Job Description
JOB SUMMARY NWRDC is seeking a vendor (also referred to as "Contractor") to implement by May 15, 2026 a Staff Augmentation Position for Database Administrator experience to support the NWRDC.
Key Responsibilities • Act as primary liaison for daily operations between the Department and the Department's Managed Security Services Provider, Secureworks, as assigned by the Department.
• Review current FDOH (Dept of Health) information security policies and processes to assist management with developing project goals, as assigned by the Department.
• Perform computer incident response within the scope and capabilities of the MSSP; assist with computer incident response originating from sources outside the scope of the MSSP, as assigned by the Department.
• Perform advanced level analysis of security events and incidents reported by the MSSP and other monitoring platforms, as assigned by the Department.
• Assist the MSSP and Security Administration Team with identification and integration of all Department information security related logs, as assigned by the Department.
• Assist the MSSP and Security Administration Team in deploying and health monitoring of MSSP specific endpoint agents across multiple physical and virtual IT platforms, as assigned by the Department.
• Assist the Security Administration Team in deploying and health monitoring of non-MSSP specific endpoint agents across multiple physical and virtual IT platforms, as assigned by the Department.
• Assist the MSSP and Security Administration Team in maintaining the health of MSSP specific log collection and IDS/IPS physical and virtual appliances, as assigned by the Department.
• Assist with continuous integration of all relevant Department data sources and systems, existing or new, into the MSSP and other SIEM and SOAR solutions, as assigned by the Department.
• Provide Department management with status reports on project goals, as assigned by the Department.
• DATA SECURITY AND CONFIDENTIALITY TASK:
The Contractor, its employees, subcontractors, and agents must comply at all times with all Department data security procedures and policies in the performance of this scope of work as specified in the Data Security and Confidentiality document attached to the purchase order.
Required Qualifications Required Consultant must demonstrate: (Minimum): 4 years experience
- Experience working as a security analyst in an environment utilizing a Managed Security Services Provider (MSSP), preferably Secureworks
- Experience coordinating and conducting event collection, log management and event management using Security Information & Event Management (SIEM) or other log management systems.
- Experience with identity monitoring activities using SIEM or other log management systems.
- Experience with research and analysis of log sources utilized for security monitoring.
- Experience configuring and monitoring IDS/IPS, log collectors, firewalls, load balancers, web gateways, and other network traffic physical and virtual appliances.
- Experience with endpoint deployment solutions to enable installation of security products and telemetry gathering on computer workstations and servers of varying operating systems and versions. Examples include SCCM, Altiris, KACE, Ivanti, etc.
- Experience in Microsoft Active Directory on-premises and Azure (hybrid) administration, including practices of account provisioning, enable/disable/reset, and management of Organizational Units and Groups.
Work Environment • Weekly billable hours not to exceed forty (40) hours, unless prior written approval is provided by NWRDC.
• A five (5) day regular work schedule will be mutually agreed to in writing, unless prior written approval is provided by the Agency. Work hours are: Monday through Friday, Normal Business Hours, but may includes after hours, nights and weekends
• Telecommuting may be allowed with written approval by the Agency.
• The consultant must have a smartphone that will support Multi-Factor Authentication (MFA).
• Computer equipment will be provided to the selected Consultant by the Agency.
• All issued equipment must be returned to the Agency at PO term end.
Education/Experience • Contractor shall submit a resume of their best Consultant(s) that, at a minimum, meet the required KSA's
• Contractor must supply a matrix of candidate skills highlighting required skills to indicate, for each candidate submitted, details regarding the number of years the required skills have been used, the last time the skill was used, and in what context/for what project.
• Contractor is required to submit pre-screening reference checks on all candidates submitted
• Agency will perform a CJIS background check; which shall be completed before the Consultant commences work at the Agency.
Skill Matrix
Skill Years of Experience Response Experience working as a security analyst in an environment utilizing a Managed Security Services Provider (MSSP), preferably Secureworks
4 years
Experience coordinating and conducting event collection, log management and event management using SIEM or other log management systems
4 years
Experience with identity monitoring activities using SIEM or other log management systems
4 years
Experience with research and analysis of log sources utilized for security monitoring
4 years
Experience configuring and monitoring IDS/IPS, log collectors, firewalls, load balancers, web gateways, and other network traffic appliances
4 years
Experience with endpoint deployment solutions (SCCM, Altiris, KACE, Ivanti, etc.)
4 years
Experience in Microsoft Active Directory on-premises and Azure (hybrid) administration
4 years
Job Tags
For contractors, For subcontractor, Remote work, Monday to Friday, Night shift, Weekend work