Principal Cyber Incident Manager

General Dynamics Information Technology
Arlington, VA
May 17, 2018
May 21, 2018
Full Time
Leads a team of personnel who perform the role of primary Incident/Hunt Coordinator for all incident response and cyber hunt engagements requiring focused response, containment, investigation, and remediation. Ensures assigned personnel follow the appropriate incident escalation and reporting procedures; coordinate response action to identified threats and incidents Recommends a course of action on each incident/hunt and create, manage, and record all actions taken and serve as initial POC for Events of Interest reported both internally and externally. Provides support promptly and efficiently through front-line telephone and email communications. Ingest, triage, prioritize, assign, track, document, and manage incidents, cyber hunts and results Provide technical support in response to computer security incidents and cyber hunts; proficient in identifying cyber incident root causes and information necessary to determine root cause Correlate, map, and fuse any and all incident/hunt information for the development and distribution of cyber alerts and notices, or other products as required Document technical details of current or potential cyber incidents. Must be flexible and able to work within a 24 X 7 X 365 support environment. Manage information, requests, that may be considered out of the scope of the incident management or hunt service and route appropriately Coordinate, communicate, share information, and work closely with teams within HIRT, within NCCIC and outside of NCCIC Initiates and maintains contact with affected parties during incident response/hunt lifecycle. Develops Standard Operating Procedures and Performance Metrics Provides oversight of incident/hunt data flow and response, content, and remediation, and partners with other incident response centers (hunt centers/engagements) in maintaining an understanding of threats, vulnerabilities, and exploits that could impact networks and assets. Provide significant insight into the management of complex incident response and hunt engagements, programs and initiatives with high threat and large scope.Participates in special projects as required. Additional Notes:This position could be deployed in the field on-site at a DHS customer to support/perform incident response or cyber hunt activities if the need arises.This position could possibly be designated as critical to agency operations and may be required to be deployed as part of an Emergency Relocation Group (ERG) in conjunction with COOP deployment or emergency activation team. Active Top Secret Security Clearance with SCI eligibility is required. In addition, must be able to obtain and maintain a favorably adjudicated DHS background investigation for continued employment8-10 years of related experience in data security administration.As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.WIIS14

Similar jobs