar role.

Direct or equivalent experience in areas of vulnerability research and exploit development.

Knowledge of networking and internet protocols (e.g., TCP/IP, HTTP, SMTP, etc.).

Knowledge of network vulnerabilities and threats

Knowledge of the scripting languages such as Perl or Python

IDS/IPS/Snort signature writing, knowledge, and experience

Strong problem-solving, troubleshooting, and analysis skills

Ability to work independently

Excellent written & verbal communication skills

Information Assurance Technical (IAT) Level II certification

Required Security Clearance: Active Secret

About Cask

Cask is a woman-owned small business (WOSB) founded in 2004 by a group of professionals who saw the need to help clients use and unlock the value of technology in more efficient, cost-effective ways. Cask delivers business and technology advisory and consulting services to help our customers succeed.

Cask is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, among other things, or position as a qualified individual with a disability.

EEO/Employer/Vet/Disabled