|Title||ACD Network/Sensor Engineer|
|Location||San Antonio, TX|
Sensor Engineering efforts shall be performed on-site in the MAE flight during core hours (M-F 0730-1630). The contractor shall perform ACD sensor engineering services supporting all 33 NWS mission networks that are under the operational direction of the 33 NWS MA directorate currently in the MAE Flight (ACD Sensor Engineering Section). The contractor shall install, configure, troubleshoot, maintain and manage the AF IDS/IPS sensor fleet. Functions include performance on IOP gateway and FAK sensors, Cloud Shield, McAfee IDS/IPS deployments, FPC/NTSA, ArcSight, and sensor fleet specialized applications (such as Fidelis), emerging IDS/IPS technologies and associated network infrastructure [ASA/VPN concentrator], equipment/configurations, HBSS and other Gateway, boundary and Third Party sensors. The contractor shall support the development and documentation of processes and checklists for maintenance associated with those systems. The contractor shall be trained, and certified by 33 NWS internal QAE personnel, IAW 33 NWS QA processes. Additionally, the contractor shall maintain its respective certifications IAW QA processes for maintenance functions.
The contractor shall provide advanced level support in specific sensor operating systems as evidenced by applicable commercial certifications. The contractor shall perform related MA activities and coordinate MA actions with Operation Support Technical section and external units (i.e., 26 NOS, INOSCs, and 690 ISS). Support shall include advanced sensor development, integration, and engineering of the 33 NWS’s central management systems, 33 NWS operational networks (Patriot and Defender), and the training network and AOL network infrastructures.
The contractor shall maintain and manage software upgrades and patches and perform system changes for the IDS/IPS sensors ensuring proper configuration to DISA (STIG and AF (AFI and TO) standards to minimize the potential of unauthorized intrusions. The contractor shall deploy to any DoD network gateway, boundary, or third party location with the necessary equipment to install IDS/IPS sensor(s), servers, and network infrastructure hardware. The contractor shall conduct the daily private key management.
The contractor shall deploy correlation rule sets base boundary (aka enclave control node, ECN) to correctly identify and process system alerts in support of 33 NWS operations.
The contractor shall monitor the effectiveness of the IDS/IPS sensor’s ability to collect and report suspicious network activity on AF networks. The contractor shall perform advanced diagnostic testing and troubleshooting either remotely from the 33 NWS or through local System Administration having direct access to the IDS/IPS sensor. The contractor shall ensure that response to inoperable systems is immediate.
The contractor shall conduct troubleshooting and fault isolation to sustain network connectivity between the correlators and sensor equipment, maintain COTS and GOTS sensor applications, harden ACL to restrict unauthorized access to network, create and manage sensor user accounts, and assign the user specific rights to access network resources.
The contractor shall perform advanced actions necessary to ensure IDS/IPS sensors are collecting and reporting network activity to the COR or Government shift lead, diagnose and resolve end user problems, and ensure the end users adhere to the proper security policies and procedures. Sensor Engineers are expected to be proficient with common Operating Systems that include UNIX, Microsoft Server, VMware, and Cisco.
Clearance Required: TS/SCI