ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Security Engineer (Suricata)

Guidepointsecurity

Washington, DC (Federal) Remote permanent

Posted: December 1, 2025

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Required Skills

Suricata YAML Napatech NICs Packet capture tools IDS/IPS SIEM Integrations Troubleshooting Documentation collection Performance optimization

Job Description

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.

An active Top Secret / SCI clearance with the willingness to take and pass a polygraph exam is required for consideration for hire for this role. Work is to be performed 100% onsite with our Government Customer

We are seeking an experienced Suricata Engineer to join our cybersecurity team. The ideal candidate will possess deep technical expertise in Suricata, particularly in understanding and managing its YAML configuration files, and how these configurations integrate and influence the Suricata Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS). You will play a critical role in deploying, tuning, and maintaining Suricata within a complex enterprise IT environment, primarily running on Red Hat Enterprise Linux.

A key focus of this role will be tuning Suricata to operate optimally with Napatech network interface cards (NICs), ensuring high-performance packet capture and processing while minimizing packet loss and system resource overhead.

Work with us as we secure and protect our nation's most sensitive capabilities.

What You’ll Work On:

• Designing, deploying, and maintaining Suricata IDS/IPS systems across enterprise networks.

• Developing, reviewing, and optimizing Suricata YAML configuration files to ensure optimal detection capabilities and minimal false positives.

• Understanding and managing the interaction between Suricata’s YAML configuration and its runtime engine, including rule loading, protocol decoding, and logging.

• Tuning Suricata for optimal performance with Napatech NICs, including configuring Direct Memory Access (DMA), RSS queues, interrupt coalescing, and leveraging any NIC-specific acceleration features.

• Collaborating with security teams to integrate Suricata with SIEM and other security monitoring platforms.

• Troubleshooting installation and operational issues specific to Suricata on Red Hat Enterprise Linux, addressing compatibility, kernel module requirements, SELinux policies, and performance tuning.

• Identifying and mitigating common pitfalls encountered when deploying Suricata in large-scale enterprise environments, including package dependencies, system resource constraints, and NIC driver/configuration issues.

• Provide detailed documentation and runbooks for Suricata configuration, tuning NICs, and deployment processes.

• Staying current with Suricata releases, NIC driver updates, and community best practices for network interface tuning and IDS/IPS performance enhancement.

Join us. The world can’t wait.

You Have:

• Proven experience working with Suricata IDS/IPS systems, including hands-on management of its YAML configuration files.

• Strong knowledge of the Suricata configuration structure, syntax, and how it controls detection rules, logging, and output modules.

• Extensive experience administering Red Hat Enterprise Linux (RHEL) systems, including package management (yum/dnf), kernel module management, SELinux configuration, and system optimization.

• Hands-on experience tuning Suricata for high-performance packet capture with Napatech NICs or similar advanced network interface cards.

• Familiarity with NIC-specific features such as DMA, Receive Side Scaling (RSS), interrupt moderation, and offload capabilities, and how to configure them for Suricata.

• Experience troubleshooting Suricata’s interaction with NIC drivers and kernel modules in an enterprise environment.

• Experience with scripting languages (Bash, Python) to automate Suricata configuration and deployment tasks.

• TS/SCI clearance with the ability to obtain a counter-intelligence polygraph.

• Associate’s degree and 5+ years of experience supporting IT projects and activities or Bachelor’s degree and 3+ years of experience supporting IT projects and activities or Master’s degree and 1+ years of experience supporting IT projects and activities. Years of experience may be accepted in lieu of degree.

• DoD 8570 IAT Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification.

• Ability to obtain a DoD 8570 Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification, within 60 days of start date.

Nice If You Have:

• Proficient understanding of network protocols, intrusion detection methodologies, and security event correlation.

• Experience integrating Suricata with Splunk, or other SIEM solutions.

• Knowledge of containerized deployments of Suricata (Docker/Kubernetes) in enterprise environments.

• Familiarity with common Linux operating systems, including RHEL, Oracle, CentOS.

• Familiarity with other industry-standard IDS/IPS solutions and related technologies.

• Ability to be a self-starter, work without considerable direction, and work with a team.

• Possession of excellent verbal and written communication skills, including for coordinating efforts and establishing customer relations.

We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.

Why GuidePoint?

GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1000 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 4,200 customers.

Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.

This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.

Some added perks….

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)

• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)

• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans

• 12 corporate holidays and a Flexible Time Off (FTO) program

• Healthy mobile phone and home internet allowance

• Eligibility for retirement plan after 2 months at open enrollment

• Pet Benefit Option

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply