SOC Operations Lead

Alexandria, VA, United States

Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you’ll help protect our national security while working on innovative projects that offer opportunities for advancement.

Currently, ManTech is seeking a motivated, mission-oriented SOC Operations Lead in Falls Church / Alexandria, VA.

This is a hybrid position, that will last approximately 4 to 5 months, supporting the US government. This position is expected to become fully onsite in the near future . As a SOC Operation Lead, you will overseas an enterprise level security operations center and is responsible for directing and supervising all CND activities reported by the Shift Leads and accountable for the team leads.  The SOC Operations Lead on occasion develops bulletins, advisories, and reports from shared intelligence research and reporting.

Responsibilities include but are not limited to:

Contributes to rule and signature creations for IDS/IPS strategies.

Contributes with dashboard creations in Splunk for threat hunting for known common threat vectors and Advanced Persistent Threats (APT).

Provide a point of interaction between government management, contractor management, and the SOC analysts.

Identify and mitigate of CVEs within the environment.

DISA STIG analysis and implementation.

Perform vulnerability scanning through Tenable.

Supervise the Network Security Monitoring Team and Leads to ensure efficient processing of alerts from a variety of sources.

Verify that Shift Leads are conducting proper delegation of duties among team members to satisfy all Service Level Agreement requirements.

Evaluate work performed by team leads and to ensure that customer expectations are met.

Performs overviews of team leads evaluations of team members.

Gather and evaluate performance through the use of metrics to identify potential performance and/or behavioral deficiencies and provide corrective actions when necessary.

Manage and contribute to the completion of milestones related to multiple ongoing and simultaneous projects.

Contributes to the development of a comprehensive training plan for all related cyber security operations.

Work with the customer to create Standard Operating Procedures (SOPs), and Work Processes and Instructions; solicit input from and provide guidance to the analysts regarding workflows and products.

Liaison with customer with recommendations during development phase of Tabletop Exercises.

Acts as an observer during Tabletop Exercises conducted by shift leads and analysts from each shift. Evaluate the effectiveness of the SOPs and Work Flows as well as gauge the capability and development of the analysts.

Insuring the focal point of motivation and provides senior leadership mentoring to the analysts while achieving mission accomplishment.

Command the workspace during major events and critical incidents.

Required qualifications:

Minimum of 8 years' experience in a field directly related to Security Operation.

CISSP certified

Knowledgeable of IT operations, platforms, functions, and terminology.

Demonstrated mastery of desktop systems and/or various software applications and concepts.

Preferred Qualifications:

Splunk certification

Bachelor’s or master’s degree in an IT or Engineering

Security Clearance Requirement:

Ability to obtain and maintain a Public Trust clearance

Physical Requirements:

Sedentary work that primarily involves sitting/standing/walking/Talking and must be able to remain in a stationary position 50%

Moving about to accomplish tasks or moving from one work site to another

The person in this position needs to occasionally move about inside the office to access file cabinets, office machinery, etc.

Requires frequently communicates with co-workers, management, and customers

Communicating with others to exchange information

Working with computers

Must be able to lift and move hardware weighing up to 50 pounds

Secure our Nation, Ignite your Future

Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you’ll help protect our national security while working on innovative projects that offer opportunities for advancement.

Currently, ManTech is seeking a motivated, mission-oriented SOC Operations Lead in Falls Church / Alexandria, VA.

This is a hybrid position, that will last approximately 4 to 5 months, supporting the US government. This position is expected to become fully onsite in the near future . As a SOC Operation Lead, you will overseas an enterprise level security operations center and is responsible for directing and supervising all CND activities reported by the Shift Leads and accountable for the team leads.  The SOC Operations Lead on occasion develops bulletins, advisories, and reports from shared intelligence research and reporting.

Responsibilities include but are not limited to:

Contributes to rule and signature creations for IDS/IPS strategies.

Contributes with dashboard creations in Splunk for threat hunting for known common threat vectors and Advanced Persistent Threats (APT).

Provide a point of interaction between government management, contractor management, and the SOC analysts.

Identify and mitigate of CVEs within the environment.

DISA STIG analysis and implementation.

Perform vulnerability scanning through Tenable.

Supervise the Network Security Monitoring Team and Leads to ensure efficient processing of alerts from a variety of sources.

Verify that Shift Leads are conducting proper delegation of duties among team members to satisfy all Service Level Agreement requirements.

Evaluate work performed by team leads and to ensure that customer expectations are met.

Performs overviews of team leads evaluations of team members.

Gather and evaluate performance through the use of metrics to identify potential performance and/or behavioral deficiencies and provide corrective actions when necessary.

Manage and contribute to the completion of milestones related to multiple ongoing and simultaneous projects.

Contributes to the development of a comprehensive training plan for all related cyber security operations.

Work with the customer to create Standard Operating Procedures (SOPs), and Work Processes and Instructions; solicit input from and provide guidance to the analysts regarding workflows and products.

Liaison with customer with recommendations during development phase of Tabletop Exercises.

Acts as an observer during Tabletop Exercises conducted by shift leads and analysts from each shift. Evaluate the effectiveness of the SOPs and Work Flows as well as gauge the capability and development of the analysts.

Insuring the focal point of motivation and provides senior leadership mentoring to the analysts while achieving mission accomplishment.

Command the workspace during major events and critical incidents.

Required qualifications:

Minimum of 8 years' experience in a field directly related to Security Operation.

CISSP certified

Knowledgeable of IT operations, platforms, functions, and terminology.

Demonstrated mastery of desktop systems and/or various software applications and concepts.

Preferred Qualifications:

Splunk certification

Tenable experience

Bachelor’s or master’s degree in an IT or Engineering

Security Clearance Requirement:

US Citizenship

Ability to obtain and maintain a Public Trust clearance

Physical Requirements:

Sedentary work that primarily involves sitting/standing/walking/Talking and must be able to remain in a stationary position 50%

Moving about to accomplish tasks or moving from one work site to another

The person in this position needs to occasionally move about inside the office to access file cabinets, office machinery, etc.

Requires frequently communicates with co-workers, management, and customers

Communicating with others to exchange information

Working with computers

Must be able to lift and move hardware weighing up to 50 pounds

The projected compensation range for this position is $99,200-$164,600. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. In addition, ManTech invests in it’s employees beyond just compensation. ManTech’s benefits offerings include, dependent upon position, Health Insurance, Life Insurance, Paid Time Off, Holiday Pay, Short Term and Long Term Disability, Retirement and Savings, Learning and Development opportunities, wellness programs as well as other optional benefit elections. For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone.

ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.

If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click [email protected] and provide your name and contact information.

When you apply for a job at ManTech, you are taking the first step toward a new adventure. Trailblazing technology, incredible professional development and the opportunity to serve our nation. All while Securing the Future .

ManTech provides mission-focused technology solutions and services for U.S. defense, intelligence and federal civilian agencies. In business for more than 52 years, we excel in full-spectrum cyber, data collection & analytics, enterprise IT, and systems and software engineering solutions that support national and homeland security.

More than 9,300 talented professionals around the globe make up the ManTech family and nearly half are veterans. As a ManTech employee, you will work for a winning team alongside colleagues that support and inspire you. You will also have access to tuition assistance, partnerships with universities and institutions, professional groups that comprise our Communities of Practice, community service opportunities, Technical Recognition Awards, Career Enablement/Mobility programs and so much more.

What are you waiting for? Click “Apply” and start your adventure today.

#J-18808-Ljbffr