Cyber Security Architect/Engineer (Arkime Engineer) - JB

The most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security.

Be a part of the Telos culture and see what sets us apart! Telos offers an excellent compensation package with benefits that include generous paid time off, medical, dental, vision, tuition reimbursement, and 401k. Our employees enjoy more than just a great work environment!

This position will be based at Reston, VA

Responsibilities:

* Architect, deploy, and configure Arkime clusters, capture nodes, viewer nodes, and storage subsystems.

* Design packet capture strategies aligned to network topology, mission requirements, and Zero Trust monitoring needs.

* Develop and automate deployment workflows using scripts, orchestration tools, and configuration management.

* Integrate Arkime with SIEM, SOAR, EDR, and threat intel platforms to enrich detection and investigation workflows.

* Conduct regular tuning of parsers, views, tags, and sessions to support detection engineering and threat hunting.

* Perform version upgrades, patching, configuration changes, data lifecycle management, and log retention optimization.

* Align Arkime data capture with Zero Trust Architecture (ZTA) telemetry requirements.

* Support development of visibility baselines, identity-aware policies, and segmentation enforcement strategies.

* Work with network engineering, cloud engineering, and security operations to ensure end-to-end telemetry coverage.

* Develop dashboards, queries, workflows, and documentation for SOC, detection engineers, and incident responders.

* Provide training, playbooks, and technical expertise to internal engineering and operations teams.

Qualifications:

* 5+ years of experience in cybersecurity, network security engineering, or security operations.

* Strong background in packet analysis, PCAP management, DPI technologies, and network protocols (TCP/IP, DNS, TLS, HTTP, etc.).

* Familiarity with Suricata, Zeek, or other packet/flow analysis platforms.

* Experience engineering within a Zero Trust Architecture (ZTA), including segmentation, continuous verification, and identity-centric access.

* Proficiency with Linux systems administration, containers, and distributed systems.

* Experience leveraging SIEM/SOAR platforms and integrating packet telemetry with detection workflows.

* Familiarity with automation tools (Ansible, Terraform, scripts) and infrastructure-as-code concepts.

* Active TS/SCI clearance; willingness to take a polygraph exam

* Associate's degree and 5+ years of experience supporting IT projects and activities, Bachelor's degree and 3+ years of experience supporting IT projects and activities, or Master's degree and 1+ year of experience supporting IT projects and activities. Years of experience may be accepted in lieu of degree.

* DoD 8570.01-M Information Assurance Technician (IAT) Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification

* Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CHFI, CFR, Cloud+, or CND certification within 30 days of start date

* Hands-on experience implementing and maintaining Arkime/Moloch in production environments.

* Experience with cloud networking and traffic inspection in AWS/Azure/GCP.

* Experience with Elastic Stack or similar search/index pipelines.

* Background supporting regulated or high-security environments (FedRAMP, DoD, IC, PCI, etc.).

* Security certifications (e.g., CISSP, GCIH, GCIA, GNFA, GCED).

* Strong analytical and problem-solving skills.

* Ability to translate technical findings into clear operational guidance.

* Comfortable leading discussions with engineers, analysts, architects, and leadership.

The successful candidate must meet eligibility requirements to access sensitive information, which requires US citizenship.

Telos maintains a drug-free workplace and will conduct drug testing on all applicants who have accepted an offer of employment.

Telos Corporation participates in the E-Verify program. Therefore, any employment with Telos will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. Telos offers excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future.

Telos Corporation and its subsidiaries are committed to equal opportunity for all, without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. Telos Corporation will make reasonable accommodations for known physical or mental limitations of otherwise qualified employees and applicants with disabilities unless the accommodation would impose an undue hardship on the operation of our business. If you are interested in applying for an employment opportunity and feel you need a reasonable accommodation pursuant to the ADA, please contact us at 1-800-283-1911. If you require relay service assistance, please click on the following link to review information on your state's relay service: https://www.fcc.gov/accessibility.

Telos Corporation is an EEO/AA employer.