Job Information
Raytheon Technologies IDS / IPS Security Engineer in Morrisville, North Carolina
This job is CONTINGENT upon funding, an open position, customer approval, completion of a favorable background investigation, and the ability to obtain & maintain a USPS sensitive clearance.
An IDS/IPS Security Engineer is needed to support our customer, a large cyber security program. The ideal candidate for this job will be an experienced information security engineer and/or analyst who is goal-oriented and strives to exceed expectations. The candidate should have a working knowledge of CISCO Firepower platforms, Next Generation firewalls, intrusion detection and protection systems.
Job location: Morrisville, NC (near Raleigh)
Job Responsibilities:
Operate, maintain, and deploy IDS and IPS devices.
Maintain intrusion ruleset, optimizing detection, configure NGFW ACLs, general device configuration and maintenance, troubleshoot the devices when needed,
Provide operational requirements and recommendations to the Security Architects for service enhancements and system improvements.
On-call availability for network impacting or network outage situations outside of business hours
Effectively work within a Security team, and support and collaborate with other teams
Conduct Intrusion event analysis and support security operation center (SOC) incident response, threat detection teams.
Develop documentations, e.g. standard operating procedures (SOP), and support audit events
Develop reports on systems status and performance.
Required Skills:
CISCO Firepower Threat Defense IDS/IPS, FMC
Prior job experience maintaining and troubleshooting IDS/IPS devices
Experience with Splunk and other SIEM tools.
Proficiency with packet analysis/Wireshark
Networking – routing and switching, TCP/IP stack, IP subnets, VPN
Scripting – python, perl, javascript.
Experience with threat analysis, triage, and mitigation
Experience with Linux
Experience with packet analysis
Knowledge of databases
Knowledge of networking and network protocols
Certification in one or more of the following: Security+ or CISSP
The position requires U.S. Person status or a Non-U.S. Person be eligible to obtain Authorization.
6+ years of relevant work experience and a Bachelor's degree or higher
Desired Skills:
Networking+, CEH, GCIH, CCNA Route Switch or CCNA Security, CCNP Route Switch or CCNP Security, CCIE Route Switch or CCIE Security
Experience with threat analysis, triage, and mitigation
Tipping Point IDS, ATD, DDI, DDD, SPS, SMS
Understanding of NGFW ACLs
Experience writing Snort rules
Proficiency with Wireshark
Experience with Splunk
Ability to write clear procedural and technical documentation
Knowledge of external authentication and user management
Experience troubleshooting network problems at layers 1, 2, and 3
Required Education:
Bachelor’s Degree with a major in Information Technology, Computer Science/Computer Engineering, Engineering, Science or a related field.
Two years of related work experience may be substituted for each year of degree-level education.
- Relocation is not provided.
171713
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.