Security Operations Center Lead – WOOD Consulting Services – Dulles, VA

WOOD Consulting Services

WOOD Consulting Services

Job details

Job Type
Full-time

Indeed’s salary guide

  • Not provided by employer
  • $114K – $145K a year is Indeed’s estimated salary for this role in Dulles, VA.
 

Full Job Description

Overview:

Security Operations Center Lead
www.woodcons.com

Seeking a Security Operations Center (SOC) Lead. The SOC Lead will lead a team of security engineers with extensive technical experience in enterprise data networks, systems engineering and architecture, security monitoring, capacity planning, systems engineering, cloud infrastructure, and troubleshooting. The team’s primary mission is to manage SOC and incident response teams by delivering and operating critical network threat detection and forensics services. The services include IDS/IPS, SIEM, case management, and packet capture.

Security Clearance Requirements:
This position requires all candidates to be
U.S. Citizens and possess an Active Secret clearance with the ability to obtain a TS/SCI. Candidates must be able to receive DHS suitability prior to starting employment.

Responsibilities:

  • Plans, directs, and coordinates the Security Operations Center for the program.
  • Work closely with technical leadership (government / program / management).
  • Develop and present performance reports and metrics.
  • Develop and meet performance management requirements.
  • Provide technical leadership for an engineering team of cloud security specialists.
  • Consult with cloud team and leadership to set the direction for security monitoring and threat detection.
  • Ensure the successful integration of cloud logging and security monitoring services with SIEM.
  • Direct the development and implementation of rules/signatures in SIEM, and other monitoring platforms, to detect and alert on suspicious activity in Raytheon’s public cloud environments.
  • Direct the deployment and management of cloud logging and security monitoring services for AWS and Azure Cloud environments.
  • Provide guidance and direction on operations for cloud-based Cyber Defense systems and services.
  • Support cloud-related service migrations to AWS or Azure.
  • Provide guidance on system administration of Cloud based automation tools.
  • Direct the development of Infrastructure-as-Code playbooks (e.g. Terraform).
  • Ensure testing and evaluation of new cloud services.
  • Direct a team on Incident Response / security investigations in cloud environments.
  • Ensures proper implementation of required government policy (i.e., NISPOM, DCID 6/3, ICD, NIST) and others leading team to ensure compliance across all activities.

Qualifications:

Required Education & Years of Experience
  • BS Cyber Security Engineering, Systems Engineering, Computer Science, Computer Engineering, Computer Information Systems, OR a related field.
    • Two years of related work experience may be substituted for each year of degree level education.
  • 10+ years of directly relevant experience.
Required Skills
  • 4+ years management in SOC environments in both personnel and technology to include all aspects of personnel management including hiring, performance management, training/compliance, annual salary planning and all other dimensions.
  • 10+ years of directly relevant experience.
  • Minimum 3 years of professional experience working with AWS & Azure infrastructure and services in a security focused role.
  • Advanced knowledge of AWS & Azure architectural concepts.
  • Experience developing and implementing SIEM threat detection rules.
  • Demonstrated experience administering Linux based systems.
  • Excellent written and oral communication skills.
Desired Skills
  • Information Security and IT certifications: Cisco, Red Hat, AWS, etc.
  • Experience administering cyber security tools such as Firewalls, SIEM, and PCAP.
  • Experience with security log analysis.
  • Experience working on a Computer Incident Response Team (CIRT).
  • Previous experience working in a Security Operations Center (SOC).
  • Virtualization technologies, e.g., VMWare, HyperV, etc.
  • Automation and IaC tooling, e.g., Ansible, Terraform, etc.
  • Scripting in Python or Perl.
  • “Big Data” Analysis systems, e.g., Splunk, ELK, etc.
  • Understanding of Project Management and SDLC methodologies, especially Agile.
  • Experience with CNAPP.
Desired Certifications
  • GIAC, CISSP
WOOD is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Hiring Insights

Job activity

Posted Just posted










To apply for this job please visit www.indeed.com.


Job Location