Elastic SIEM EngineernnHanover, MD 21076, USA Req #201nnWednesday, December 4, 2024nnASRC Federal Broadleaf Division is hiring for a Cybersecurity Engineer (SIEM) to support the DCSA in Hanover, MD. These positions have been approved for a hybrid work schedule (1 day per week on-site)nnJOB DESCRIPTION:nn• This is a technical, hands-on role responsible for the successful operation of a variety of cybersecurity tools, logging framework, and cybersecurity infrastructure • Design, develop, and maintain custom dashboards using Elastic stack for monitoring and visualization of system metrics, logs, and traces.• Monitor and optimize the performance of Elastic Stack clusters to ensure high availability, reliability, and performance.• Work with data sources and ETL processes to integrate and normalize data into Elasticsearch, ensuring data quality and consistency.• Implement and maintain security best practices for Elastic Stack, including access controls, encryption, and compliance with regulatory standards.• Contributions to infrastructure, data pipeline, analytics dashboards, and other resources will be delivered to threat analysts for consumption • Facilitate data ingestion of logs including Extract, Transform, and Load (ETL) functions to develop dashboards, visualization, and alerting • Create Standard Operation Procedures (SOPs) and perform index administration, maintenance and optimization • Develop daily and weekly PowerPoint presentations to brief management and the team • Ability to analyze security vulnerability reports and develop/implement a plan to Recognizes and seizes opportunities to improve products, services or approaches • Design, document, build, secure, and maintain Elastic Stack solutions deployed in the Cloud or on-premises • Engagement with avenues of influence (Splunk product managers, user groups) to align platform capabilities with business requirements .nnBASIC QUALIFICATIONS:nnEXPERIENCE:nnAt least five (5) years of experience in information technology or security engineering and three (3) years of direct Elastic administration experiencennExperience with developing automated capabilities for securing environments.nnExperience with STIG compliance and vulnerability managementnnKnowledge of JFQ DoDIN DoD 8510.01 RMF IA Controls (IACs) and implementation.nnRequires an extensive knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologiesnnAbility to mitigate critical vulnerabilities.nnADDITIONAL DESIRED SKILLSnnSwimlane – IntegrationnnDevSecOps experiencennCloud certifications and experience (AWS, Azure)nnEDUCATIONnnBachelor's degree in Information Security or related field and/or equivalent combination of experience.nnCERTIFICATION(S)nnDoD 8140/8570 IAT Level II/III certifications requirednnOne or more certifications:nnGIAC Certified Detection Analyst (GCDA)nnCompTIA Cybersecurity Analyst (CySA+)nnElastic Certified EngineernnElastic Certified AnalystnnElastic Certified Observability EngineernnCertified SOC Analyst (EC-CSA)nnCLEARANCE LEVEL:nnMinimum SecretnnAbility to obtain and maintain Top Security/SCI clearancennThis position is offering a pay range of $95,969 - $157,000 depending on experience, seniority, geographic locations, and factors permitted by law.nnWe invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.nnEEO StatementnnASRC Federal and its Subsidiaries are Equal Opportunity /Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.nnOther detailsnnJob FamilyInformation TechnologynnJob Sub-FamilyCyber SecuritynnPay TypeSalarynnMin Hiring Rate$95,969.00nnMax Hiring Rate$157,000.00nnTelecommute %60nnJob Start DateWednesday, December 4, 2024nnHanover, MD 21076, USAnn