Cyber Incident Manager Lead

Job Locations US-VA-Arlington
Job Post Information* : Posted Date 1 month ago(5/5/2020 1:23 PM)
Information Technology
Location : Location
Clearance Requirement
Top Secret/SCI
Job Requires Relocation


SOSi is seeking a Cyber Incident Manager Lead to support the Department of Homeland Security in Arlington, VA. The selected applicant will become part of the United States Computer Emergency Readiness Team (US-CERT), responsible for analyzing and reducing cyber threats and vulnerabilities, disseminating cyber threat warning information, and coordinating incident response activities.


  • Lead staff in responses to urgent IT and Cyber situations to mitigate threats and employ various, advanced response and recovery approaches, as appropriate.
  • Lead investigations and analysis response activities and apply knowledge of tactics, techniques, and procedures for investigative processes.
  • Lead staff in root cause analysis and response coordination, providing recommendations on mitigation.
  • Provide leadership and mentoring for junior employees and contribute to the development of innovative principles and ideas.
  • Work on unusually complex problems and provide solutions that are highly creative. Act as leader on large programs and projects that affect the organization's long-term goals and objectives.


  • Experience with managing reported incidents and providing a single point of service for incident customer organizations throughout the incident life cycle of a high priority incident
  • Experience with mentoring junior incident managers and providing guidance to others on incident management prioritization, triage, and report writing in support of onsite engagements
  • Experience with recommending defense in depth principles and practices, including Defense in Multiple Places, layered defenses, and security robustness
  • Ability to recognize and categorize types of vulnerabilities, associated attacks, and different operational threat environments, including first generation script kiddies, second generation non-nation state sponsored, and third generation nation-state sponsored
  • Active TS/SCI clearance
  • HS diploma or GED and 10+ years of experience with incident management or Cybersecurity operations or BA or BS degree or 8+ years of experience with incident management or Cybersecurity operations

Preferred Qualifications

  • Experience in assisting federal leads with incident management functions when deployed at an onsite engagement involving private sector partners, law enforcement, and internal entities to conduct daily operations
  • Experience with incident management tools, including REMEDY
  • Experience with ITIL process improvement
  • CASP, CAP, CISM, CISSP, or GSLC Certification

Working Conditions

  • Normal office working conditions


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed