Himalayas logo
cFocus Software IncorporatedCI

NetWitness Security Engineer- Packet Capture- HHS STIM

cFocus Software is a leading provider of cybersecurity compliance and enterprise IT services focused on federal government agencies, dedicated to ensuring secure cloud operations.

cFocus Software Incorporated

Employee count: 11-50

United States only

Packet Capture (NetWitness)

Job Overview

cFocus Software is seeking a highly skilled Subject Matter Expert IV (Packet Capture – NetWitness) to support the Security Tools and Infrastructure Modernization (STIM) contract with the U.S. Department of Health and Human Services (HHS). This work can be performed in Atlanta, GA, DC or Remote.

The SME IV will provide technical expertise in packet capture, forensic analysis, and network traffic monitoring, leveraging RSA NetWitness and other advanced tools to enhance cybersecurity operations. Public Trust will be required.

Responsibilities

  • Serve as the enterprise expert on RSA NetWitness and other packet capture/forensics platforms.
  • Conduct packet capture and traffic analysis for threat detection, forensic investigation, and incident response.
  • Support integration of packet capture systems with SIEM and SOC workflows.
  • Develop and tune packet capture policies, filters, and monitoring rules to optimize visibility.
  • Analyze network traffic to identify Indicators of Compromise (IOCs), malware activity, and anomalous behaviors.
  • Provide forensic reporting and technical recommendations to stakeholders and leadership.
  • Mentor and train junior analysts in packet capture and forensic investigation techniques.
  • Ensure compliance with NIST SP 800-61, NIST SP 800-53 Rev. 5, and DISA STIGs.

Required Experience

  • 10+ years of IT security engineering and analysis experience.
  • Extensive hands-on expertise with RSA NetWitness or comparable packet capture tools.
  • Experience in network forensics, intrusion detection, and advanced traffic analysis.
  • Proven ability to support incident response teams and forensic investigations.
  • Experience leading packet capture engineering initiatives in federal environments.

Education & Certifications

  • Bachelor’s degree in Information Security, Computer Science, or related field (Master’s preferred).
  • GIAC Certified Intrusion Analyst (GCIA) and/or GIAC Network Forensic Analyst (GNFA) certification required.
  • Additional certifications such as CISSP, CEH, or CompTIA CySA+ are highly desirable.

Clearance Requirement

Must be eligible to obtain and maintain a Public Trust (High-Risk, Level 5) clearance.

Location

  • Washington, D.C. Metro Area (hybrid/onsite support as required).

About the job

Apply before

Posted on

Job type

Full Time

Experience level

Mid-level
Senior

Location requirements

United States

Hiring timezones

United States +/- 0 hours

Job categories

HHS STIMSecurity Engineer

Skills

RSA NetWitnessPacket CapturesForensicsNetwork AnalysisSIEMIndicators Of CompromiseIncident ResponseNIST 800 53DISA STIGs)GIACCISSPCEH

About cFocus Software Incorporated

Learn more about cFocus Software Incorporated and their company culture.

View company profile

cFocus Software is a technologically advanced service provider dedicated to delivering FISMA, RMF, and FedRAMP compliance solutions, along with extensive cloud and enterprise IT services aimed at federal government agencies. Established in 2006, cFocus Software has amassed over 15 years of experience in this niche, showcasing a robust portfolio that includes our exclusive ATO as a Service™ offering. This groundbreaking solution automates the often-complex compliance processes required for federal contracts. By streamlining FISMA, RMF, and FedRAMP compliance, we enable agencies to focus their resources on their primary missions while maintaining strict adherence to security standards.

Our commitment to excellence is further demonstrated through our partnerships with key industry leaders such as Microsoft, AWS, and ServiceNow, positioning us as a Microsoft Gold Certified Partner and AWS Technology Partner among others. This allows us not only to leverage cutting-edge technologies but also to develop comprehensive multi-cloud strategies that align with modern government initiatives. At cFocus Software, we pride ourselves on our responsiveness to client needs and our dedication to superb customer service, ensuring that every federal agency we work with can achieve their operational goals efficiently and securely.

Claim this profilecFocus Software Incorporated logoCI

cFocus Software Incorporated

Company size

11-50 employees

Founded in

2006

Chief executive officer

Jasson Walker, Jr.

Markets

Cloud ComputingGovernment IT ServicesCybersecurityCompliance SolutionsEnterprise ITFederal Government ServicesMulti Cloud StrategiesSoftware as a Service (SaaS)IT ConsultingAutomation Tools

Employees live in

United States
View company profile

Similar remote jobs

Here are other jobs you might want to apply for.

View all remote jobs

30 remote jobs at cFocus Software Incorporated

Explore the variety of open remote roles at cFocus Software Incorporated, offering flexible work options across multiple disciplines and skill levels.

View all jobs at cFocus Software Incorporated
Top remote companies

Remote companies like cFocus Software Incorporated

Find your next opportunity by exploring profiles of companies that are similar to cFocus Software Incorporated. Compare culture, benefits, and job openings on Himalayas.

View all companies

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Save
Apply now
cFocus Software Incorporated hiring NetWitness Security Engineer- Packet Capture- HHS STIM • Remote (Work from Home) | Himalayas