Security Operations Center Lead with ArcSight experience
Req #: 237244
Job Category:Information Technology
Minimum Clearance Required: Secret
CACI’s Business and Information Technology Solutions (BITS) Sector, is seeking an experienced Cybersecurity SME and SOC Lead to support a large Department of Homeland Security (DHS) contract. If you are a motivated individual looking to be a part of critical mission, CACI would like to speak with you.
What You'll Get To Do:
The qualified candidate will support incident detection and response. This role leads and further develops a team of analysts responsible for 24x7x365 monitoring of threats, as well as the tools and processes that support the core mission of defending the organization against cyber-threats. This position requires ability to work independently as well as within groups. Sensitivity to accuracy, timeliness, and professionalism in all areas of support activity is imperative.
More About the Role:
Lead and manage the Security Operations Center.
Security event monitoring, management and response.
Incident identification, assessment, quantification, reporting, communication, mitigation and monitoring..
Compliance to SLAs to include process adherence and process improvisation to achieve operational objectives
Revision and development of processes to strengthen the Security Operations Framework.
Team and vendor management, monitoring and management of the use of resources supporting the Security Operations Center.
Management, administration, and maintenance of security devices under the purview of ITRC.
Performance of threat management, threat modeling, identification of threat vectors and development of use cases for security monitoring.
Responsible for integration of standard and non-standard logs in SIEM.
Creation of reports, dashboards, metrics for SOC operations and presentation to Sr. Mgmt.
You'll Bring These Qualifications:
US Citizenship required.
Current DHS HQ Entry on Duty (EOD) holders given preference. EOD is required to start.
DoD SECRET clearance required.
Must have ArcSight and multi-vendor IDS/IPS experience.
Must have DOD 8570/8140 compliant certification(s).
In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
In-depth understanding of ports, protocols, and network traffic analysis as it relates to network security.
Experience using troubleshooting technique including but not limited to; network sniffers, syslog, and the Firewall capture command.
Understanding of information security principles as it relates to systems and network security.
Understanding of best practices and processes for change and release management.
Understanding of federal contracting environment with the ability to lead and direct the security operations center staff.
Ability to create repeatable processes, escalation instructions and work scripts as needed for shift agents.
Proficiency with ServiceNow ITSM, P-NET, EMS.
Understanding of industry standard best practices regarding secure protocols in a daily operations and maintenance environment.
Experience in threat management.
Knowledge of various operating system including but not limited to Windows, Linux, Unix.
Knowledge of applications, databases, middleware to address security threats against the same.
Proficient in preparation of reports, dashboards and documentation.
Excellent communication and leadership skills.
Working knowledge and experience with MS office with proficiency in Excel.
These Qualifications Would be Nice to Have:
Relevant DHS focused experience
ITIL v3 certification
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.