Security Operations Center (SOC) Chief

The qualified candidate will perform the following tasks:

•    Plans, directs, and coordinates the Security Operations for the program.

•    Monitor security tools and controls.

• Work closely with technical leadership (government / program / management)
• Support security updates, configurations, and integration of new tools in response to the evolving threat landscape
• Oversee operational incident management and recommend enhancements of the customer’s monitoring suite of solutions, including working with service owners to ensure proper monitoring procedures are in place and necessary adjustments are made.
• Provide guidance and direction on operations for cloud-based Cyber Defense systems and services
• Consult with PMO, system engineers, system administrators, cloud security architects, and developers to set the direction for security monitoring and threat detection across enclaves.
• Assist the government with incorporating detection mechanisms for unauthorized, security related configuration changes.
• Assist the government in developing, maintaining, and updating catalog of standard operating and response procedures and protocols
• Provide productivity, service level, and key performance metrics in support of business objective
• Experience driving discussions with senior government personnel regarding trade-offs, best practices, project management and risk mitigation
• Demonstrated ability to collaborate with stakeholders and business owners to provide guidance and recommendations on improving IT infrastructure  
• Ensures proper implementation of required government policy (i.e., NISPOM, DCID 6/3, ICD, NIST) and others leading team to ensure compliance across all activities
• Excellent written and verbal communication skills, with a strong attention to detail and superior ability for problem solving.
• Skilled at directing a large team and executing responsibilities without direct supervisor.

20 Years of work experience

Education:  Masters degree in an information technology field and 10+ years of relevant technical experience.  Experience must include 2+ years direct leadership/supervision of a team comprised of no less than 10 personnel

supporting an IT security related mission. Must possess 4+ years in a technical administrator role in SOC environments and/or in an ISSE/ISSO/ISSM role.

Successful candidate will have completed one of the following certifications:

ISACA Certified Information Security Manager (CISM) Certification
GCIH – GIAC Certified Incident Handler
GSOC – GIAC Security Operations Certified
GMON – GIAC Continuous Monitoring Certifications

Desired Certifications

Any of the following would be a +: ITIL, PMP, Agile, Cloud Security Certifications, Splunk, or HBSS/McAfee ePO.