Tier 2 IR Day Shift - Military Veterans
Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates, and reports any suspected and confirmed security violations.
Leidos is seeking an experienced Deputy Program Manager to lead this highly visible cyber security operations center (SOC) for Customs Border Protection (CBP), cyber analysis, application development, and a 24x7x365 support staff.
+ Shift schedule: 7am-7pm, Sun-Tues, every other Wednesday.
+ Utilize state of the art technologies such as host forensics tools(FTK/Encase), Endpoint Detection & Response tools, log analysis (Splunk) and network forensics (full packet capture solution) to perform hunt and investigative activity to examine endpoint and network-based data.
+ Conduct malware analysis, host and network, forensics, log analysis, and triage in support of incident response.
+ Recognize attacker and APT activity, tactics, and procedures as indicators of compromise (IOCs) that can be used to improve monitoring, analysis and incident response.
+ Develop and build security content, scripts, tools, or methods to enhance the incident investigation processes.
+ Lead Incident Response activities and mentor junior SOC staff.
+ Work with key stakeholders to implement remediation plans in response to incidents.
+ Effectively investigative and identify root cause findings then communicate findings to stakeholders including technical staff, and leadership.
+ Flexible and adaptable self-starter with strong relationship-building skills
+ Strong problem solving abilities with an analytic and qualitative eye for reasoning
+ Ability to independently prioritize and complete multiple tasks with little to no supervision
+ Bachelor’s degree in Science or Engineering Field, IT, or Cybersecurity or related field
3+ years of experience be in the areas of incident detection and response, remediation malware analysis, or computer forensics.
Prior relevant experience should be in the areas of incident detection and response, malware analysis, or computer forensics.
Ability to script in one more of the following computer languages Python, Bash, Visual Basic or Powershell
Clearance: A Secret Clearance is required with the ability to obtain a Top Secret SCI. In addition to specific security clearance requirements all CBP SOC employees are required to successfully complete a CBP Background Investigation to support this program
+ Experience in Federal Government, DOD or Law Enforcement in CND, IR or SOC role
+ Cyber Kill Chain Knowledge
Candidate should possess one of the following certs: CCNA, CCNP, CCSP, CEH, CNDA, DCITA, ECES, ECSA, ECSP, ECSS, ENSA, GCIA, GCIH, GISF, GNFA, GPPA, GWEB, LPT, OSCP, OSEE, SEI
Pay Range:Pay Range $78,000.00 - $120,000.00 - $162,000.00
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.
At Leidos, quality performance means two things:
- Satisfying our customers by delivering the products and services they need on time and in budget.
- Continuously improving our processes so that our work meets requirements and is done right the first time.
Our proprietary EngineeringEdge® solution gives us a consistent, company-wide approach to planning, designing, developing, and delivering solutions that achieve our customers’ goals. Comprehensive and customizable, EngineeringEdge is based on industry standards and best practices from:
- CMMI®, the CMMI Institute.
- Project Management, the Project Management Institute.
- the International Organization for Standardization (ISO®).
- the International Council on Systems Engineering/INCOSE Corporation.
- Electronic Industries Alliance.
- Our four decades experience on a wide range of programs.
Many Leidos organizations have been able to earn coveted CMMI maturity level 3 and higher, as well as ISO 9001 organizational designations.
In addition, we have our own high standards for ethics and performance. Investors : Employee Code of Conduct
What does this mean to our clients? High quality products and services, developed in an environment committed to continuously improving processes and uncompromising ethics.