Vacancy caducado!
Job Description YOUR LIFE'S MISSION: POSSIBLE You have goals, dreams, hobbies and things you're passionate about.
What's Important to You Is Important to UsWe're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them-friends, family and passions. And we're looking for team members who are passionate about our mission-making a difference in military members' and their families' lives. Together, we can make it happen.Don't take our word for it.• Military Times 2021 Best for Vets Employers• WayUp Top 100 Internship Programs• Forbes® 2021 The Best Employers for New Grads• Forbes® America's Best Employers• Newsweek Top 100 Most Loved Workplaces• 2021 People Companies that Care• Fortune Best Workplaces for Women• Fortune 100 Best Companies to Work For®• Fortune Best Workplaces for Millennials• Computerworld® Best Places to Work in ITBasic Purpose Navy Federal Credit Union is seeking a Senior Cyber Security IPS Engineer to implement the latest technology and strategies and ensure the cybersecurity posture of the systems is effective across the organization and scalable. Additionally, this position will provide cybersecurity engineering support to research, evaluate, design, implement, and maintain system and product solutions, applying knowledge of engineering principles. To provide technical direction and engineering support for projects and infrastructure. Develop and maintain expert functional knowledge of evolving IT engineering industry technologies/competition, concepts and trends. Provide oversight and support in design, configuration, management and implementation of network environments, including Firewall, ISE, LAN, SD-WAN, etc.Responsibilities• Lead, conduct, and coordinate daily IPS activities as of part of the team that designs, protects and manages IPS security services for NFCU's global security infrastructure. Research relevant threat actors, attack vectors, and behaviors pertinent to our financial sector. Ensuring threat mitigations from the IPS perspective are properly configured and tuned.• Serve as the enterprise IPS SME and point of escalation from multiple ISD teams.• Provide oversight and guidance to other IPS engineers in the absence of the ESS IPS Supervisor.• Operate, maintain, update, and deploy intrusion ruleset, optimize detections, configure NGFW ACLs, and IPS devices. Troubleshoot the devices as required.• Day-to-day checklist to include: SRU/GeoDB/VDU updates, firmware, logs review, policy and exceptions review and tuning, troubleshooting IPS devices, schedule and prep for upgrades during change windows after business hours, management report scheduling, IPS alerts and analysis, and escalation follow up.• Conduct Intrusion event analysis and support the Cyber Security Operation Center (CSOC) Incident Response Management and Focused Operation teams as needed when cases are escalated. • Identifies unauthorized access to targeted systems,and deploy countermeasures to mitigate network threats.• Record investigation and incident response details to support coordinated operations and historical analysis.• Develop and maintain IPS dashboards leveraging API integration as needed.• Perform advanced event analysis, including baseline establishment and trend analysis• Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity.• On-call availability for network impacting or network outage situations outside of business hours. In addition, participate in On-Call rotation (24x7) one week per month, which would include non-IPS support managed by the Enterprise Security team.• Develop and maintain associated IPS documentation, playbooks, and Standard Operating Procedures (SOP) for the team to ensure our methodology is up-to-date and evolves over time.• Provide operational requirements and recommendations to the Security Architects for service enhancements and system improvements.• Provides mentoring to less experienced team members.• Must be self-motivated and self-educating, yet willing and able to work collaboratively.• Perform additional tasks outside of IPS as required to support the enterprise security team.• Actively manage vendor relationship for critical information i.e., alerts, notices, patches, and upgrades. • Able to demonstrate strong written, oral and presentation skills with the ability to discuss highly technical concepts to all audiences, ranging from non-technical people to executive level technical decision-makers.• Ensures that all identified events are promptly validated and thoroughly investigated• Able to listen and collaborate with audiences ranging from IT administrators to executive level stakeholders to understand their requirements and position our tools to fulfill those requirements.• Participate in proof of concepts and other technical evaluations of technologies, designs and solutions and provide recommendations.• Stay abreast of emerging technologies and threats proactively assess and evaluate the adoption thereof into the organization.• Collaborating with programs and engineering teams regarding cybersecurity solution and alternatives to those solutions.Qualifications• Bachelor's Degree with a major in Information Technology, Computer Science/Computer Engineering, Engineering, Science or a related field.• Minimum of 10 years of experience in network technology, firewall, and/or information security in a large enterprise environment.• 5+ years of extensive experience with Cisco Firepower Firewall (FTD).• 5+ years experience with Cisco routers and switches.• 5+ years of total experience in Cyber Security engineering, on premise and cloud architectures, Snort policy tuning, Proxy management, cloud governance and security controls.• Experienced information IPS security engineer and/or security analyst who is goal-oriented and strives to exceed expectations.• Excellent communication and organizational skills, and the ability to stay focused on completing tasks and meeting goals within a busy workspace.• Willingness to flex working hours to support critical high priority operational incidents.• Strong working knowledge of Cisco Firepower platforms, Next Generation firewalls, intrusion detection and protection systems, CiscoFirepower Threat Defense IDS/IPS, FMC.• Strong understanding of attack vector activities such as: network reconnaissance probing/ scanning, DDoS, malicious code activity, remote execution exploits, etc.• Cisco CDO (Cisco Defense Orchestrator) experience.• Possess extensive knowledge on network, endpoint, threat intelligence, as well as the functioning of specific applications or underlying IT infrastructure, and have experience with SIEM technologies, EPP, EDR, and AV solutions.• Cisco based routing and switching experience.• Strong experience maintaining and troubleshooting IDS/IPS devices.• Strong Proficiency with packet analysis/Wireshark.• Strong awareness of networking and internet protocols, including TCP/IP, subnets, DNS, SMTP, VPN, HTTP and distributed networks.• Scripting experience would be a plus (ie: Python, bash, etc).• Experience with threat analysis, triage, and mitigation.• Experience with security logging and monitoring SIEM products such as Splunk, etc.• Excellent spoken, written communication, and presentation skills are essential.• CISSP, CCNP Security Certification a plus.Key Words:• Intrusion Prevention System (IPS)• Intrusion Detection System (IDS)• Security Controls• Asset Management• Log Analytics• Cisco Firewall• Cisco Firepower• Cisco ASA• Cisco Threat Defense• Threat DefenseHours: Monday - Friday, 8:00 am - 4:30 pm Location: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602 | Remote Navy Federal is now hybrid! Our standard enterprise requirement for a hybrid schedule is to report onsite 4-16 days each month. The number of days reporting onsite will ultimately be determined by the employee's leadership and business unit needs. You will learn more throughout the hiring and onboarding process.Salary: Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remaincompetitive. You are paid within the salary range, based on your experience, location and market position.The salary range for this position is: $109,900 to $187,900 Annual Salary #LI-Remote Equal Employment Opportunity Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/DisabilityCOVID-19 Safety ProtocolsAll employees are expected to follow our COVID-19 safety protocols.DisclaimerNavy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.Bank Secrecy ActRemains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.Employee ReferralsThis position is eligible for the TalentQuest employee referral program. If an employee referred you for this job, please apply using the system-generated link that was sent to you.Vacancy caducado!