Description

　　Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, various cloud environments, security devices, servers and workstations.  The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates, and reports any suspected and confirmed security violations.

　　Primary Responsibilities:

　　Author, test, and maintain automation scripts/workflows within SOAR platform

　　• Design, implement, and maintain efficient and reusable Python code

　　• Review, debug, and resolve technical issues throughout all stages of SDLC

　　• Integrate SOAR platform with other security tools and APIs to execute automated workflows

　　• Coordinate with System Administrators, Engineers, and ISSOs to provision service accounts and/or grant required permissions

　　• Assist with process development and process improvement for Security Operations to include creation/modification of SOPs, Playbooks, and Work instructions

　　• Measure effectiveness of process improvement and automation efforts via metrics and KPIs

　　Basic Qualifications:

　　Bachelor's Degree and 4-8 years of experience. Additional experience may be considered in lieu of a degree.

　　• Have expert proficiency with Python

　　• Working knowledge of SOAP/REST APIs, JSON, HTML/CSS, Javascript, XML

　　• Experience with SOAR platforms such as Swimlane, Phantom, Demisto, etc

　　• Experience as a SOC Analyst and/or Incident Responder

　　• Authored SOC SOPs, playbooks, work instructions and/or other process documents

　　• Familiarity with Splunk Search Processing Language (SPL) and/or Elastic Domain Specific Language (DSL)

　　• General networking knowledge to include operation of routers, firewalls, DNS, DHCP, subnetting, VPN and Web Proxies

　　Preferred Qualifications:

　　Should have 2 years of experience serving as a SOC Analyst or Incident ResponderClearance:

　　All Department of Homeland Security CBP SOC employees are required to favorably pass a 5-year (BI) Background InvestigationPay Range:

　　Pay Range $81,250.00 - $146,875.00

　　The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

　　Original Posting Date:

　　01/08/2024

　　While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

　　REQNUMBER: R-00126124

　　All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.