Deputy Cyber Incident Response Team Manager
5 hours ago
We are seeking a highly skilled Deputy Cyber Incident Response Team Manager to join our team at Argo Cyber Systems. As a key member of our Cyber Defense Mission, you will play a critical role in ensuring exceptional service for our managed services customers and driving employee engagement for our CIRT staff members.
Key Responsibilities- Support the management of our CIRT team, consisting of up to 30 cyber defense analysts providing cyber detection, incident response, and recovery coordination services to our customers.
- Provide leadership and guidance to the incident response team members, fostering a collaborative and cohesive working environment.
- Serve as a subject matter expert in identifying cyber threat events and incident response, providing input on process improvements and contributing to the technology roadmap for our strategic plan.
- Manage and coordinate the organization's incident response activities, including detection, analysis, containment, eradication, and recovery efforts for security incidents.
- Develop and maintain incident response plans, playbooks, and procedures tailored to our organization's needs, ensuring that response plans are regularly reviewed, updated, and tested.
- Ensure thorough documentation of security incidents, including incident timelines, actions taken, and lessons learned, and prepare incident reports and post-incident reviews to identify areas for improvement and implement corrective measures.
- Field escalated customer issues and resolve or refer to specialized experts as needed.
- Identify both tactical and strategic solutions to contain incidents.
- Develop and refine processes, procedures, and techniques used by the team to continually improve the incident response efforts.
- Perform metrics trend analysis and reporting, guiding resultant process improvement.
- Communicate policies, expectations, and feedback to CIRT staff.
- Facilitate a high-performance team environment and employee engagement.
- Guide and coordinate projects requiring scheduling.
- Contribute to developing, communicating, and implementing policies, procedures, best practices, recommendations, and guidelines for standards.
- Train, mentor, and develop a talented group of security operations and incident response professionals, conducting individual meetings with team members to address performance, and training needs, set expectations, and facilitate a 2-way dialogue regarding the team members' experience.
- Other duties as assigned and required.
- Must be a U.S. Citizen.
- This position requires an active/current Top-Secret security clearance with SCI eligibility.
- Must be able to obtain DHS suitability before starting employment.
- 10+ years of directly relevant experience.
- Computer Emergency Response Team (CERT/CIRT) hands-on experience.
- Current experience with network intrusion detection and response operations (Protect, Defend, Respond, and Sustain procedures).
- Hands-on experience in the detection, response, mitigation, and/or reporting of cyber-attacks affecting client networks.
- Computer network surveillance/monitoring.
- Current incident response experience using Splunk.
- Current experience with AWS/Azure security solutions and cloud security investigations.
- Previous security investigation experience (OS Forensics, Network Forensics, Web Application Forensics, Cloud Forensics, etc.).
- Experience as a Linux/Windows/Network administrator.
- Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures.
- Familiar with System log analysis, computer evidence seizure, computer forensic analysis, and data recovery.
- Experience with current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks.
- Excellent verbal and written communication skills.
- Efficient delegation and task prioritization.
- Ability to interview and select employees by company guidelines and EEOC commitments.
- Ability to coordinate and facilitate staff training.
- Ability to provide feedback, coach employee performance, and effectively implement disciplinary action as needed.
- Ability to manage and resolve conflicts as they arise.
- Demonstrated ability to document processes.
- The ability to respond to crises efficiently and objectively.
- Proficiency with MS Office Applications.
- Must be able to work collaboratively across agencies and physical locations.
- Experience supporting DHS, Federal Civil, Intelligence, and/or DoD Customers.
- Computer Forensics experience.
- Malware reverse engineering experience.
- Experience with Risk and Opportunity management.
- Scripting experience (Python, Perl, etc.).
- Experience with process development and deployment.
- Prior experience with data visualization products such as Analyst Notebook.
- Prior experience working in one of the following is highly desired:
- DOD/FED Cyber Intel organization.
- DCIO/MCIO, with Cyber Counterintelligence focus.
- DoDI M IAT Level 2.
- Additional technical CND response certification (CEH, GCIH, GCIA, OSDA SOC-200 or GNFA).
Bachelor's degree OR eight (8) years of related experience with a master's degree.
-
Cyber Incident Manager
3 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Incident ManagerArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. As a key member of our team, you will be responsible for investigating and resolving cyber-attacks, developing mitigation plans, and assisting with the restoration of services.Key Responsibilities:Correlate incident...
-
Cyber Incident Manager
1 week ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Incident ManagerArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. As a key member of our team, you will be responsible for investigating and resolving cyber-attacks, developing mitigation plans, and assisting with the restoration of services.Key Responsibilities:Correlate incident...
-
Cyber Incident Manager
4 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Incident ManagerArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. As a key member of our team, you will be responsible for investigating and resolving cyber-attacks, providing immediate support to civilian Government agencies and critical asset owners.Key...
-
Cyber Incident Manager
3 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Incident ManagerArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. As a key member of our team, you will be responsible for investigating and resolving cyber-attacks, developing mitigation plans, and assisting with the restoration of services.Key Responsibilities:Correlate incident...
-
Cyber Incident Manager
4 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Incident ManagerArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. As a key member of our team, you will be responsible for investigating and resolving cyber-attacks, providing immediate support to civilian Government agencies and critical asset owners.Key...
-
Cyber Incident Manager
3 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Incident ManagerArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our U.S. Government customer in providing onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks.Responsibilities:Correlating incident data to identify specific trends in reported...
-
Cyber Incident Manager Level II
3 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Incident Manager Level IIArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. As a Cyber Incident Manager, you will be responsible for investigating and resolving cyber-attacks, developing mitigation plans, and assisting with the restoration of services.Key...
-
Cyber Incident Manager Level II
3 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Incident Manager Level IIArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. As a key member of our team, you will be responsible for investigating and resolving cyber-attacks, developing mitigation plans, and assisting with the restoration of services.Key Responsibilities:Correlate...
-
Cybersecurity Incident Manager
60 minutes ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob SummaryArgo Cyber Systems is seeking a highly skilled Cybersecurity Incident Manager to support our customer mission. The successful candidate will be responsible for investigating and resolving cyber-attacks, developing mitigation plans, and assisting with the restoration of services.This is a critical role that requires a strong understanding of...
-
Cyber Incident Manager III
2 weeks ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob Title: Cyber Incident Manager IIISolutions³ LLC is seeking a highly skilled Cyber Incident Manager III to support our prime contractor and their U.S. Government customer in providing onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks.Job Summary:The Cyber Incident Manager III will perform...
-
Cyber Incident Management Specialist
1 week ago
Arlington, Virginia, United States Raytheon Technologies Full timeJob Title: Cyber Incident Management AnalystWe are seeking a highly skilled Cyber Incident Management Analyst to join our team at Nightwing. As a Cyber Incident Management Analyst, you will play a critical role in supporting our customer's mission by providing incident response and management services.Responsibilities:Manage reported incidents by providing a...
-
Cyber Incident Management Specialist
1 month ago
Arlington, Virginia, United States Raytheon Technologies Full timeCyber Incident Management AnalystWe are seeking a highly skilled Cyber Incident Management Analyst to join our team at Nightwing. As a Cyber Incident Management Analyst, you will play a critical role in managing reported incidents, providing a single point of service for incident customer organizations throughout the incident life cycle of a high-priority...
-
Cyber Incident Management Specialist
3 weeks ago
Arlington, Virginia, United States Raytheon Technologies Full timeJob Title: Cyber Incident Management AnalystJob Summary:We are seeking a highly skilled Cyber Incident Management Analyst to join our team. As a Cyber Incident Management Analyst, you will be responsible for managing reported incidents, providing a single point of service for incident customer organizations throughout the incident life cycle of a...
-
Cyber Incident Management Specialist
1 week ago
Arlington, Virginia, United States Nightwing Full timeCyber Incident Management AnalystAbout the Role:Nightwing is seeking a highly skilled Cyber Incident Management Analyst to support our critical customer mission. As a key member of our team, you will be responsible for managing reported incidents, correlating incident data, and recommending defense in depth principles and practices.Responsibilities:Manage...
-
Cyber Incident Management Specialist
2 days ago
Arlington, Virginia, United States Nightwing Full timeCyber Incident Management AnalystAbout the Role:Nightwing is seeking a highly skilled Cyber Incident Management Analyst to support our critical customer mission. As a key member of our team, you will be responsible for managing reported incidents, correlating incident data, and recommending defense in depth principles and practices.Responsibilities:Manage...
-
Incident Response Specialist
1 week ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob Title: Incident Manager IIIJob Summary:Solutions³ LLC is seeking a highly skilled Incident Manager III to join our team in supporting our prime contractor and their U.S. Government customer in providing onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks. The ideal candidate will have a strong...
-
Incident Response Specialist
3 weeks ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob Title: Incident Manager IIIJob Summary:Solutions³ LLC is seeking an experienced Incident Manager III to support our prime contractor and their U.S. Government customer in providing incident response services to civilian Government agencies and critical asset owners. The successful candidate will perform investigations to characterize the severity of...
-
Incident Response Specialist
3 weeks ago
Arlington, Virginia, United States Agile Defense Full timeJob Title: Incident Response AnalystAt Agile Defense, we're committed to delivering innovative solutions that drive results. As an Incident Response Analyst, you'll play a critical role in our team's success, leveraging your expertise to identify and mitigate cyber threats.Job Summary:We're seeking a highly skilled Incident Response Analyst to join our team....
-
Incident Response Specialist
1 week ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob SummarySolutions³ LLC is seeking a highly skilled Cybersecurity Incident Manager to join our team. As a key member of our cybersecurity team, you will be responsible for investigating and responding to cyber incidents, developing mitigation plans, and assisting with the restoration of services.Key ResponsibilitiesCorrelate incident data to identify...
-
Cybersecurity Incident Response Specialist
2 hours ago
Arlington, Virginia, United States Nine Mind Solutions Full timeCybersecurity Incident Response SpecialistWe are seeking a highly skilled Cybersecurity Incident Response Specialist to join our team at Nine Mind Solutions. As a key member of our cybersecurity team, you will be responsible for supporting our customers in the detection, response, mitigation, and reporting of cyber threats affecting their networks.Key...