Cyber Security Incident & Response Manager

Responsibilities for this Position

Location: USA FL MacDill AFB
Full Part/Time: Full time
Job Req: RQ211454


Type of Requisition:
Regular

Clearance Level Must Currently Possess:
Top Secret/SCI

Clearance Level Must Be Able to Obtain:
Top Secret/SCI

Public Trust/Other Required:
None

Job Family:
Cyber and IT Risk Management

Job Qualifications:

Skills:
Cyber Incident Response, SIEM Tools, Splunk (Inactive)
Certifications:
None
Experience:
10 + years of related experience
US Citizenship Required:
Yes

Job Description:

Advance your career while impacting our national security in cyber as a Cybersecurity Manager at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

As a Cybersecurity Manager, the work you'll do at GDIT will be impactful to the mission of US Battlefield Information Collection and Exploitation System eXtended (US BICES/-X). You will play a crucial role in managing the Cyber Detect Incident & Response team. You will provide line management, leadership and strategic direction for the team and liaise closely with other managers. In addition, this role identifies potential security risks, recommends mitigation measures and implements remediation measures.

Responsibilities:

• Monitor system health using government provided tools on a 24x7x365 basis
• Monitor security tools and controls.
• Support security updates, configurations and integration of new tools in response to the evolving threat landscape.
• Maintain situational awareness in the intelligence driven landscape and respond to reporting from a DCO perspective.
• Oversee operational incident management and recommend enhancements to the customer's monitoring suite of solutions, including working with service owners to ensure proper monitoring procedures are in place and necessary adjustments are made.
• Track and monitor the health of the capability delivery services to include Scheduled and Emergency Maintenances.
• Assist the government with incorporating detection mechanisms for unauthorized, security related configuration changes.
• Manage all incident response and monitoring systems in terms of Operations-Based, Ticket & Alert-Driven mindset.
• Assist the government in developing, maintaining, and updating catalog of standard operating and response procedures and protocols.
• Ensure Knowledge Base Articles are available for technicians to use.
• Gather and analyze metrics to benchmark the Operations Center workload/performance and identify security trends and issues.
• Provide productivity, service level, and key performance metrics in support of business objectives.
• Continuously review reporting requirements and current data collection methods to ensure efficiency. Work with teams to collaborate in the most efficient way to report and retrieve data.
• Experience driving discussions with senior government personnel regarding trade-offs, best practices, project management and risk mitigation.
• Demonstrated ability to collaborate with stakeholders and business owners to provide guidance and recommendations on improving IT infrastructure.
• A proactive approach to identifying issues and problems, areas for improvement, and performance bottlenecks along with an ability to offer and implement solutions to address these.
• Experience creating dashboards to track service health that appeal to both technical and non-technical audiences preferably with Splunk.
• Monitor CVA activity in real time and direct/coordinate activities as appropriate.
• Participate in joint exercises spanning teams across the globe to develop/refine IR TTPs.
• Excellent written and verbal communication skills, with a strong attention to detail and superior ability for problem solving.
• Skilled at directing a small team and executing responsibilities with minimal supervisor interaction.

Required Qualifications:

• 10+ years of experience.
• BA/BS or the equivalent combination of education, technical training, or work/military experience.
• Must meet DOD 8750 requirements and be eligible for IAT level III & CSSP Incident Response upon hire for positions with elevated privileges and must obtain ITIL V4 Foundation within six months of hire. Additional specific certifications may be required, depending on job assignment.
• Must possess and maintain a Top Secret/SCI Security Clearance.
• Ability to work in a team-oriented, collaborative environment.
• Ability to work efficiently in a fast-paced environment and multi-task while still ensuring high quality of work.
• Highly organized with strong ability to prioritize work and work autonomously.
• Excellent verbal and written communication skills.
• Great attention to detail and presentation.
• Results driven, highly efficient, energetic, and highly motivated.
• Must possess a high degree of intelligence, competence, maturity, adaptability, resilience, integrity, and initiative.
• The work is typically performed at client site locations, which requires proper safety precautions; work may require some physical effort in the handling of light materials, boxes, or equipment.

Preferred Qualifications:

• CISSP certification.
• Cyber Security Service Provider Management experience.
• Experience with SIEM - SPLUNK, KIBANA.
• Knowledge of Virtualization technologies: VMWare, Citrix, and Microsoft
• Familiarity of concepts such as DevSecOps, Infrastructure as Code, Software Defined Data Center, Continuous Deployment, and Continuous Integration desired.
• Knowledge of Network level: WAN and LAN connectivity, routers, firewalls, security internal systems, cloud and network infrastructure.
• Experience with firewalls and firewall rule sets.

The likely salary range for this position is $112,840 - $126,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:
40

Travel Required:
Less than 10%

Telecommuting Options:
Onsite

Work Location:
USA FL MacDill AFB

Additional Work Locations:

Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281716764

Back To Search Results

GDIT supports and secures some of the most complex government, defense, and intelligence projects across the country.

Ask A Question

Share this job

URL Copied!

• #OpportunityOwned
• #WeAreGDIT
• #GDITCareers