SOC/CND Lead

Employer
TDI
Location
Quantico, VA
Posted
Jul 17, 2017
Closes
Jul 17, 2017
Function
Accountant, IT
Hours
Full Time
Job DescriptionThe SOC/CND (Computer Network Defense) Lead will be involved in all aspects of managing the Security Operations Center (SOC), Incident Management (IM), Vulnerability Management, Endpoint Security, and Web Security subtask areas, and personnel that are responsible for accomplishing those areas. Lead the CND Team in providing CND, including analyzing network traffic, identifying malicious and unauthorized activity, and responding to intrusion incidents; implementing, configuring, operating, and maintaining network defense systems; and auditing network security controls, managing vulnerabilitiesLead the implementation of approaches to reduce CND lifecycles and progress towards more automated capabilitiesLead the development, update, and maintenance of a rigorous Lifecycle Management Plan (LCMP) for all task area equipment, software, and hardware in coordination with Asset ManagementLead the transition of the Security Operations Center (SOC) and Incident Management (IM) teams to a 24x7x365 support schedule. Must have:At least three years of experience managing an incident response team in a DOD environment.Experience supporting a DOD Security Operations Center or Command Operations Center.Minimum of five years of experience (at least one year of relevant experience in the past three years) as a technician using DOD enterprise cyber tools, such as, ACAS, HBSS, SIEM, Firewalls, and NAC.Possesses an active DOD 8570.01-M CNDSP IAM-II level certification and IAT-III level certification: CAP, CASP, CASP CE, CISM, CISSP(or Associate), GSLC, CISA, GCED, GICSP, GCIHTop Secret (fully adjudicated SSBI) / SCI eligibleDesired:Experience supporting Defensive Cyber Operations at the DOD Joint level such as USCYBERCOM and NSA/Central Security Service (CSS).Experience working for the National Mission Force, USCYBERCOM or Service Cyber Protection Team (CPT).Experience as an expert technician using any of the following CND tools: SIEM, IDS, PowerShell, Kali Linux, Burp Suite, Metasploit, and meterpreter.Experience as an expert in any of the following CND tactics and techniques: malware analysis, network exploitation, packet analysis, snort signature development, red team and hunt team. Company DescriptionTDI was founded in 2001 to pursue Cyber Security as its core competency. Since inception, TDI has led or participated in more than 100 separate information security tasks in the government and commercial areas around the world. TDI has outstanding credentials in its core capabilities of penetration testing, program management, information security, C&A, FISMA compliance, and all areas of cyber security engineering. We pursue the latest developments in information security through active lecturing at international information security conferences, publishing information security articles, and working on the cutting edge of information security development programs.Mission Statement:"We provide our clients the peace of mind that their business is running in a safe and secure environment. We do this by delivering high-quality, innovative information assurance and cyber security services and solutions."Vision Statement:"TDI will be an acknowledged global leader in information assurance and cyber security by delivering outstanding service and superior outcomes for our customers."We Believe:Employees are our primary source of strengthEmployees should enjoy their work, feel part of the company, and share in its profitsOur clients deserve the top talent in Information AssuranceTotal access to senior management and openness with each other is a cornerstone to our successOur work environment promotes and rewards employee initiativeA flexible organization is always open to new ideas and solutionsOur well managed growth preserves our cultureWe have a responsibility to contribute meaningfully to the field of Information Assurance, influence its growth, and set the standard.