IDS/IPS Cyber Security Engineer, Mid
DAn Solutions
Overview REQUIRES AN EXISTING/ACTIVE TS/SCI WITH CI POLYGRAPH - NO REMOTE WORK, MUST WORK ON SITE . Job Description We are seeking an experienced Network Intrusion Detection Engineer to join our cybersecurity team. The ideal candidate must possess strong Linux engineering expertise with experience managing YAML configuration files, and how these configurations integrate and influence the Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS). Highly qualified candidates will have hands-on engineering and O&M experience with Suricata and/or other network-based IDS capabilities such as Snort, VectraAI, Corelight, etc. You will play a critical role in deploying, tuning, and maintaining the IDS within a complex enterprise IT environment, primarily running on Red Hat Enterprise Linux. Responsibilities Designing, deploying, and maintaining IDS/IPS systems across a large enterprise with multiple networks. Developing, reviewing, and optimizing YAML configuration files to ensure optimal detection capabilities and minimal false positives. Understanding and managing the interaction between YAML configuration and its runtime engine, including rule loading, protocol decoding, and logging. Tuning IDS/IPS for optimal performance with NICs, including configuring Direct Memory Access (DMA), RSS queues, interrupt coalescing, and leveraging any NIC-specific acceleration features. Collaborating with security teams to integrate IDS/IPS with SIEM and other security monitoring platforms. Troubleshooting installation and operational issues specific to IDS/IPS on Red Hat Enterprise Linux, addressing compatibility, kernel module requirements, SE-Linux policies, and performance tuning. Identifying and mitigating common pitfalls encountered when deploying IDS/IPS in large-scale enterprise environments, including package dependencies, system resource constraints, and NIC driver/configuration issues. Provide detailed documentation and runbooks for Suricata configuration, tuning NICs, and deployment processes. Staying current with Platform IDS/IPS Software releases, NIC driver updates, and community best practices for network interface tuning and IDS/IPS performance enhancement. Basic Qualifications Proven experience working with Snort, Suricata, Corelight or other network IDS/IPS systems, including hands-on management of its YAML configuration files. Strong knowledge of configuration structure, syntax, and how it controls detection rules, logging, and output modules. Extensive experience administering Red Hat Enterprise Linux (RHEL) systems, including package management (yum/dnf), kernel module management, SE-Linux configuration, and system optimization via Unix CLI and other remote shell access vectors (puTTY, SSH, etc.). Hands-on experience tuning Suricata for high-performance packet capture with Napatech NICs or similar advanced network interface cards. Familiarity with NIC-specific features such as DMA, Receive Side Scaling (RSS), interrupt moderation, and offload capabilities, and how to configure them for Suricata. Experience troubleshooting Suricata's interaction with NIC drivers and kernel modules in an enterprise environment. TS/SCI clearance with the ability to obtain a counter-intelligence polygraph. Associate's degree and 5+ years of experience supporting IT projects and activities or Bachelor's degree and 3+ years of experience supporting IT projects and activities or Master's degree and 1+ years of experience supporting IT projects and activities. Years of experience may be accepted in lieu of degree. DoD 8570 IAT Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification. Ability to obtain a DoD 8570 Cyber Security Service Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification, within 60 days of start date. Additional Qualifications Experience with scripting languages (Bash, Python, YAML/Ansible, etc.) to automate Suricata configuration and deployment tasks. Proficient understanding of network protocols, intrusion detection methodologies, and security event correlation. Experience integrating Suricata with Splunk, or other SIEM solutions. Knowledge of containerized deployments of Suricata (Docker/Kubernetes) in enterprise environments. Detection and Response (NDR) solutions, including Trellix/FireEye, Corelight, Endace, Vectra AI, Dark Trace, Cisco Security Network Analytics, Open XDR, Fortinet FortiNDR, Trend Vision, etc. Ability to be a self-starter, work without considerable direction, and work with a team. Possession of excellent verbal and written communication skills, including client briefings and coordinating efforts #J-18808-Ljbffr DAn Solutions
- ...cybersecurity company is seeking a Network Intrusion Detection Engineer to enhance security measures within their infrastructure. The ideal candidate... ...Suricata and Snort. Responsibilities include designing IDS/IPS systems, optimizing configurations, and collaborating with...Suggested
- Required Security Clearance: Top Secret/SCI Location: Bethesda, MD Work Type: On‑Site Shift... ...S. Citizenship Required: Yes Requisition ID: 2673 Position Summary Support multiple... ...middleware/web technologies, databases, TCP/IP networking, and CI/CD platforms....SuggestedHourly payContract workTemporary workImmediate startFlexible hoursShift work
$215k
Labor Category: Cyber Security Engineer Position Title: Cyber Security Engineer Position Level: Level 1 - Subject Matter Expert Salary: Up... ...Firewalls (Security Groups), VPNs, Data Loss Prevention (DPS), IDS/IPS, Web-Proxy, Security tools, and Security Audits. Candidates...SuggestedTemporary workFlexible hours$66.9k - $82.1k
...Cybersecurity Incident Response Engineer, Mid supports the detection,... ...the speed and consistency of security operations. The engineer performs... ...and incidents using SIEM, IDS/IPS, EDR, and related tools to... ...platforms integrated with SOC and cyber defense functions....SuggestedContract workWork experience placementWork at office$102.6k - $117.5k
Join to apply for the Cyber Defense Forensics Analysts - Mid role at ECS . 1 day ago Be among the first 25 applicants... ...Federal is a leading information security and information technology company... ...activities. Solid knowledge of TCP/IP networking, and network services such...SuggestedLong term contractPermanent employmentFull timeWork at officeImmediate start- ...clients to fulfill staffing needs in IT, Security, Business Support, and Operations.... ...and networks from potential cyber-attacks. The Cyber Security Engineer must display an excellent understanding... ...VPNs, Data Loss Prevention (DPS), IDS/IPS, Web-Proxy, Security tools, and...For subcontractorLocal area
$112k - $179k
Cyber Network Security Analyst job at Peraton. Arlington, VA. Program Overview About... ...data, signature-based IDS alert/event data, full packet... ...architectures (OSI-model, TCP/IP, major application protocols... ...knowledge of intrusion detection engines, capabilities, and signature...InternshipLocal area- ...Summary: Business Operational Concepts (BOC) is seeking a Cyber Security Firewall Engineer to work with our federal client. The primary duties include... ...of networking protocols and concepts like TCP/IP, routing, switching, VLANs, and common protocols. Strong analytical...Full time
$97.97k - $120.75k
...Other Job Family: Cyber and IT Risk Management... ...Gateway, Splunk Enterprise Security Certifications:... ...cyber as a Cybersecurity Engineer Senior at GDIT. Here,... ...intrusion prevention systems (IPS) using CISCO FirePower... ...for a Federal ID Card. Work visa sponsorship...Full timeTemporary workPart timeWork experience placementImmediate startRemote workWork from homeWorldwideFlexible hours$145k - $165k
...EngineerRole Summary The Senior Cybersecurity Engineer is responsible for protecting the... ...hospital’s technology environment remains secure, compliant, and resilient against emerging... ...remediation actions. Utilize SIEM, EDR, and IDS/IPS platforms such as CrowdStrike and...Full timeLocal area$116.9k - $243.1k
A leading technology company is seeking a Security Engineering Lead in Arlington, VA. The role involves managing security tools and applications across various environments, requiring strong experience in network security and systems administration. Ideal candidates will...- ...and make a difference in National Security! This role protects customer information systems and networks from cyber-attacks. The Cyber Security Engineer - Technical Lead will be a hands-on... ...network security technologies, including IDS/IPS, HBSS/Trellix, and related tools....
- A leading cybersecurity firm in Washington, DC, is seeking a mid-level Cyber Defense Forensics Analyst to enhance their security team for a long-term contract. The role involves threat detection, forensics analysis, and supporting governmental cybersecurity initiatives....Long term contract
$75k - $95k
...to apply for the Junior Security Engineer role at Tyto Athene,... ...Symantec DLP, FireEye, IDS Experience with at least... ...understanding and knowledge of TCP/IP networking Experience... .../SOC Optimization) - Mid-Atlantic region (Remote... ...- Remote 2027452 Cyber Security Engineer $215,...16 hoursFull timeWork experience placementRemote work- Job Description Everforth ECS Federal is seeking a Mid-Level Endpoint Security Engineer to support a mission-focused federal cybersecurity program in Washington DC. This position is contingent upon contract award. Join Everforth ECS Federal to grow your endpoint security...Contract workLocal area
$120.64k - $197.6k
...Overview This position plays a hands‑on role securing systems that support critical Defense and Intelligence missions. This position is focused on applying risk management frameworks, engineering security controls, and maintaining system authorizations for cloud and on...RelocationRelocation package$210k - $220k
The Principal Cyber Capability Development Engineer provides advanced engineering expertise supporting the research, design, development, testing, and operational deployment of cyberspace capabilities for United States Cyber Command (USCYBERCOM). This position develops...- Title: Cyber Security Engineer. Position Type: 2+ years Contract. Location: Washington, DC. Responsibilities Conduct comprehensive risk assessment of enterprise assets to include networks, systems, and core business applications. Work collaboratively with team members...Contract work
- ...Compliance training, closed-circuit television/security cameras and access controls, and... .... Job Summary: As a Forescout Cyber Security Engineer at Cinteot, you will play a critical role... ...Experience architecting and designing IP networks, with the ability to develop and...Permanent employment
$116k - $170k
Amentum is seeking Mid level Cyber Intelligence Analysts to support our U.S. Department of Energy contract. Positions will be based in the... ...threat. Ability to brief technical and executive leadership. Security+, CySA+, GCIH, GCIA, or equivalent certification. Security...Contract work$62k - $141k
Cyber Intelligence Analyst, Mid With all the information available today, it takes a skilled intelligence analyst to know how to find and interpret... ...Clearance Applicants selected will be subject to a security investigation and may need to meet eligibility requirements...Contract workWork at officeLocal areaRemote workShift work- .... Department of War (DoW) Secret security clearance. Serco is seeking an experienced Mid-Naval Architect with specialized... ...be part of our dynamic Maritime Engineering Operation (MEO) as a Senior Naval... ...illness insurance, group legal, ID theft protection Birth, adoption...Contract workLocal areaFlexible hours
$107.9k - $195.05k
...Description The Test and Training Enabling Architecture (TENA) program at Leidos is looking to add a Cyber Security Systems Engineer. Our mission is to develop tools for the United States Department of Defense test and training communities, to increase the speed of the...Work at office- ...America is under sustained cyber attack. Our adversaries... ...our networks, steal our IP, and degrade the digital... ...the free world remains secure. Founded in 2024,... ...are seeking IT Security Engineer to join our growing technology... ..., or similar SIEM and IDS/IPS platforms. ~...Full timeWork at officeFlexible hours
- A prominent IT consultancy is seeking a Cyber Security Engineer for a contract position in Washington, DC. The candidate will conduct comprehensive risk assessments of enterprise assets, including networks, systems, and core business applications. Collaboration with team...Contract work
$135k - $145k
...a Washington, DC base company to locate a Senior Cybersecurity Engineer for a full time role. The Senior Cybersecurity Engineer operates... ...ability to balance day‑to‑day operational needs with long‑term security strategy. Responsibilities: Security Operations & Incident...Full time$156k - $195k
OnTrac is hiring an IT & Cyber Security Consultant to design, build, and maintain security architectures. This remote role involves improving detection capabilities and supporting risk management through technical controls. Candidates should possess a strong IT background...Remote job$157k - $171k
Senior Cyber Security Engineer (Job 1356) Bethesda, Maryland About Us DLH delivers improved health and national security readiness solutions for federal programs through science research and development, systems engineering and integration, and digital transformation....Temporary workWork at officeFlexible hours$90k - $130k
...military leaders with unprecedented access to secure enterprise data. As a Penetration Tester... ...network, web application, and social engineering assessments. Use a combination of... ...Incident Handler (GCIH) GIAC Industrial Cyber Security Professional (GICSP) GIAC Security...Full timeWork at office- Gravity Engineering Services Pvt Ltd. is seeking a Cyber Security Engineer for a project based in Washington, D.C. The role involves providing cybersecurity support, implementing modern security solutions, and analyzing information security requirements. The position requires...Remote job
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to IDS/IPS Cyber Security Engineer, Mid. Be the first to apply!
- cyber security engineer Washington DC
- cyber threat intelligence analyst Washington DC
- cyber Washington DC
- cyber threat hunter Washington DC
- cyber security lead Washington DC
- cybersecurity policy and compliance analyst Washington DC
- work from home cyber security Washington DC
- cybersecurity technical writer Washington DC
- cybersecurity specialist Washington DC
- cyber security incident responder Washington DC


