ManTech
Cyber Engineer
ManTech, Mc Lean, Virginia, us, 22107
Description & Requirements
ManTech is seeking a highly technical Cyber Engineer to join our Cyber Security Operations Center (CSOC) in McLean, VA. The ideal candidate will possess a strong background in cyber development, scripting, data engineering, and automation, with a keen understanding of endpoint detection and response (EDR), digital forensics, security orchestration, automation, and response (SOAR), and security information and event management (SIEM) tools like Splunk or Elk. This role is critical in enhancing our cyber defense capabilities through innovative solutions and automation for our Intelligence Community customer.
Responsibilities include, but are not limited to:
Development and Scripting: Develop and maintain scripts and automation tools using Python or similar programming languages. Create and optimize Jupyter Notebooks for data analysis and reporting.
Data Engineering: Design, build, and maintain data pipelines and ETL processes using tools such as Apache NiFi and Diode. Integrate data from various sources to support security operations and analytics.
Automation and Orchestration: Implement and manage automation workflows using SOAR platforms. Develop automated incident response playbooks to streamline CSOC processes.
Endpoint Detection and Response (EDR): Deploy, configure, and manage EDR solutions to detect and respond to security threats. Conduct thorough investigations and analysis of EDR alerts. Digital Forensics: Perform digital forensic investigations to identify and analyze security incidents. Collect, preserve, and analyze digital evidence in accordance with legal and organizational requirements.
Security Information and Event Management (SIEM): Configure and maintain SIEM tools like Splunk or Elk for real-time monitoring and threat detection. Develop and refine correlation rules, dashboards, and reports to enhance threat visibility.
Collaboration and Mentorship: Work closely with other CSOC team members to share insights and coordinate response efforts. Provide technical expertise and mentorship to junior staff. Help plan and implement cyber exercises and drills to sharpen the skills of team members.
Continuous Improvement: Stay up to date on the latest cybersecurity trends, threats, and technologies. Identify opportunities for process improvement and implement best practices.
Minimum Qualifications:
10+ years of experience in a similar role within a cybersecurity environment
Experience with Python or similar programming languages
Experience with data engineering tools and techniques, including ETL processes and Apache NiFi or similar
Experience with automation and SOAR platforms
Experience using EDR solutions or digital forensics methodologies
Experience using SIEM tools like Splunk, Elk or similar
High School Diploma
Preferred Qualifications:
Bachelor’s degree in Computer Science, Information Technology, or a related field.
Relevant certifications (e.g., CISSP, GIAC, CEH)
Strong analytical, problem-solving, and communication skills
Clearance Requirements: Current/Active TS/SCI with polygraph
Physical Requirements: Sedentary position
SKN.7.23
For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone.
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.
If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access https://mantech.avature.net/en_US/careers (https://sandboxmantech1.avature.net/en_US/careers) as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.
ManTech is seeking a highly technical Cyber Engineer to join our Cyber Security Operations Center (CSOC) in McLean, VA. The ideal candidate will possess a strong background in cyber development, scripting, data engineering, and automation, with a keen understanding of endpoint detection and response (EDR), digital forensics, security orchestration, automation, and response (SOAR), and security information and event management (SIEM) tools like Splunk or Elk. This role is critical in enhancing our cyber defense capabilities through innovative solutions and automation for our Intelligence Community customer.
Responsibilities include, but are not limited to:
Development and Scripting: Develop and maintain scripts and automation tools using Python or similar programming languages. Create and optimize Jupyter Notebooks for data analysis and reporting.
Data Engineering: Design, build, and maintain data pipelines and ETL processes using tools such as Apache NiFi and Diode. Integrate data from various sources to support security operations and analytics.
Automation and Orchestration: Implement and manage automation workflows using SOAR platforms. Develop automated incident response playbooks to streamline CSOC processes.
Endpoint Detection and Response (EDR): Deploy, configure, and manage EDR solutions to detect and respond to security threats. Conduct thorough investigations and analysis of EDR alerts. Digital Forensics: Perform digital forensic investigations to identify and analyze security incidents. Collect, preserve, and analyze digital evidence in accordance with legal and organizational requirements.
Security Information and Event Management (SIEM): Configure and maintain SIEM tools like Splunk or Elk for real-time monitoring and threat detection. Develop and refine correlation rules, dashboards, and reports to enhance threat visibility.
Collaboration and Mentorship: Work closely with other CSOC team members to share insights and coordinate response efforts. Provide technical expertise and mentorship to junior staff. Help plan and implement cyber exercises and drills to sharpen the skills of team members.
Continuous Improvement: Stay up to date on the latest cybersecurity trends, threats, and technologies. Identify opportunities for process improvement and implement best practices.
Minimum Qualifications:
10+ years of experience in a similar role within a cybersecurity environment
Experience with Python or similar programming languages
Experience with data engineering tools and techniques, including ETL processes and Apache NiFi or similar
Experience with automation and SOAR platforms
Experience using EDR solutions or digital forensics methodologies
Experience using SIEM tools like Splunk, Elk or similar
High School Diploma
Preferred Qualifications:
Bachelor’s degree in Computer Science, Information Technology, or a related field.
Relevant certifications (e.g., CISSP, GIAC, CEH)
Strong analytical, problem-solving, and communication skills
Clearance Requirements: Current/Active TS/SCI with polygraph
Physical Requirements: Sedentary position
SKN.7.23
For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone.
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.
If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access https://mantech.avature.net/en_US/careers (https://sandboxmantech1.avature.net/en_US/careers) as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.