JOB SEARCH


Security Operations Lead

Bethesda, Maryland

Post Date: 12/28/2017 Job ID: 17765 Industry: Technology

Cyber Security Operations Team Leader

 

Looking for a Cyber Security Operations Team Leader to join a Security Operations organization on a contract with a federal government client with an important mission.  

 

Role and Responsibilities:
  • Lead a team providing tier 1 through tier 3 SOC roles and services, including:
    • Realtime monitoring and triage
    • Cyber intelligence
    • Incident analysis, response, and coordination
    • Hunting
    • Network, host, and malware analysis
    • Sensor tuning
    • Custom signature creation
  • Lead the application of cyber intelligence to improve security operations
  • Oversee and perform investigation of network and hosts/endpoints for malicious activity, to include analysis of packet captures
  • Oversee and assist in efforts to detect, confirm, contain, remediate, and recover from attacks
  • Prepare executive summaries and conduct briefings on significant investigations
  • Measure and manage individual and team performance
  • Ensure adequate metrics and documentation of team operations for leadership and other constituents
  • Hire, develop, retain staff

 

Required Qualifications:
  • Credentials
    • BS/BA degree
    • Eight or more years of work experience
    • Five or more years of cyber security work experience
    • One or more certifications in information security (such as GCIA, GCIH, CEH, CISSP, SSCP, Sec+, etc)
  • Sound cyber security knowledge foundation, to include understanding of
    • Adversary TTPs
    • Network technology and common protocols
    • Network security
    • Host security
    • Malware
    • Security tools and sensors
  • Experience, Skills and Abilities
    • Prior leadership experience with direct reports in a cyber environment
    • High technical ability/aptitude
    • Network investigation experience, to include netflow and packet/protocol capture and analysis
    • Endpoint/host forensics experience
    • SIEM experience
    • Strong critical thinking, problem solving, and organization skills
    • Strong teamwork and collaboration skills
    • Good written and verbal communication skills
    • Ability to pass a security clearance background investigation

 

Preferred Qualifications:
  • Security clearance
  • Experience and effective participation in hunt, computer network defense, real-time analysis and incident response activities, to include ability to reconstruct events from network, endpoint, and log data
  • Experience and understanding of host-based/endpoint protection systems
  • Cyber intelligence experience
  • Disk forensics experience
  • Memory forensics experience
  • Programming experience
  • Scripting experience
  • Server administration experience
  • Enterprise forensic tool(s) experience
  • Federal contract experience

 

 

#dice

Not ready to apply?

Send an email reminder to:

Share This Job:

Related Jobs: