Title:  Senior Associate, Info Sec Sys Engineer

Job Title:  Senior Associate, Info Sec Systems Engineer (SIEM, Security Tools/Apps)

Job Code:  29069

Job Location:  Melbourne, FL

Job Schedule: 9/80

Job Description:   

L3Harris is seeking a skilled technical professional with experience in SIEM infrastructure and system administration, with a general focus on other Security tools and applications. Join our team of Information Security Systems Engineers (ISSEs) to support Managed Network Infrastructures and Services for federal government customers. The ideal candidate will possess a deep understanding of security protocols, virtualization technologies, and advanced system administration practices.

• This position is ONSITE at L3Harris offices located in Melbourne, Florida
• This role may require weekend, after-hours, or on-call rotations to meet program requirements and/or ongoing program support
• This position requires travel to a disaster recovery site to support if needed in an emergency
• This position requires the ability to obtain FAA Public Trust Suitability

Essential Functions: 

• Operate and manage Security Information and Event Management Systems (SIEMs), including all application components on Windows and Linux servers
• Develop and optimize content for a complex and growing SIEM infrastructure, including use cases for dashboards, channels, reports, rules, filters, trends, queries, and lists
• Optimize data flow using aggregation and filters, and develop custom connectors and parsers (using regex) as needed to meet use case objectives
• Manage the lifecycle of SIEM platforms, including planning and coordinating upgrades, new deployments, and maintaining current operational data flows
• Provide technical expertise and guidance to internal teams on effective SIEM use and best practices, including presentations and live demonstrations
• Demonstrate experience in UNIX, Linux, and Windows, including the ability to rebuild host systems and administer UNIX systems through automation scripting (Perl, Shell, Python)
• Perform routine equipment and preventative maintenance checks
• Apply configuration management disciplines to maintain hardware/software revisions, SIEM content, security patches, hardening, and documentation
• Develop, maintain, and publish up-to-date technical documentation of designs and configurations in accordance with L3Harris Systems Engineering processes
• Work closely with clients to deliver the value of a SIEM to overall business objectives
• Install, configure, and troubleshoot security devices and general IT installations (e.g., Firewalls, IDS)
• Create internal requirements, CONOPs, and interface control documents from customer/product requirements
• Install and configure databases
• Mentor junior security staff in systems engineering design, testing, and implementation of network security infrastructure and services
• Resolve issues within the environment by coordinating with internal and external groups, supporting stakeholder meetings, and maintaining regular customer interactions to ensure effective problem resolution
• Develop, maintain, and publish up-to-date technical documentation of designs and configurations in accordance with L3Harris Systems Engineering processes
• Support other tools and applications as needed, focusing on application administration/management

Qualifications:

• A Bachelor’s degree in Computer Engineering, Computer Science, IT Security, or a related field with at least 2 years of relevant experience; or a Graduate degree in the same fields and a minimum of 0-2 years of relevant experience. In lieu of a degree, a minimum of 6 years of prior relevant experience
• At least 2 years of experience in network security engineering, including the specification, selection, evaluation, testing, deployment, and operation of security devices and applications such as ArcSight, Splunk, LogRhythm, Exabeam, and other similar SIEM technologies
• 1 - 2 years of Security Operations (Analyst, Forensics, Threat Hunting) experience
• Minimum of 1 years’ experience of networking background including knowledge of data flow principles and troubleshooting of complex customer issues
• Minimum of 1 years’ experience in routing protocols, VPNs, VLANs, SPANs, trunk and access ports, TCP/IP, and the OSI model
• Minimum of 1 years’ experience working with engineering processes including SP 800-160 Vol 1 or higher
• 1 year of command line experience in Linux

Preferred Additional Skills:

• Strong project engineering experience in security-related environments
• Understanding and operational experience with network security event and intrusion detection architectures
• Experience developing, configuring, and maintaining Linux and Windows Operating Systems (OS)
• Proficiency in system logs and log analysis
• Familiarity with NIST SP800-53 or NIST SP800-171 control frameworks and FISMA policies
• Ability to assist and lead teammates and work well with multi-discipline teams
• Strong listening, written, and oral communication skills
• Experience serving government customers in a security environment
• Prior experience in state or federal government WAN architecture
• Prior FAA telecommunications and network security experience
• CompTIA Network+, Security+, Linux+ certification
• CCNA or CISSP certification
• Any SIEM or Security vendor certification(s)