Description
Job Description:Leidos is seeking an experienced Cybersecurity SME and Security Operations Center (SOC) Technical Manager to support a federal customer within the Federal Emergency Management Agency (FEMA) Security Operations Center (SOC).
Responsibilities include:
Supervise and Manage day-to-day operations within the Security Operations Center in support of the Government Customer
Manage and conduct hands-on technical analysis as a supplement to the Incident Response and Forensics Teams during high-visibility or high-workload investigations
Guide and mentor multiple team-leads ranging from Compliance to technical Incident Response
Suggest and implement controls for key information security gaps within the customer security stack
Conduct and maintain detailed gap analysis of customer capabilities
Develop and maintain risk registers articulating cybersecurity risk across the FEMA enterprise
Articulate daily challenges to the Government SOC Chief to support the SOC development and growth
Manage 24x7 operations personnel and shift coverage
Serves as a contractual "Task Lead" with supervisory responsibilities
Conduct weekly task meetings to ensure compliance with contractual task requirements
MINIMUM REQUIRED QUALIFICATIONS:
Active TS/SCI Clearance
Bachelor's Degree in Information Technology, Computer Science, Information Systems, Business or related field and 8 years of prior relevant experience
Military experience and training may be considered in lieu of degree
Active Advanced cybersecurity certification(s)
Minimum 5 years of experience as an operations/technical lead on similar projects (operations centers considered a plus)
Minimum 8 years experience in technical cybersecurity roles (can be concurrent with previous)
Experience managing a technical team in an operational environment (SOC considered a plus)
Experience effectively communicating at senior levels within a customer organization and meeting with stakeholders to formulate, review, and execute task plans and deliverable items
Experience presenting briefings to senior customer management, customer stakeholders, and company management
Experience managing 24x7 shift schedules
Excellent verbal and written communications skills
ADDITIONAL DESIRED QUALIFICATIONS:
Technical (hands-on) experience with Cybersecurity Incident Handling, Malware Analysis, Security Monitoring, Cybersecurity Compliance, Cybersecurity Risk assessments, and technical procedure documentation
Malware reverse-engineering experience considered a plus
Experience in network and cyber security design, engineering and operations
Experience with Service Desk support and operations
Experience with NIST SP 800 series or ISO 27000 series documents for information security management and risk assessment
Understanding of DevOps/Agile concepts and processes