Join our talent network

Job #: R-00010302_35928252067_0
Location: Alexandria, VA
Category: Cyber Security
Schedule (FT/PT): Full time
Travel Required: No
Shift: Day
Potential for Telework: No
Clearance Required: Secret
Referral Eligibility: Eligible
Group: Civil

Job Description:

No two career paths will ever look the same. At Leidos, we know the most talented and diverse IT and cyber security professionals will always have a multitude of career choices; your time at Leidos will be a wise investment in your career and in yourself. We welcome your perspective and ideas, in order to foster collaboration and deliver world-class solutions. We look for solutions that not only transform businesses, but change the world.

Leidos has an immediate need for a SOC Manager for the Incident Response and Monitoring & Analysis functional areas of the DHS Enterprise Security

Operations Center (ESOC). This individual will provide technical operations oversight for ~25 staff with both an Incident Response and Monitoring and

Analysis lead as direct reports. This position reports to the Senior Program Manager for the contract.

The SOC Manager must be a self-starter with excellent analytical and problem-solving skills, flexibility, high energy, good judgment, and the ability to coordinate multiple,

concurrent tasks in an effective manner working in a collaborative and supportive fashion with team other members. This individual must be an excellent communicator

and leader as this role will be interfacing directly with the Program Manager, Government Watch Officers (GWOs), and the ESOC Director on a daily basis. The individual

will be expected to foster team spirit and morale.

Responsibilities include:
  • Providing any direction required to the Monitoring and Analysis Technical lead who runs a 24x7x365 operation.
  • Providing any technical leadership required to the senior incident response engineers who provide consulting/remediation support to the M&A team
  • Supporting the government watch offices (GWOs) so they have all required information to support their leadership
  • Working with DHS Component SOCS to coordinate the resolution of incidents and security event notices
  • Meeting NCCIC requirements for reporting incidents across DHS within required deadlines
  • Creating and publishing Situational Reports for "hot" incidents under investigation by DHS
  • Creating and publishing FISMA compliance reports
  • Ensuring shifts handovers work in a fashion transparent to DHS leadership
  • Running daily mid-day stand-up meetings
  • Analyzing malware to take preventative measures
  • Ensuring the quality of incident response tickets
  • Providing DHS email hygiene working with the DHS Electronic Messaging (Email) team
  • Providing an incident response "fly team" to other DHS locations to perform vulnerability analysis in direct response to major incidents
  • Maintaining SOC process documentation
  • Creating the strategy and providing direction to the Splunk content development team
  • Participating in Continuous Improvement activities driven by the project manager
  • Coordinate incident response activities across Component SOCs including providing technical direction and oversight.


EDUCATION & EXPERIENCE:

Requires Bachelors Degree in Computer Science, Engineering, Information Technology, Cyber Security, or related field and 12 to 15 years of prior relevant experience or Masters with 10 to 13 years of prior relevant experience.

Must have a Secret Clearance with the ability to obtain a minimum of Top Secret/SCI. In addition to specific security clearance requirements all Department of Homeland Security SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program.
  • 7+ years of relevant experience in a SOC
  • Excellent communication and writing skills
  • Previous leadership/management experience
  • Technical knowledge and experience with one or more of incident response, malware analysis, packet capture, networking protocols, Splunk, Bluecoat, Cisco, router technology, Remedy and/or the RSA/Archer product and/or other related security technologies.
  • One or more advanced security certifications such as CISSP, CEH, GCIH, or related certifications.
  • Expertise with the entire Microsoft Office product suite - Excel, Powerpoint, Word


DESIRED SKILLS:

Experience in cyber government, and/or federal law enforcement. Cyber Kill Chain knowledge.

Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 32,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.19 billion for the fiscal year ended December 28, 2018. For more information, visit www.Leidos.com .

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here .

Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a Leidos.com email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to spam.leidos@leidos.com .

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

Talent Community

Join our Talent Community to create a profile, enabling a streamlined application process and to help our recruiters better understand your areas of expertise and interest.

Join our Talent Community