To our valued Leidos candidates:

Coronavirus is on everyone's mind with the effects being felt around the world. The markets are volatile, and we're all concerned for the health and safety of our families, friends, and colleagues. Please know that we're taking all necessary measures to safeguard our employees, customers and the communities in which we live, including following all recommended best practices around social distancing.

With that in mind, in an abundance of caution, we are canceling all face to face career events, such as job fairs and open house events. In the coming days and weeks, we will be hosting career events virtually, using our online chat tools so that we may continue our hiring practice safely and securely. You can find available virtual career events at https://career-events.leidos.com.

We are using telephone meetings and online chats via Brazen to conduct interviews and hiring discussions, and we are offering options for video interviews so that you can have a virtual face to face meeting with your potential new leader. We do not conduct interviews or extend offers via text or chat based social media, such as WhatsApp or MySpace.

Leidos will never ask you to provide payment-related information at any part of the employment application process, nor will Leidos ever advance money as part of the hiring process. And Leidos will communicate with you only through emails that are generated by Leidos.com automated system. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to Chris Scalia, Leidos’ Senior Vice President of Talent Acquisition, at [email protected].

As a company, as a country, as a world, we have confronted challenging moments before. We are confident that, guided by our values and the strength of our community as well as the commitment we have to the important work we do each day, we will find our way through this time together. We will do this with the care and concern for one another and the common good that defines. Please keep those impacted by the virus in your thoughts.

Close Window
Join our talent network
Skip to main content

Job #: R-00086861
Location: Ashburn, VA
Category: Cyber Operations
Schedule (FT/PT): Full Time
Travel Required: No
Shift: Day
Potential for Telework: No
Clearance: Top Secret/SCI
Referral Eligibility: Eligible
Referral Bonus Amount: $5000
Group: Intelligence

This job posting is no longer active.

Share: mail twitter linkedin

Description

Job Description:

Leidos is seeking a NOSC Shift Lead to join our team on a highly visible cyber security single-award IDIQ vehicle that provides Network Operations Security Center (NOSC) support, cyber analysis, application development, and a 24x7x365 support staff. 

Department of Homeland Security (DHS), Network Operations Security Center (NOSC) is a U.S. Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the DHS Enterprise.   The DHS NOSC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC. Direction and coordination are achieved through a shared DHS incident tracking system and other means of coordination and communication.


The Monitoring and Analysis team provide 24x7 support across 4 different shifts. We have front half shifts (day and night) and back half shifts (day and night). The front half shift will work 12-hour shifts from Sunday – Tuesday and alternating Wednesdays. The back half shift will work 12-hour shifts from Thursday – Saturday and alternating Wednesdays.  Candidates must have the ability to work non-core hours, if necessary.

Duties include network security monitoring and detection, proactively searching for threats, inspecting traffic for anomalies and new malware patterns, investigating and analyzing logs, providing analysis and response to alerts, and documenting activity in NOSC investigations and Security Event Notifications (SENs).

Primary Responsibilities

  • Supervise and manage a small team of Cyber Network Defense Analysts (CNDAs) within the NOSC in support of the government customer

  • Manage and conduct hands-on technical detection, analysis, containment, eradication, and remediation as a member of the Incident Response team

  • Guide and mentor peers and subordinates to provide cross training

  • Ensure accountability and punctuality of security analysts assigned to your shift

  • Capture cybersecurity metrics that support executive-level briefings (daily, weekly, monthly)

  • Articulate daily challenges to the Government Watch Officer (GWO)

  • Analyze web and host logs for indications of compromise

  • Remediate and coordinate the remediation of infected or compromised devices

  • Ensure shift continuity during call-outs and emergencies

  • Compile incident reports, executive summaries, and analysis reports of intrusions and/or security events

  • Document and update processes, workflows, and technical guides

  • Perform simple firewall rule changes (after training)

Minimum Requirements include:

  • Must have current TS/SCI. In addition to specific security clearance requirements, all Department of Homeland Security SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program

  • All NOSC Shift Lead candidates shall have a bachelor’s degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field AND a minimum of eight (8) years total professional experience in at least two of the areas listed below:

  • Vulnerability Assessment

  • Intrusion Prevention and Detection

  • Access Control and Authorization

  • Policy Enforcement

  • Application Security

  • Protocol Analysis

  • Firewall Management

  • Incident Response

  • Encryption

  • Web-Filtering

  • Advanced Threat Protection

  • Military experience and training may be considered in lieu of degree

  • Active advanced cybersecurity certification(s)

  • Experience conducting detailed technical analysis of Cybersecurity Events and Incidents

Candidates should also demonstrate the following:

  • Extensive knowledge of a SOC’s/NOSC’s purpose and role within an organization

  • Detailed understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc)

  • Expertise with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc).

  • Expertise with packet analysis tools such as Wireshark

  • Able to perform critical thinking and analysis to investigate cyber security alerts

  • Extensive knowledge of common malware and attack vectors

  • Extensive experience with Windows operating systems and standard OS logging

  • Extensive experience with Antivirus, DLP, and host-based firewalls

Must have at least one of the following certifications:

Comptia:         Security+, Network+, CASP

SANS GIAC:  GCIA, GCIH, GCFA, GPEN, GWAPT, GCFE, GREM, GXPN, GMON, GISF, or GCIH

EC Council:    CEH, CHFI, LPT, ECSA

ISC2:               CCFP, CCSP, CISSP CERT CSIH

Offensive Security: OSCP, OSCE, OSWP and OSEE

Preferred Qualifications

  • Malware reverse-engineering experience considered a plus

  • 2+ years of experience as an operations/technical lead on similar projects (operations centers considered a plus)

  • Experience supporting 24x7 missions

  • Experience in network and cybersecurity design, engineering and operations

  • Experience with Service Desk support and operations

  • Experience with NIST SP 800 series or ISO 27000 series documents for information security management and risk assessment

  • Understanding of DevOps/Agile concepts and processes

  • Extensive KSAs in SOC methodologies and processes

  • Experience with scripting languages (e.g. Python, Powershell, Javascript, VBS etc)

Pay Range:

Pay Range $94,250.00 - $145,000.00 - $195,750.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is a Fortune 500® technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, civil, and health markets. The company’s 44,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $13.7 billion for the fiscal year ended December 31, 2021. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.

Securing Your Data

Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at [email protected].

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Diversity

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

This job posting is no longer active.

Related Opportunities

Talent Community

Join our Talent Community to create a profile, enabling a streamlined application process and to help our recruiters better understand your areas of expertise and interest.

Join our Talent Community