Demo

Cyber Security Tools Specialist

CSS (Converged Security Solutions)
Hanover, MD Full Time
POSTED ON 3/31/2025
AVAILABLE BEFORE 5/31/2025
Job Description

Evolver Federal is seeking a Cyber Security Tools Specialist to join our team responsible for operating and maintaining security configurations and applications in support of cyber threat intelligence and SOC operations, ensuring 24x7 availability for our federal customer. This is a fully remote role. MUST HAVE active SECRET level clearance or higher, with the potential requirement for a Top Secret with CI Polygraph.

Responsibilities Include:

  • Develop and deploy new security intelligence tools, as well as support device and/or content research.
  • Develop and maintain detection rules in security tools.
  • Maintain, patch, operate and support the incident response tools.
  • Architect, deploy, test, maintain, patch, and operate any new tools supporting intelligence and security operations.
  • Provide system administration using configuration management tools to manage systems.
  • Manage and tune signature sets to maximize true positives and minimize false positives.
  • Document all tool tuning activities.
  • Responsible for contributing to daily operational update meetings and unscheduled situational update briefings for client leaders as needed.
  • Ability to analyze reports and provide technical recommendations for remediation security gaps.
  • Analyze reports to understand threat campaign techniques and lateral movements and extract indicators of compromise (IOCs).
  • Reference applicable departmental and operating administration policies in work products.
  • Recommend sound remediation and recovery strategies and suggest defensive policy enhancements and information technology procedures.
  • Provide forensic and network analysis to support risk-based decisions.
  • Able to work in an Agile Environment.
  • Perform threat detection and trend analysis. Understand and convey of the lifecycle of the network threats, attack vectors, and network vulnerability exploitation.

Basic Qualifications:

  • Bachelor's Degree or 4 additional years of applicable experience.
  • 3 years of experience in systems administration / engineering.
  • 3 years experience with Cyber Security tools such as: Trellix, Cisco Stealthwatch, VMRay, Teramind, Gurucul, AWS CloudWatch, Swimlane, Tenable, Malware Information Sharing Platform (MISP), Splunk, Sumo Logic.
  • 3 years of experience with scripting languages such as JavaScript, Python, Perl, Groovy, Rudy, Bash, PowerShell, etc.
  • 3 years of experience writing Splunk & Sumo Logic queries to create complex dashboards.
  • 3 years or experience implementing the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) framework.
  • 3 years of development/Scripting experience with tools such as Python, Bash, PowerShell, Rest API, Splunk.
  • 3 years of experience with information security devices, including firewalls and intrusion detection and prevention systems, and applications, including security information management tools, such as Splunk and Sumo Logic.
  • 3 years of experience with signatures, tactics, techniques, and procedures (TTP) associated with cyber threats and actors.
  • Must be a US Citizen.
  • Must be able to obtain a federal agency-specific clearance prior to starting.
  • Must possess an active SECRET level clearance or higher, with the potential requirement for a Top Secret with CI Polygraph as the project progresses.
  • Must have and maintain at least two (2) active certifications, such as Network CE, Security CE, CASP, GSEC, GSLC, CISSP, CEH, CISM, or CISA

Preferred Qualifications

  • 4 years of experience in systems administration / engineering.
  • 4 years experience with Cyber Security tools such as Trellix, Cisco Stealthwatch, VMRay, Teramind, Gurucul, AWS CloudWatch, Swimlane, Tenable, Malware Information Sharing Platform (MISP), Splunk, Sumo Logic.
  • 4 years of experience with scripting languages such as JavaScript, Python, Perl, Groovy, Rudy, Bash, PowerShell, etc.
  • 4 years of experience writing Splunk and Sumo Logic queries to create complex dashboards.
  • 4 years or experience implementing the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) framework.
  • 4 years of development/Scripting experience with tools such as Python, Bash, PowerShell, Rest API, Splunk and Sumo Logic.
  • 4 years of experience with information security devices, including firewalls and intrusion detection and prevention systems, and applications, including security information management tools, such as Splunk or Sumo Logic.
  • 4 years of experience with signatures, tactics, techniques, and procedures (TTP) associated with cyber threats and actors.

If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Cyber Security Tools Specialist?

Sign up to receive alerts about other jobs on the Cyber Security Tools Specialist career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$125,027 - $157,872
Income Estimation: 
$149,432 - $188,965
Income Estimation: 
$125,027 - $157,872
Income Estimation: 
$149,432 - $188,965
Income Estimation: 
$149,432 - $188,965
Income Estimation: 
$179,455 - $227,077
Income Estimation: 
$179,455 - $227,077
Income Estimation: 
$214,167 - $272,269
Income Estimation: 
$99,793 - $130,112
Income Estimation: 
$125,027 - $157,872
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at CSS (Converged Security Solutions)

CSS (Converged Security Solutions)
Hired Organization Address Lynnfield, MA Full Time
CSS in Lynnfield, MA is currently seeking a Customer Service Representative that will handle customer emails, telephone ...
CSS (Converged Security Solutions)
Hired Organization Address Pleasanton, CA Full Time
Classification : Non-Exempt Grade : E2 Reports To : Project Manager or Team Lead Working Hours : 8 to 12 hour shifts in ...
CSS (Converged Security Solutions)
Hired Organization Address Dallas, TX Full Time
Classification : Non-Exempt Is this the next step in your career Find out if you are the right candidate by reading thro...
CSS (Converged Security Solutions)
Hired Organization Address Houston, MN Full Time
We have the urgent requirement noted below, candidate must have Taiwan visa or EU / UK passport Position Planned Travel ...

Not the job you're looking for? Here are some other Cyber Security Tools Specialist jobs in the Hanover, MD area that may be a better fit.

Cyber Security Specialist

Boeing Intelligence & Analytics, Annapolis, MD

AI Assistant is available now!

Feel free to start your new journey!