Overview
On Site
USD 81,250.00 - 146,875.00 per year
Full Time
Skills
Tier 1
Leadership
Network operations
Application development
Internet
Policies
Communication
Network security
Management
Incident management
Mentorship
Accountability
Metrics
Articulate
Workflow
Firewall
Military
Training
Technical analysis
EOD
Security clearance
Cisco Certifications
GSEC
Security+
Customer engagement
Copy editing
SSCP
Malware analysis
Reverse engineering
IT management
Network
Cyber security
Design engineering
Service desk
Operations
NIST SP 800 Series
ISO/IEC 27000-series
Documentation
Information security management
Risk assessment
DevOps
Agile
System on a chip
Market analysis
Law
Job Details
Leidos is seeking a Cyber Tier 1 Shift Lead to join our team on a highly visible cyber security single-award IDIQ vehicle that provides Network Operations Security Center (NOSC) support, cyber analysis, application development, and a 24x7x365 support staff.
The DHS NOSC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC. Direction and coordination are achieved through a shared DHS incident tracking system and other means of coordination and communication.
The Monitoring and Analysis team provide 24x7 support across 4 different shifts. We have front half shifts (day and night) and back half shifts (day and night). The front half shift will work 12-hour shifts from Sunday - Tuesday and alternating Wednesdays. The back half shift will work 12-hour shifts from Thursday - Saturday and alternating Wednesdays. Candidates must have the ability to work non-core hours, if necessary.
Duties include network security monitoring and detection, proactively searching for threats, inspecting traffic for anomalies and new malware patterns, investigating and analyzing logs, providing analysis and response to alerts, and documenting activity in NOSC investigations and Security Event Notifications (SENs).
Primary Responsibilities
Basic Qualifications
Preferred Qualifications
Original Posting Date:
2024-10-09
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $81,250.00 - $146,875.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
The DHS NOSC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC. Direction and coordination are achieved through a shared DHS incident tracking system and other means of coordination and communication.
The Monitoring and Analysis team provide 24x7 support across 4 different shifts. We have front half shifts (day and night) and back half shifts (day and night). The front half shift will work 12-hour shifts from Sunday - Tuesday and alternating Wednesdays. The back half shift will work 12-hour shifts from Thursday - Saturday and alternating Wednesdays. Candidates must have the ability to work non-core hours, if necessary.
Duties include network security monitoring and detection, proactively searching for threats, inspecting traffic for anomalies and new malware patterns, investigating and analyzing logs, providing analysis and response to alerts, and documenting activity in NOSC investigations and Security Event Notifications (SENs).
Primary Responsibilities
- Supervise and manage a small team (7-12) of Cyber Network Defense Analysts (CNDAs) within the NOSC in support of the government customer
- Manage and conduct hands-on technical detection, analysis, containment, eradication, and remediation as a member of the Incident Response team
- Guide and mentor peers and subordinates to provide cross training
- Ensure accountability and punctuality of security analysts assigned to your shift
- Capture cybersecurity metrics that support executive-level briefings (daily, weekly, monthly)
- Articulate daily challenges to the Government Watch Officer (GWO)
- Analyze web and host logs for indications of compromise
- Remediate and coordinate the remediation of infected or compromised devices
- Ensure shift continuity during call-outs and emergencies
- Compile incident reports, executive summaries, and analysis reports of intrusions and/or security events
- Document and update processes, workflows, and technical guides
- Perform simple firewall rule changes (after training)
Basic Qualifications
- BS Degree and 4-8 years of experience. Additional experience/training and or advanced cyber certifications may be considered in lieu of a degree
- Military experience and training may be considered in lieu of degree
- Experience conducting detailed technical analysis of Cybersecurity Events and Incidents
- Must have current TS/SCI. In addition to specific security clearance requirements, all Department of Homeland Security SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program.
- Must have one of the following certifications: CCNA-Security, CYSA+, GICSP, GSEC, Security+ CE, CND, SSCP
Preferred Qualifications
- Malware reverse-engineering experience considered a plus
- 2+ years of experience as an operations/technical lead on similar projects (operations centers considered a plus)
- Experience supporting 24x7 missions
- Experience in network and cybersecurity design, engineering and operations
- Experience with Service Desk support and operations
- Experience with NIST SP 800 series or ISO 27000 series documents for information security management and risk assessment
- Understanding of DevOps/Agile concepts and processes
- Extensive KSAs in SOC methodologies and processes
Original Posting Date:
2024-10-09
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $81,250.00 - $146,875.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.