Cybersecurity Operations Lead
3 weeks ago
Cybersecurity Operations Lead
Military Friendly & Preferred - HOH Sponsor
Zermount Inc. is seeking a Cybersecurity Operations Lead who will oversee the daily operations of the Virtual Security Operations Center (VSOC). The ideal candidate will have a strong background in cybersecurity operations, leadership, and technical expertise. The role involves ensuring effective threat monitoring, incident response, and cybersecurity defense strategies.
Key Responsibilities:
- Lead a team of cybersecurity analysts and provide guidance on incident response and threat monitoring.
- Develop and maintain project management plans, quality assurance plans, and schedules.
- Monitor IT security systems, appliances, and technologies for performance and health.
- Utilize analytics capabilities and skill sets in network and host-based forensics, information security investigations, incident handling, and response methodologies.
- Provide continuous monitoring of network traffic and security device alerts.
- Correlate and trend analyze security logs, network traffic, security alerts, events, and incidents.
- Perform proactive monitoring and analysis activities to identify anomalous or malicious activities within the client's environment.
- Develop and provide status reports as required by the client.
- Oversee and ensure that all analysis is accurate, complete, and able to pass an in-depth audit.
- Ensure the monitoring of the primary information security mailbox and analyze spam submissions/user-base inquiries per established SOP.
- Perform senior analyst review and quality assurance checks prior to escalating any ticket to the in-house SOC for final review.
- Ensure tickets are created, tracked, monitored, and managed as needed.
- Responsible for ensuring all Service Level Agreements (SLAs) are met or exceeded.
- Develop priority intelligence requirements (PIRs) and a threat landscape model and associate known actors, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs) to the PIRs and threat landscape to show direct impact and value of the CTI program.
- Use multiple cybersecurity open-sources and the client's cyber intelligence vendor services to mine for IOC's, integrating analysis and follow-on pivoting for incorporation in network defense tools to enable proactive defense measures.
- Produce reporting on nation-state actors of concern to the client.
- Conduct research and maintain awareness of crimeware/ransomware/general malicious cyber activity that might pose a threat to the client's systems, networks, and personnel.
- Ensure that all analysis is accurate, complete, and able to pass an in-depth audit by providing all levels of documentation, evidence, and findings.
- Perform cyber threat hunting services as defined by the client's SOP.
- Update and develop appropriate documentation (e.g. Standard Operating Procedures [SOPs]), reports, etc.
- Monitor and respond to any incidents or issues regarding IT Security technologies performing as intended.
Requirements:
- Minimum of 5 years' experience in IT Security Operations and managing IT Security programs similar in size and scope (10,000 end points) and 10 direct reports.
- Ability to effectively communicate both orally and in writing (to include technical documentation).
- Ability to manage multiple projects, work under pressure and tight deadlines, work independently, and work in a team environment.
- Experience with a depth and breadth of IT Security tools and technologies, examples of technologies used are as follows: Splunk, Palo Alto Cloud Access Security Broker (CASB) & Data Loss Prevention (DLP) Solutions, Swimlane SOAR, RSA NetWitness Packet Capture/Analysis, Vectra Cognito and Stream, Carbon Black Cloud AV/EDR, Microsoft Defender for Endpoint and Identity, FireEye NX, EX, HX and AX Sandbox, & Palo Alto NGFW with WildFire Sandbox & Prisma.
- Proficient in Microsoft Office 2000 or later with particular emphasis on Microsoft Word, Excel, PowerPoint, and Project, and other applicable database and office automation products.
- Working technical knowledge of network and host-based intrusion detection and prevention systems.
- Experience with vulnerability scanning tools, and security information and event management (SIEM) and correlation tools.
- Proven depth and breadth of experience as identified in the responsibilities section.
- Displays technical experience with conducting research and providing review recommendations on incidents, threats, vulnerabilities & risks.
- Experience with NIST Special Publications and guidance.
- Strong problem-solving and analysis skills, self-motivated, and able to work and communicate in a team environment.
- Excellent communication (written and verbal) skills.
Education:
- Bachelor's degree or higher in computer science, Information Technology, Information Security, or similar fields. Relevant experience may be taken in lieu of degree.
Certifications:
- A minimum of at least one (1) certification: Certified Information Systems Security Professional (CISSP), GIAC security certification (e.g. GCIH, GWAPT, GPEN, GSLC, etc.), DOD 8570 IAM Level II or higher.
Clearance level:
- Client Minimum Background Investigation (MBI) will be conducted.
Work Location:
- Remote (Initial onboarding in Arlington, VA). Minimal travel to the Washington, D.C. Metro Area may be required if requested by the client.
-
Cybersecurity Engineer
1 week ago
Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full timeJob SummaryWe are seeking a highly skilled Cybersecurity and Infrastructure Security Agency General Engineer to join our team. As a key member of our National Risk Management Center, you will play a critical role in developing solutions to complex problems related to critical infrastructure.Key ResponsibilitiesApply futures and strategic foresight methods to...
-
Cybersecurity Engineer
1 week ago
Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full timeJob SummaryWe are seeking a highly skilled Cybersecurity and Infrastructure Security Agency Engineer to join our team at the Cybersecurity and Infrastructure Security Agency. As a key member of our team, you will be responsible for developing and implementing engineering solutions to protect critical infrastructure systems from cyber threats.Key...
-
Operational Planning Manager
7 days ago
Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full timeJob SummaryWe are seeking a highly skilled Operational Planning Manager to join our team at the Cybersecurity and Infrastructure Security Agency. As a key member of our team, you will be responsible for leading the development and maintenance of strategic plans to support our cybersecurity and infrastructure security initiatives.Key ResponsibilitiesLead the...
-
Cybersecurity Contract Lead
20 hours ago
Arlington, Virginia, United States Guidehouse Full timeJob SummaryGuidehouse is seeking a highly experienced Cybersecurity Contract Lead to manage and coordinate the implementation of enterprise cybersecurity planning, authorization, monitoring, operations, response, and engineering activities and integration through all phases of the development lifecycle.Key ResponsibilitiesFormulate and enforce work...
-
Supervisory Operational Planner
2 days ago
Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full timeJob SummaryWe are seeking a highly skilled Supervisory Operational Planner to join our team at the Cybersecurity and Infrastructure Security Agency. As a key member of our operations team, you will be responsible for leading the development and maintenance of strategic plans, policies, and procedures to support the agency's cybersecurity and infrastructure...
-
Cybersecurity Contract Lead
1 day ago
Arlington, Virginia, United States Guidehouse Full timeJob SummaryGuidehouse is seeking a highly skilled Cybersecurity Contract Lead to manage and coordinate the implementation of enterprise cybersecurity planning, authorization, monitoring, operations, response, and engineering activities and integration through all phases of the development lifecycle.Key ResponsibilitiesFormulate and enforce work standards,...
-
Lead Cybersecurity Specialist
2 days ago
Arlington, Virginia, United States Leidos Full timeJob Title: Lead Penetration TesterLeidos is seeking a highly skilled Lead Penetration Tester to join our team. As a key member of our Digital Modernization Sector, you will play a critical role in supporting the Department of Homeland Security's (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Security Operations Center (SOC).Job Summary:We are...
-
Cybersecurity Operations Planner
1 day ago
Arlington, Virginia, United States Peraton Full timeJob SummaryWe are seeking a highly skilled Cybersecurity Operations Planner to join our team at Peraton. As a key member of our Federal Security Cyber sector, you will play a critical role in developing and implementing plans to protect, detect, respond to, and recover from cybersecurity risks or incidents.ResponsibilitiesAs a Cybersecurity Operations...
-
Cybersecurity Operations Planner
2 weeks ago
Arlington, Virginia, United States Peraton Full timeJob SummaryWe are seeking a skilled Cybersecurity Operations Planner to join our team at Peraton. As a key member of our Federal Security Cyber sector, you will play a critical role in developing and implementing plans to protect our nation's critical infrastructure and national interests from cybersecurity risks and incidents.ResponsibilitiesAs a...
-
Director of Cybersecurity Operations
3 weeks ago
Arlington, Virginia, United States Surescripts Full timeJob SummarySurescripts is seeking a highly skilled and experienced Director of Cybersecurity Operations to lead our Threat Management program. As a key member of our information security team, you will be responsible for identifying and mitigating cyber threats to our network and systems.Key ResponsibilitiesOversee the implementation and management of...
-
Lead Cybersecurity Specialist
3 weeks ago
Arlington, Virginia, United States Leidos Full timeAbout the RoleWe are seeking a highly skilled Lead Penetration Tester to join our team at Leidos. As a key member of our Digital Modernization Sector, you will play a critical role in supporting the Department of Homeland Security's (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Security Operations Center (SOC).Key Responsibilities:Establish...
-
Cybersecurity Manager
3 weeks ago
Arlington, Virginia, United States SecuriGence LLC Full timeJob Title: Cybersecurity ManagerSecuriGence LLC is seeking a highly skilled Cybersecurity Manager to lead and strengthen our security posture. As a key member of our team, you will be responsible for developing and implementing comprehensive security strategies, vision, processes, and protocols to ensure the confidentiality, integrity, and availability of...
-
Cybersecurity Program Manager
3 weeks ago
Arlington, Virginia, United States Department of Homeland Security Full timeCybersecurity Program Management OpportunityThe Department of Homeland Security (DHS) is seeking a highly skilled Cybersecurity Program Manager to join the Cybersecurity and Infrastructure Security Agency (CISA) in the Joint Cyber Defense Collaborative (JCDC) office. As a key member of the JCDC team, you will oversee and manage cyber capability operations...
-
Cybersecurity Specialist
4 weeks ago
Arlington, Virginia, United States Leidos Holding Full timeJob SummaryLeidos is seeking a highly skilled Cybersecurity Specialist to join our team. As a Cybersecurity Specialist, you will be responsible for providing cybersecurity support and services to our clients.Key ResponsibilitiesAssist in the development and implementation of cybersecurity policies and procedures.Conduct risk assessments and provide...
-
Cybersecurity Architect
3 weeks ago
Arlington, Virginia, United States Red Gate Group Full timeJob Title: Cybersecurity Engineer IIIWe are seeking a seasoned Cybersecurity Engineer III to support DARPA's Adaptive Capabilities Office (ACO). This role involves working closely with military services to address critical national security challenges.Key Responsibilities:Develop and implement cybersecurity policies, including Assessment and Authorization...
-
Cybersecurity Specialist
2 days ago
Arlington, Virginia, United States Global Systems Technologies Full timeJob SummaryGlobal Systems Technologies is seeking a highly skilled Cybersecurity Specialist to provide engineering and cybersecurity support services for engineering analysis, Transportation Security Equipment (TSE) development, configuration control board, technical reviews of deliverables, and other technical documentation. The ideal candidate will have a...
-
Cybersecurity Director
2 weeks ago
Arlington, Virginia, United States Commonwealth of Virginia Full timeAbout the PositionThe Commonwealth of Virginia is seeking a highly skilled and experienced professional to serve as the Director of Cyber and Innovation Programs at the National Security Institute (NSI) at George Mason University's Antonin Scalia Law School.Job SummaryThe Director of Cyber and Innovation Programs will be responsible for overseeing NSI's...
-
Cybersecurity Director
4 weeks ago
Arlington, Virginia, United States Commonwealth of Virginia Full timeAbout the PositionThe Commonwealth of Virginia is seeking a highly skilled and experienced professional to fill the role of Director of Cyber and Innovation Programs. This position will be responsible for overseeing the development and implementation of cyber and innovation programs, including creating and managing a cybersecurity clinic and leading other...
-
Cybersecurity Expert
1 month ago
Arlington, Virginia, United States Zetier Full timeSenior Technical Lead OpportunityZetier is seeking a highly skilled Senior Technical Lead to support our efforts in Arlington, VA. This role requires a strong foundation in cybersecurity, programming, and problem-solving.Key Responsibilities:Develop and maintain low-level software applications using C/C++, uBoot, and kernel drivers.Reverse engineer compiled...
-
Cybersecurity and Infrastructure Security Agency
2 weeks ago
Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full timeJob SummaryThis is a critical hiring need position for a Physical Scientist, General Engineer, or Economist at the Cybersecurity and Infrastructure Security Agency. The selected candidate will serve as a leader in developing novel approaches to future risk identification and guiding the transformation of technical information into actionable policy and...