SOSi

Cyber SOC Manager

Job Locations US-VA-Arlington
Job Post Information* : Posted Date 2 weeks ago(6/18/2020 3:48 PM)
ID
2020-3873
Location : Location
US-VA-Arlington
Clearance Requirement
Top Secret
Job Requires Relocation
No

Overview

SOSi is currently seeking an experienced Cyber SOC Manager to join our team in Arlington, VA. The selected applicant will become part of the United States Computer Emergency Readiness Team (US-CERT) managing the National Cybersecurity and Communications Integration Center (NCCIC).

Responsibilities

  • Serve as the Shift Incident Manager (SIM) and manage the NCCIC Security Operations Center (SOC) 24x7x365.
  • Watch Section directing Department and Agency level incident management activities.
  • Manage incident triage and coordination with analysis and detection sections to identify and analyze technology and cyber impacts to IT assets, network infrastructure (LAN/WAN), including applying security and ensuring proper incident management and coordination.
  • May be required to coordinate with external organizations, authorities, and senior level leadership.
  • Lead staff in responses to urgent IT and Cyber situations to mitigate threats and employ various, advanced response and recovery approaches, as appropriate.
  • Lead investigations and analysis response activities and apply knowledge of tactics, techniques, and procedures for investigative processes.
  • Lead staff in root cause analysis and response coordination, providing recommendations on mitigation.
  • Provide leadership and mentoring for junior employees and contribute to the development of innovative principles and ideas.
  • Work on unusually complex problems and provide solutions that are highly creative. Act as leader on large programs and projects that affect the organization's long-term goals and objectives.

Qualifications

  • Active Top Secret Clearance
  • Bachelor's Degree or equivalent
  • Minimum of 5 years’ experience in SOC environment
  • Understanding of cyber forensics concepts including malware, hunt, etc.- Tools – Tenable, CyberArk
  • Experience with managing reported incidents and providing a single point of service for incident customer organizations throughout the incident life cycle of a high priority incident
  • Experience with mentoring junior incident managers and providing guidance to others on incident management prioritization, triage, and report writing in support of onsite engagements
  • Experience with recommending defense in depth principles and practices, including Defense in Multiple Places, layered defenses, and security robustness
  • Ability to recognize and categorize types of vulnerabilities, associated attacks, and different operational threat environments, including first generation script kiddies, second generation non-nation state sponsored, and third generation nation-state sponsored
  • Tools: Big Data Analytics (Splunk)
  • Excellent oral and written communication skills
  • Ability to work independently in a fast-paced environment with competing demands and multiple deadlines

Preferred Qualifications

  • Fluency in a foreign language is desirable, but not required.

Working Conditions

  • Working conditions are normal for an office environment.
  • Fast paced, deadline-oriented environment.

SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.


Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed