SOS International, LLC (SOSi) is currently seeking a Defensive Infrastrucure Team Lead in Fort Huachuca, AZ. The Defensive Infrastructure (DI) Team Lead reports to the DCO Branch Manager and serves as the project manager for signatures development based on Task Orders or analysis and threat hunt tippers. The DI Team Lead has supervisory responsibilities over the DI Team and is responsible for overall technical and personnel management of the DI mission. The DI Team Lead acts as the overall subject matter expert for sensor and signature management, maintains ownership of all DI TTPs, and acts as the coordination point between the DI mission, government task mangers, external organizations, and other RCC-C internal technical areas.

• Supervisory responsibilities to include but not limited to:
  • Reporting and timekeeping; technical/administrative training; assuring ITIL process compliance; actively communicating with the government to include utilizing MS Teams; scheduling to effectively utilize all team resources; support management decision-making; committing to quality management standards, QA/QC compliance, and metrics analysis.
  • Coordinates team schedules ensuring mission coverage.
  • Trains, mentors, coaches, and enforces the SOSi code of conduct.
  • Assures ATCTS reporting compliance and employees training and certifications are current.
  • Recommends innovative solutions to more effectively and efficiently support work performance.
  • Provides performance feedback and appraisals for all direct reports.
  • Nominates employees for recognition and awards program.
  • Coordinates the cross-utilization of FFP resources to accommodate dynamic service delivery schedules and/or workloads.
  • Supports leadership development and succession planning program.
• Administer application security and/or maintain application security tools.
• Work with application and sensor vendors to evaluate new signatures, products, and resolve design problems.
• Maintain the Threat Detection Grid, and periodically validate SIEM ingest feeds.
• Develop dashboards within security systems and components such as ArcSight.
• Provide Content and Policy Development and Sensor Security Event Management.
• Provide guidance and work leadership to less-experienced Cyber Security engineers and other technical staff.
• Maintain current knowledge of relevant technologies and emerging threats.
• Work closely with the WAN team to coordinate optimal placement of active and passive sensors within the network enclaves.
• Lead the integration of new technical solutions and platforms into the DoDIN-A, develop new processes, and author new SOPs and TTPs to employ them to their full potential.
• Provide timely notification to the Government for any critical or high incidents impacting critical systems and services.
• Review all systems development project requests and coordinates schedules and related departmental activity.
• Provide on-call support after business hours and during weekends when required.
• Maintain SOPs, TTPs, and SmartBooks associated with current knowledge of relevant technologies as assigned.
• Follow ITIL best practices to manage tickets and processes.
• Participate in special projects as required. 
• Actively collaborates with GTMs, Branch Chiefs, Division Chiefs and RCC-C Leadership, as well as NECs, Brigades, Army Cyber Officials, and Operations Centers external to the RCC-C.

• Active in scope Top Secret (TS) with eligibility for Sensitive Compartmented Information (SCI) clearance or the abililty to obtain an Interim Top Secret/SCI eligibility
• HS +12 years of experience, AA/AS +10 or BA/BS +8
• An IAT II certification (CCNA-Security, CND, CySA+, GICSP, GSEC, Security+ CE, or SSCP) is required
• CSSP-IS certification
• ITIL Foundation Certification
• Knowledgeable in the mission and operational requirements of the U.S. Army.
• Demonstrated understanding of U.S. Army IT operational and technical requirements and an advanced understanding of U.S. Army IT applications and network systems.
• Must be willing to work overtime, after hours, holidays, and weekends, as necessary.

• 10+ Years of Application Development
• ITILv4 Certification
• PMP Certification
• 3-5 years or more of supervisory experience
• Fluency in a foreign language is desirable, but not required

• Working conditions are normal for an office environment.
• Fast paced, deadline-oriented environment.
• May require periods of non-traditional working hours including consecutive nights or weekends (if applicable)

SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.