Security Operations Team Lead
Washington, DC

Job Description

ValidaTek, Inc. is an award-winning Small Business that provides high-security mission-critical IT services to the Federal Government. Our commitment to excellence in service delivery has resulted in dramatic growth and an expanding client base that includes several U.S. Federal Departments. The corporate infrastructure is robust and based on industry best practices as evidenced by our DCAA Approved accounting system, ISO 9001:2015, ISO 20000-1:2011, and ISO 27001:2013 certifications, and CMMI Level 5 for Services (CMMI-SVC Level 5) and CMMI Level 3 for Development (CMMI-DEV Level 3) appraisals. We pride ourselves in being the best and only attracting and retaining the best talent to fuel our rapid growth. We promote a strong employee-focused corporate culture that provides a diverse, prosperous and rewarding place to work. We provide our employees with competitive benefits, educational assistance, and career growth opportunities. Every employee is valued for their contributions and we all take pride in helping our customers achieve their goals, which in turn contributes to the overall success of the company.

http://www.validatek.com/

Position Description:

As part of a team supporting the operations and maintenance of a world-wide Enterprise IT environment covering application hosting and support, enterprise services and infrastructure services, tis candidate will serve as a Security Operations Manager for the Department of State, Bureau of Consular Affairs, Office of Consular Systems and Technology. The ideal candidate be well versed in procedural/technical cyber security and will manage resources responsible for security monitoring, incident response, application security, database security, network security, digital forensics, perimeter security policy change management, network segmentation, vulnerability remediation, compliance enforcement, POA&M execution, external audit response, security guide authoring, and reporting on security metrics.

* Plans, assigns and supervises the activity of the Security Operations teams.
* Recruits, hires, trains, and assesses the security operations staff.
* Manages response to inquiries, requests and mandates from the Security Operations Government Technical Monitor
* Plans and directs security projects, tasks, and initiatives and the execution of security operations procedures.
* Develops, reviews and revises SO policies.
* Identifies technical capability needs for all security operations activities and manages projects, initiatives and change requests to develop, acquire or enhance those capabilities.
* Tasks and manages the SOC monitoring lead, IA specialists, firewall and network segmentation leads.
* Measures SOC performance metrics and communicates the value of security operations to business leaders.
* Establishes relationships and manages communications with intra-agency security teams, inter-department security teams and third-party security service providers.
* Recommends how to optimize security-monitoring tools based on threat hunting discoveries and should be familiar with a variety of security monitoring sensors, analysts tools, SIEM security research tools and digital forensic tools (i.e. Splunk, AlienVault, etc.).
* Plans and advises on budget and acquisition for security tools, licensing, maintenance, professional support and training
* Perform other duties as assigned

Position Requirements/Qualifications:

Education and Certifications

* Bachelors Degree in related field preferred, or equivalent combination of education and experience
* Active Secret Clearance
* ITIL v3 Foundation (Required within 90 days of hire)
* CISSP required
* Splunk Certified Power User preferred
* Certified Security Incident Handler (GCIH, CIHE, CEIH, CCSIH, etc. - preferred)

Knowledge and Experience

* Strong leadership and communication skills
* 5+ years experience managing projects and tasks
* 5+ years experience managing teams of at least 15 direct reports in an operations support environment experience managing 25+ direct reports preferred
* 4+ years combined experience with application, database, network and perimeter security; hands on experience with one or more technologies preferred 7+ years experience preferred
* 3+ years experience in a security incident response role
* Demonstrates familiarity with using data visualization tools
* Demonstrates familiarity with using penetration testing tools
* Demonstrates familiarity with digital forensics tools and best practices
* Experience working with the Department of State (Preferred)
* Experience working with Atlassian Jira (preferred)
* Demonstrates excellent attention to detail
* Ability to solve practical problems and deal with a variety of variables
* Strong interpersonal skills including mentoring, coaching, collaborating, and team building
* Strong analytical, planning, and organizational skills with an ability to manage competing demands
* Strong knowledge and understanding of business needs with the ability to establish/maintain high level of customer trust and confidence

Applicants who are selected for employment will be required to verify authorization to work in the United States.

ValidaTek is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, or disability status.