Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Jobs - SOC Team Lead Washington, DC GSEC, GCIH, GCFA, GCIA, GSLC, GISP InfoSec Jobs

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This listing has expired and therefore is not publicly viewable.

SOC Team Lead
Location Washington, DC
Preferred GIAC Certifications GSEC, GCIH, GCFA, GCIA, GSLC, GISP
Travel 0%
Salary DoE
Contact Name Alex Lott
Contact Email alex.lott/at/
Expires 2018-07-29

Job Description

GDIT has an immediate need for a Cyber Security operations lead to manage a small agency’s IT Security Operations capabilities. This is a senior cyber security position that will provide day to day technical guidance and management oversight to a team of incident responders, vulnerability assessors, and security system engineers. The well qualified candidate will possess and apply broad technical expertise across multiple system security related disciplines to include: enterprise perimeter security and related appliances, SEIM, Vulnerability management best practices, and federal IT security requirements. The lead will provide direct leadership to a team of six Cyber Engineers who will be responsible for managed all cyber operations capability for the agency. The lead will help mature the agency’s incident response capabilities by ensuring the right technologies are in place and appropriately staffed to identify risks and threats in the environment. The lead will develop and maintain a comprehensive CONOPS for the incident response capabilities in line with NIST security control requirements and best practices. In addition to incident response capabilities, the lead will manage the agency’s vulnerability management program to proactively identify and prioritize technical risks to the agency and propose and work with counterparts to implement solutions to remediate weaknesses.

Responsibilities include:

Manage staff to ensure adequate staffing levels and skill sets are available to operating the incident response capability and provide proactive leadership, mentoring and development function
Directs and overseas the creation and maintenance of Incident response CONOPS with standard operating procedures integrated within the Continuous Monitoring strategies
Prepares mid and short-range plans for security application selection, systems maintenance, and production activities and for necessary support resources.
Provide technical leadership for security best practices to peer teams of engineers and operational staff
Sit on the change control board to weigh risks to the agency and make recommendations to mitigate security considerations
Evaluates functionality, risk, and maintainability of perimeter security systems
Identify and remediate deficiencies in the provision of professional tier 1 and 2 O&M services relating to security operations
Review weekly and monthly performance metrics and develop customer reports and remediation plans as needed
Directs compilation of records and reports concerning operations and maintenance performance of perimeter security systems

Desired Skill Sets

BS in Engineering, Computer Science or related Science degree
Minimum of 5 years managing a team of cyber security professional.
7+ years experience in computer science or software engineering.
7+ years experience in information security fundamental/principles
Certified Information Security Manager (CISM)
Certified Information Systems Security Professional
Familiarity with NIST and FISMA security control requirements