The Health Products and Solutions Operation currently has an opening for a NOC/SOC Analyst to support a large healthcare contract in Rockville, MD. This position is contingent on contract award.
Operations and Administration Tasks:
Perform day-to-day operation of the distributed computing environment, providing and supporting a stable infrastructure and effectively and efficiently performing operational and processing procedures to ensure SLAs conform to requirements and policies, and comply with security.
Provide proactive and scheduled console monitoring of infrastructure and systems in near real time (e.g., hardware, network, batch schedule, interfaces, and table spaces), respond to messages, and take corrective action as required.
Assist with developing and maintaining standard automated scripts to monitor the network.
Provide troubleshooting, repair, and escalation of problems.
Provide preventive measures for proactive monitoring and recommending redundancy or self-healing capabilities to limit outages that impact service delivery.
Identify and report problems affecting the network.
Assist in resolving application problems in accordance with SLAs and escalate as required.
Provide timely data and information required for reporting, and for input and preparation of such reports, per policy.
Network Operations Tasks:
Assist with conducting periodic audits and frequent operational status reports; be responsible for installation, changes, moves, disposition of surplus equipment, cabling and disconnection services; and for problem resolution.
Perform environmental monitoring, which shall be accomplished through in-place systems with alerts/alarms supplemented with new or additional devices to ensure the environment is operating within limits.
Monitor networks and provide status and measurements for the operational environment.
Use automated tools to monitor networks, in near real-time, to respond to problems and perform break/fix services (physical or logical), and proactively identify performance degradation.
Assist with the modeling of networks to provide performance forecasting, and shall measure with automated tools to predict capacity and potential impact to applications and network topology.
Assist with developing and documenting procedures for administration that meet requirements and adhere to defined policies and procedures.
Manage user accounts as needed for access and maintaining network resources (e.g., logon user ID and password maintenance).
Maintain and provide audit information including, but not limited to, access, general logs, and application logs in accordance with HHS security policies.
Assist with ensuring that network administration activities are coordinated through defined change management processes.
Document router configuration files and IP addressing schemas.
Monitor and report the performance of public carriers (and other third parties) to meet defined schedules, project plans, and services to meet business needs/service levels.
Interact with public carriers (and other third parties) to troubleshoot circuit problems as needed.
Assist with ensuring that all new circuits, devices, and software provisioned are included in configuration management documentation.
Security Operations Tasks:
Provide security operations services, providing a full spectrum of integrated services for monitoring network and security activity throughout the customer environment.
Assist with keeping security software and appliances up-to-date with versions and patches within the timeframes directed by the customer
Provide proactive and scheduled console monitoring of infrastructure and systems in read-only in near real time (e.g., hardware, network, batch schedule, interfaces, and table spaces), respond to messages, and take corrective action as required.
Assist with the following proactive and reactive actions during security events:
-Execution of countermeasures derived from IDS monitoring;
-Audit-log analysis tools in support of real-time monitoring of operations;
-Data collection in support of forensic analysis and incident handling procedures;
-Access to all locally and remotely accessible devices in support of HHS mission-critical operations;
-Develop and execute SOP for standard event types;
-Close coordination with customer incident response and emergency response centers;
Implement, use, and sustain a Government-furnished security suite and all Government-furnished tools in the environment for tracking compliance; and for remote support, shall implement and sustain real-time data feeds and/or access as required by the SOC for security monitoring and analysis, and will provide access to archived security data for forensics and incident discovery.
Assist the customer in planning and executing the certification and accreditation of its critical systems in compliance with customer Federal, and NIST guidelines and policies.
Support both the review of an information systems management, physical, and/or technical security controls; and depending on the results of the review, the authorization by management for the system to operate.
Conduct services and support to provide and /or maintain system architecture to segment data and systems of different data classifications, per NIST standards and regulations.
Assist the customer in fully complying with all FISMA reporting requirements and other security audits.
Assist with the creation and development of a comprehensive set of IT security-related operational policies, procedures, and guidelines that will support the customer's mission and ensure compliance with Federal and customer security requirements.
Document and make available IT security operational policies, procedures, and guidelines in written form and on the customer's security Web site.
Operate and maintain the customer dashboard where authorized Government personnel can view security-incident data, vulnerability data, compliance data, security reports and any other related data
Implement Government-furnished security-related monitoring capability and systems to provide for collection, analysis, and archival (in accordance with customer and OS policy) of security data from, but not limited to, system security event logs, syslogs, network devices authentication and changes, firewall and VPN logs, authentication services, DNS logs, DHCP logs, IIS and other Web server logs, URL-filtering logs, and network device data.
Support federal mandates, federal programs and customer security projects.
A Bachelor’s degree in Computer Science or related field and Seven (7) years of progressive ADP and/or network experience. Three (3) years’ experience in implementing and maintaining complex telecommunication systems, including: developing and testing communications software interface programs; developing specifications; using protocol interfaces for multiple environments. If proposed as a Task Leader, twelve (12) months experience supervision of activities similar to those included in the specific task to which assigned. A NOS specific and/or other additional professional certification may also be required if necessary to meet task requirements. Five (5) years of specific job related experience or eight (8) years of general related experience may be substituted for the Bachelor's degree requirement or a Master's degree in an appropriate discipline may be substituted for two (2) years of general experience and one (1) year of specialized experience.
Desired Certifications - CCNA, Security +, GISF, SSCP Desired Skills – Experience with Solarwinds and Splunk monitoring tools, Cisco Network Admission Control (NAC), Security Center 5, Checkpoint CPES, FireEye, Windows 2008/2012, Linux any flavor
Leidos is a global science and technology solutions leader working to solve the world’s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company’s 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company’s diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer.