Mahalo for your interest in this role! Please see the full position description below and click Start Your Application when ready. For more information about DAWSON, please visit dawsonohana.com.
Summary: This position supports the Secretary of the Air Force Director of Personnel Digital Transformation Organization and SAF/A1X
Roles And Responsibilities
- Assist the Senior SIEM Engineer/Architect in Design, configure, operate and maintain a SIEM architecture inside of the client’s selected Security & Event Management platform, which is currently Splunk
- Help implement and support a SIEM/SOAR solution to enhance the security posture of the client’s portfolio by recognizing and addressing potential security threats/vulnerabilities
- Recommend and build architecture, data models, data sources and integration points, utilizing out-of-the-box (OOTB) capabilities and connectors as much as possible (custom configurations, when necessary)
- Implement alert mechanisms within the SIEM to promptly notify stakeholders of any platform outages (e.g. related to current identity and role-based acccess management solutions such as Okta, SailPoint and Login.gov
- Respond to incident tickets, addressing SIEM/SOAR-related concerns (such as, but not limited to: user login issues, connection troubleshooting requests, and security incidents from the AF/A1 SOC)
- Generate a high-level after-action report detailing the root cause, assessment of impact to the client’s environment, actions taken and recommendations
- Develop and maintain response plans, documenting related configuration and change management processes into client’s Standard Operating Procedures (SOPs)
- Ensure SIEM processes implement required DoD Financial Improvement and Audit Readiness (FIAR) guidance, FISCAM and FISMA compliance requirements for client’s financial and financial feeder systems
- Ability to deliver tailored training sessions on SIEM/SOAR fundamentals, focusing on threat detection, incident response automation, playbook creation, and integration with existing client security tools to enhance cybersecurity operations
- Responsible to Program Management for other duties as assigned
Required Skills, Education, And Experience
- Bachelor of Science(BS) in Cyber Security, Computer Science, Engineering, Information Assurance, or a related discipline or related fieled and at least 5 years of related experience.
- Good communication skills, written and oral
- A minimum of 1-year experience with one or more of the following: ArcSight, Splunk, Grafana, StealthWatch, TripWire, Zenoss.Strong technical skills and analytic ability
- Demonstrated ability to lead adhoc teams and align disparate organizational priorities to achieve client organization’s goals.
- Ability to comply with DODD 8140 Cyberspace Workforce Management requirements (e.g. among them, formerly DoDI 8570 IAT or IAM Level 3 certifications (CISM, CISSP, etc.) preferred or a at a minimum IAT Level 2 (Security+) required)
- Experienced in creating/managing dashboards, alerts, log onboarding/integration,
- Strong understanding of the Splunk Common Information Model
- Must posses Department of Defense (DoD) Secret level clearance OR higher
- This Position is Contingent upon the Award
DAWSON is an Equal Opportunity/Affirmative Action/VEVRAA federal contractor. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status, or any other characteristic protected by law.
DAWSON offers a best-in-class benefits program including medical, dental, and vision insurance; a 401(k) program with employer match; paid vacation and sick leave; employer-paid basic life and AD&D insurance; an Employee Assistance Program; and a flexible work environment. Additionally, employees can choose from several voluntary benefits including critical illness coverage; accident insurance; identity theft coverage; pet insurance, and more.
DAWSON gives preference to internal candidates. If no internal candidate meets our qualifications, external candidates will be given consideration.
