Senior Cyber Security Specialist

Are you a Senior Cyber Security Specialist who would like to have a positive impact for millions of people? If so, we may have an opportunity for you!

TISTA associates enjoy above Industry Healthcare Benefits, Remote Working Options, Paid Time Off, Training/Certification opportunities, Healthcare Savings Account & Flexible Savings Account, Paid Life Insurance, Short-term & Long-term Disability, 401K Match, Tuition Reimbursement, Employee Assistance Program, Paid Holidays, Military Leave, and much more!

• Administer, configure, and troubleshoot enterprise inline security systems, including Firewalls, malware Protection Systems, and network taps and packet broker switches.
• Perform real-time network and system malware protection, detection, event triage, and log analysis across inline and passive security sensors.
• Develop, tune, and maintain whitelisting and blacklisting security policies, access control rules, and security profiles.
• Apply strong understanding of ports, protocols, services, IP addressing, and CIDR-based rules to enforce enterprise access controls.
• Analyze syslog, event logs, and network telemetry to support dashboards, threat awareness, and compliance requirements.
• Perform troubleshooting of traffic flows, session behavior, and inline inspection issues in coordination with network and application teams.
• Conduct compliance assessments in accordance with CISA, NIST, and OMB directives.
• Prepare documentation, SOPs, configuration guides, diagrams, and architectural notes for supported systems.
• Provide briefings, reports, and issue summaries to senior managers and VA leadership as requested.
• Support lifecycle efforts such as upgrades, refreshes, and platform optimization for inspection systems.
• Collaborate closely with the Security Operations Center, Network Engineering, Data Center teams, and application owners to ensure aligned security controls across the enterprise.
• Contribute to the development of service-level metrics, KPIs, and operational maturity improvements across the security stack.
• Maintain awareness of emerging cybersecurity threats and apply relevant knowledge to incident response and detection tuning.
• Support or perform packet capture review, network session analysis, and traffic inspection validation.

• Hands-on experience with Firewalls, including knowledge of Application-ID, Threat profiles, malware protection, and security policy design.
• Experience with malware Protection Systems malware detection and inline analysis platforms.
• Experience with network visibility equipment (taps, packet brokers, service chain filtering).
• Solid conceptual understanding of networking concepts including routing, switching, VLANs, VRFs, segmentation, and Cisco/Juniper environments.
• Ability to evaluate and enforce rules using ports, protocols, CIDR ranges, and application-level identifiers.
• Experience with IDS/IPS technologies, SIEM platforms, NAC, vulnerability management, and compliance frameworks.
• Ability to perform event correlation, threat detection, and log analysis in large enterprise environments.
• Strong understanding of hybrid on-prem and cloud environments (e.g., Azure and AWS), including how traffic, logging, and security controls integrate across them, as well as familiarity with enterprise telemetry pipelines.
• Excellent documentation skills, including technical writing, SOP creation, architectural documentation, and configuration baselines.
• Strong communication skills with the ability to explain complex technical concepts in clear, plain language to leadership or non-technical stakeholders.
• Ability and willingness to continually expand skills and learn new technologies as organizational needs evolve.
• Ability to work effectively with SOC analysts, network engineers, data center teams, system administrators, and application teams.

Preferred Skills:

• Experience supporting the Department of Veterans Affairs or other federal healthcare environments.
• Familiarity with ServiceNow, CMDB structures, workflow processes, and operational ticketing.
• Awareness of Azure and AWS cloud services and cloud security concepts.
• Understanding of virtualization and containerization concepts and their relationship to network security visibility.
• Familiarity with enterprise WAF technologies.
• Experience with vulnerability and compliance frameworks such as NIST, CISA, OMB, and FedRAMP.
• Experience contributing to incident response workflows, detection tuning, and malware analysis processes.
• Experience supporting SOP lifecycle management and configuration standardization across enterprise systems.
• Proficiency with Microsoft Teams and SharePoint for communication and content management.
• Familiarity with SIEM platforms and security data correlation workflows.
• Strong professional demeanor with the ability to accept direction and contribute constructively to a team environment.
• Strong accountability and reliability, with consistent availability and responsiveness in a remote work setting.
• Self-motivated and results-driven, with a willingness to take initiative, propose improvements, and consistently set high performance standards, even in the absence of direct assignments.

Education:

• Bachelor's Degree in Computer Science, Electronics Engineering, or equivalent PLUS 10 Years of experience.
• Eight (8) years of additional relevant experience may be substituted for education.

Clearance:

• The ability to pass a Tier 4/HIGH Background Investigation.

Location:

• Remote, USA.
• Monday - Friday (8:00 AM - 4:30 PM CST).

Pay Range:

• The pay for this position ranges from $82,730 to $95,500.
• The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience, and location.
• Also, certain positions are eligible for additional forms of compensation, such as bonuses.
• TISTAA associates are eligible to participate in our comprehensive benefits plan! More information can be found here: https://tistatech.com/working-at-tista/