Senior Security Information and Event Management (SIEM) Engineer

Overview

CNHV delivers strategic services & solutions to our clients. Our diverse business lines, workforce, and projects have extended across all 50 states, 4 U.S. Territories, & 19 foreign countries, bringing added value to our customers to deliver services on-time and on-budget. CNHV is dedicated to building mutually beneficial partnerships and relationships with our customers. CNHV will mobilize the right people, skills and technologies to help our clients achieve their goals by doing the right thing, the right way, the first time.

Responsibilities

• Design, implementation, and support of ArcSight or Splunk core components, including ESM, Loggers, Smart Connectors, Indexers, Forwarders, Search Heads, and Cluster Managers
• Configuration and administration of ArcSight or Splunk ingestion and forwarding for new and existing applications and data
• Troubleshooting ArcSight or Splunk dataflow issues between the various event flow components
• Configuring and deploying data collection for a variety of operating systems and networking platforms
• Creating Dashboards and Analytics within SIEM tools
• Working with monitoring systems supporting auditing, incident response, and system health
• Other duties as assigned

Qualifications

• Bachelor’s Degree – Information or Computer Systems a plus
• At least eight (8) years of related cybersecurity experience
• At least four (4) years of experience with either ArcSight or Splunk
• Experience in design, implementation, and support of ArcSight or Splunk core components, including ESM, Loggers, Smart Connectors, Indexers, Forwarders, Search Heads, and Cluster Managers
• Experience with configuration and administration of ArcSight or Splunk ingestion and forwarding for new and existing applications and data
• Experience with troubleshooting ArcSight or Splunk dataflow issues between the various event flow components
• Experience configuring and deploying data collection for a variety of operating systems and networking platforms
• Experience creating Dashboards and Analytics within SIEM tools
• Experience working with monitoring systems supporting auditing, incident response, and system health
• Experience handling multiple projects at once
• Experience taking over management of projects at different levels of completion
• Understanding of networking components and devices, ports, protocols, and basic networking troubleshooting steps
• The ability to troubleshoot issues with log feeds, search time, and field extractions
• The ability to troubleshoot problems related to data solutions
• Relevant certifications such as DoD Directive 8570 compliance or equivalent industry-recognized credentials
• Must be a U.S. Citizen and possess a TS/SCI security clearance
• Must be able to pass a background check. May require additional background checks as required by projects and/or clients at any time during employment

Preferred Qualifications

• Networking Certifications a plus
• Certified Information Security Manager (CISM) a plus
• Project Management Professional preferred
• Good working skills in Remedy trouble ticketing and asset management system
• Previous working experience at DoS is desirable, but not required

Other Duties: Please note this job description is not designed to cover or contain a comprehensive list of activities, duties or responsibilities that are required of the employee for this job.  Duties, responsibilities, and activities may change at any time with or without notice.

Affirmative Action/EEO Statement: Cayuse embraces diversity and equal opportunity in a serious way. We celebrate diversity and are committed to creating and building a team that represents a variety of backgrounds, perspectives, and skills. Cayuse, and all of its subsidiaries, are proud to be an equal opportunity workplace and are an affirmative action employer.

Pay Range

Salary : $170,000 - $203,000