Security Operations Center (SOC) Chief

GDIT is seeking an experienced GDIT is seeking an experienced Security Operations Center (SOC) Chief to join its Intelligence and Homeland Security (IHS) Group. In this role you will perform as a domain knowledge expert with experience managing enterprise-level Network Monitoring and  Service Desk support consisting of multiple Tiers, including 24X7X365 support, and providing monitoring and sustainment support from SW inception through operations.  You will bring your demonstrated ability to understand government expectations and partner it with technology for desired business results.  The qualified candidate will perform the following tasks:

•    Monitor system health using government provided tools on a 24x7x365 basis
•    Monitor security tools and controls.
•    Support security updates updates, configurations and integration of new tools in response to the evolving threat landscape
•    Oversee operational incident management and recommend enhancements of the customer’s monitoring suite of solutions, including working with service owners to ensure proper monitoring procedures are in place and necessary adjustments are made.
•    Track and monitor the health of the capability delivery services to include Scheduled and Emergency Maintenances
•    Assist the government with incorporating detection mechanisms for unauthorized, security related configuration changes.
•    Manage all incident response and monitoring system in terms of Operations-Based, Ticket & Alert-Driven mindset 
•    Assist the government in developing, maintaining, and updating catalog of standard operating and response procedures and protocols
•    Drive Ticket Deep Dive and develop strategies for improvement
•    Ensure Knowledge Base Articles are available for technicians to use
•    Gather and analyze metrics to benchmark the Operations Center workload/performance and identify trends in call center issues
•    Provide productivity, service level, and key performance metrics in support of business objective
•    Continuously review reporting requirements and current data collection methods to ensure efficiency. Work with teams to collaborate on the most efficient way to report and retrieve data
•    Experience driving discussions with senior government personnel regarding trade-offs, best practices, project management and risk mitigation
•    Demonstrated ability to collaborate with stakeholders and business owners to provide guidance and recommendations on improving IT infrastructure  
•    A proactive approach to identifying issues and problems, areas for improvement, and performance bottlenecks along with an ability to offer and implement solutions to address these.
•    Experience creating dashboards to track service health that appeal to both technical and non-technical audiences preferably with Splunk.
•    Excellent written and verbal communication skills, with a strong attention to detail and superior ability for problem solving.
•    Skilled at directing a large team, and executing responsibilities without direct supervisor.

20 Years experience

Education:  Masters

Successful candidate will have completed the following certification:

ISACA Certified Information Security Manager (CISM) Certification
GCIH – GIAC Certified Incident Handler
GSOC – GIAC Security Operations Certified
GMON – GIAC Continuous Monitoring Certifications