Lead Security Engineer
DescriptionPhase One Consulting Group is seeking is a Lead SOC Engineer with federal security experience to support a security operations center for a federal agency. This role will be responsible for incident monitoring, detection, analysis, and handling; monitoring security systems and analyzing alarms and events for potential threats and intrusions; categorizing alarms and events; notifying client POC of all incidents, system outages, system health degradation; generating and submitting security incident tickets and reports; and analyzing and assessing incidents, or suspected incidents, that are reported from internal and external sources.ResponsibilitiesPerform Security Incident Management aligned with NIST, DoD or DHS standardsOversight, monitoring and tuning of security systems, including the following: Intrusion Detection & Prevention Systems; Endpoint Security Systems; Security Information and Event Management Systems; Web Proxy Systems; Log Management Systems; Firewall Systems; Full Packet Capture Systems; Data Loss Prevention Systems; Object Level Auditing Systems; Endpoint Forensics; Wireless LAN Monitoring Systems; Database Security Monitoring; Compliance & Threat Modeling SystemsDevelop and maintain security policies, procedures, Run Book and Incident Management Plan. Manage consistent daily, weekly and event-based reporting, and manage knowledge base for sharing and transfer of experience.Perform gap analysis and provide recommendations on security issues, and scale systems to take into account new threat or devices and valuate and contribute to the security posture of the organization Position RequirementsProven leader with strong skills for building Client relationships with excellent oral and written communication skill10 years of IT security workBachelor's degree in IT or related fieldRelevant industry certifications are required, including, but not limited to GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Certified Intrusion Analyst (GCIA), ECIH, or other relevant certificationsCandidates must be able to work on-site at Federal Agency located in the Washington, DC area and must be able to pass a US Federal government Public Trust Background Investigation (or higher), form SF85P and obtain a client badge, and be a US Citizen Company Profile Since 1997, Phase One Consulting Group has supported an impressive portfolio of clients with their strategic and tactical modernization initiatives. Phase One's clients are typically large organizations of 70,000 or more employees with budgets exceeding $15B that benefit from our multifaceted and proven approach that has resulted in top-rated and award winning business transformation programs. Phase One Consulting Group is an equal opportunity and affirmative action employer regardless of a person's race, color, religion, national origin, age, disability, military status, gender or sexual orientation.