"Alerted.org

The Cybersecurity SOC (Security Operations Center) Manager contributes to the success of our mission by coordinating and directing defensive Cybersecurity operations during critical and high tempo operations, in accordance with established policies and best practices. This position will work closely with the Director Security Operations to execute strategic vision for the Security Operations Center team and assist in maturing a proactive threat hunting and detection based active defense program for SNC and SOC clients. You will design, test, and implement secure operating systems, security monitoring, tuning, and management of security systems and applications, incident response, and digital forensics. You will conduct risk and vulnerability assessments at the network, system, and application level. You will conduct insider and outsider threat detection and mitigation. You'll develop and implement security controls and formulate operational risk mitigations along with assisting in security awareness programs. You will prepare security reports to regulatory agencies and clients.

As SNC's corporate team, we provide the company and its business areas with strategic direction and business support spanning executive management, finance and accounting, operations, human resources, legal, IT, information security, facilities, marketing, and communications.

Responsibilities:

+ Manage diverse group of threat hunters and incident responders to rapidly detect anomalous behavior and defend computer networks and information systems from insider threats, advanced criminals, and nation state attackers

+ Coordinate the flow of information between cross functional teams to ensure incidents are properly tracked, escalated, and reported

+ Review and analyze data from a variety of Cyber defense tools, including network traffic logs, Intrusion Detection or Prevention System alerts, firewall or system logs, and open source information to identify threat activity and recommend appropriate countermeasures and mitigations

+ Report intrusion attempts, compromises malicious actor activities to management

+ Proactively analyze, organize and develop new intelligence on advanced threats • Develop, analyze, and disseminate information on threat actors

+ Coordinate computer network incident response from detection through remediation

+ Identify and mitigate general attack stages (e.g., foot printing and scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks, etc.)

+ Identify system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditions, covert channel, replay, return-oriented attacks, and malicious code).

+ Actively train, coach, and develop the team

Qualifications You Must Have:

+ Bachelor's degree in Cybersecurity, Network Engineering, Information Technology or related Engineering field of study

+ 7 years in Cybersecurity or related field and typically 0-4 years of experience managing/ leading a technical team

+ Relevant experience can be considered as a substitute for the required educational qualifications. In the absence of a degree, a minimum of 11 years of related experience is required.

+ Ability to manage and triage multiple security events, differentiating urgent issues from the merely important

+ Knowledge of incident response processes OR Cyber-attack exploitation techniques OR threat intelligence reporting

+ Proven experience leading and responding to complex incidents

+ Broad knowledge of the tactics and techniques of advanced threat actors and computer criminals

+ Excellent social, verbal, and written communication skills, with demonstrated ability to present analytical data to a variety of technical and non-technical audiences

+ Current Certified Information Systems Security Professional (CISSP)

+ Current Certified Ethical Hacker (CEH)

+ The ability to obtain and maintain a Secret U.S. Security Clearance is required

Qualifications We Prefer:

+ Experience with SIEM Tools, such as: Splunk, ELK

+ Python programming and/or Powershell scripting experience

+ GIAC Cyber Threat Intelligence (GCTI)

+ GIAC Certified Incident Handler (GCIH)

+ Experience leading a 24/7 team

This posting will be open for application for a minimum of 5 days and may be extended based on business needs.

SNC offers annual incentive pay based upon performance that is commensurate with the level of the position.

SNC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with 150% match up to 6%, life insurance, 3 weeks paid time off, tuition reimbursement, and more (https://www.sncorp.com/careers/total-rewards/) .

IMPORTANT NOTICE:

This position requires the ability to obtain and maintain a Secret U.S. Security Clearance. U.S. Citizenship status is required as this position needs an active U.S. Security Clearance for employment. Non-U.S. citizens may not be eligible to obtain a security clearance. The Department of Defense Consolidated Adjudications Facility (DoD CAF), a federal government agency, handles the adjudicative aspects of the security clearance eligibility process for industry applicants. Adjudicative factors which affect the outcome of the eligibility determination include, but are not limited to, allegiance to the U.S., foreign influence, foreign preference, criminal conduct, security violations and illegal drug use.

Learn more about the background check process for Security Clearances. (https://www.dcsa.mil/About/)

SNC is a global leader in aerospace and national security committed to moving the American Dream forward. We’re known and respected for our mission and execution focus, agility, and disruptive and rapid innovation. We provide leading edge technologies and transformative solutions that support our nation’s most critical security needs. If you are mission-focused, thrive in collaborative environments, and want to make our country stronger with state-of-the-art technologies that safeguard freedom, join our team!

SNC is an Equal Opportunity Employer committed to an environment free of discrimination. Employment decisions are made based on merit without regard to race, color, age, religion, sex, national origin, disability, status as a protected veteran or other characteristics protected by law.