Senior - SOC CHIEFElectronic Consulting Services, Inc (ECS Federal) • Washington, Utah, United States
Senior - SOC CHIEF
Electronic Consulting Services, Inc (ECS Federal)
- Washington, Utah, United States
- Washington, Utah, United States
À propos
to work in our Washington DC
office. Everforth ECS Federal is a leading information security and information technology company in Washington, DC. We are looking to hire a Senior Security Operation Center (SOC) Manager to provide a full range of cybersecurity services on a long-term contract in Suitland, MD. The position is full time/permanent and will provide 24x7x365 support for a US Government civilian agency. The position is available immediately upon finding a qualified candidate with the appropriate background clearance.Top Secret, SCI eligible8+ years of Information Technology experience, with at least 5 years of experience in information security working within security operations7-10+ years of experience in SOC operations and incident response including SOC management and an IR commander role.Experience with maturing and optimizing SOCsExperience with utilizing Cyber Threat Intelligence to enhance security operations, and threat detections and responsePreferred experience with developing and deploying an integrated NOC/SOC modelExcellent problem solving, critical thinking, and analytical skills with the ability to de-construct problemsStrong customer service skills and decision-making skillsWorking knowledge of cloud infrastructure preferredCareer proven knowledge and experience with log, network, and system forensic investigation techniquesSignificant experience performing analysis of log files from a variety of sources, to include individual host logs, network traffic logs, firewall logs, or intrusion prevention logsSignificant experience with host and network analysisExperience with reading malware analysis reportsKnowledge of diverse operating systems, networking protocols, systems administration and security technologiesIntelligence driven defense utilizing the Cyber Kill Chain (CKC) and MITRE ATT&CKSignificant experience monitoring threats via a SIEM consoleCandidate must have familiarity with US-CERT Federal Incident Notification GuidelinesAzure, Azure Sentinel, Microsoft 365 Defender (across endpoint, email, and collaboration) experience preferredWorking knowledge of FireEye/Trellix tools, Akamai WAF, Sourcefire, and IronportStrong sense of professionalism and ethicsActively seeks to enhance the group through the sharing of knowledgeActs with integrity and communicates honestly and openlyAbility to build rapport and cooperation among teams and internal stakeholdersRespects others and demonstrates fair treatment to allMethodical and detail orientedSelf-motivatedAbility to work in a high-pressure environment with changing priorities.Salary Range: $175,000-195,000General Description of Benefits Required SkillsBachelor's degree in computer science or related field or equivalent work experience Certified Information Systems Security Professional (CISSP) Ensure the timeliness and quality of deliverables so that all information and data are accurate and complete; Lead Information Security GAP Analysis review; Perform administrative functions such as reviewing performance and operations to ensure appropriate performance; Ensure effective coordination, collaboration, and communication with federal personnel; Serve as the primary incident commander for all cybersecurity incidents; Must possess a functional understanding of log and monitoring management systems, security event monitoring systems, network-based and host-based intrusion detection systems, firewall technologies, malware detection and enterprise-level antivirus solutions/systems Must have demonstrated experience with managing and ensuring the timely response and investigations of security events and incidents by the Security Operations Center (SOC) Have demonstrated experience with developing and facilitating cybersecurity tabletop exercises for technical and non-technical personnel Must possess a working knowledge of regulatory security compliance requirements Familiarity with White House Executive Orders (OE) on improving the Nation's Cybersecurity and subsequent Office of Management and Budget (OMB) memorandums Familiarity with FISMA monitoring and reporting requirements Must have experience with conceptualizing, developing, publishing and communicating status reports for executive leadership Work closely with client CISO and cybersecurity leadership to identify implement process changes, improvements and efficiencies, and ensure solid security practices Develop and administer SOC processes and review their application to ensure that SOC's controls, policies, and procedures are operating effectively Establish and maintain excellent working relationships/partnerships with the cybersecurity and infrastructure support teams throughout the Information Technology organization, as well as business units Play a significant role in long-term SOC strategy and planning, including initiatives geared toward operational excellence Execute security operations processes, identify and measure critical security operations metrics, and continually improve the efficiency and effectiveness of all core services in scope Manage and develop SOC team members, including mentoring, task management, and capability/skill development. Provide a framework for team members to be successful in achieving team goals and individual performance objectives Provide security expertise to the SOC team leveraging industry leading practices Ensures all pertinent information is obtained to allow for the identification, containment, eradication, and recovery actions to occur in a time sensitive environment Recommends implementation of countermeasures or mitigating controls Resolve or coordinate the resolution of cybersecurity events/incidents Responsible for development and leadership of a 24x7x365 SOC, to include establishment of the mission, SOC maturity and optimizing, task management, playbook development and maintenance, and developing and deploying an integrated NOC/SOC model Perform the SOC Chief activities to include project tracking schedules, risk registers, and risk and issue mitigation strategies for SOC and incident response activities Desired SkillsCompTIA Network + and Security + EC Council Certified Ethical Hacker (CEH) CERT Certified Computer Security Incident Handler (CSIH) Formal IT Security/Network Certification such as SANS GIAC Certified Intrusion Analyst (GCIA), SANS GIAC Network Forensic Analyst (GNFA), SANS GIAC Information Security Fundamentals (GISF), or SANS GIAC Certified Incident Handler (GCIH) Previous SOC/CIRT experience at a federal agency similar in size, scope, and complexity Experience with NIST 800-61 Rev 2 and responding to incidents while following the Incident Life Cycle Experience in Azure and AWS cloud environments Experience in Security threats and vulnerabilities Experience in Security technologies and countermeasures Experience in TCP/IP networking concepts Experience in Firewall technologies Experience in IDS/IPS (Network and Host based) Experience in Windows and UNIX/Linux operating environments Experience examining memory and host-based logs EverforthECS1ECS Federal LLC is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law. Everforth ECS is the federal segment of Everforth , a $4B global organization with over 10,000 employees. Our nearly 3,500 professionals deliver advanced technology solutions in data and AI, cybersecurity, and enterprise transformation, serving defense, intelligence, and federal civilian agencies.Our work powers mission-critical outcomes, strengthens technology partnerships, and creates meaningful opportunities for our people. We are defined by a commitment to excellence in delivery, a culture of innovation, and an environment where talent can thrive and grow.We value:Attracting and developing top talent and high-performing teamsFostering a culture that is engaging, accountable, and mission-drivenMeet the challenge. Make a difference with Everforth ECS!
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.