Deputy Program Manager

 

 

Requisition #: 1433

Job Title: Deputy Program Manager

Location: Reston, VA

Clearance Level: TS (SCI Eligible)

Required Certification(s): CISSP or CISSP-ISSMP or CISM or PMP

 

SUMMARY

 

Agile Defense is currently seeking a highly technical, hands-on Cybersecurity Operations Center (CSOC) Lead and Deputy Program Manager with advanced skillsets in cyber security, to develop and operate cyber security capabilities for a variety of federal customers. Candidates should have excellent written and oral communication skills, be able to work independently and as part of a team, with demonstrated leadership capabilities. Skills and experience in Cyber Operations, Security Event Analysis, Incident Response, Cyber Hunt, Forensics, Malware Analysis, and Cyber Threat Intelligence (skills in more than one cyber discipline are preferred) are required for this position. The ideal candidate will have hands-on experience supporting a 24x7x365 CSOC environment as an analyst or engineer, experience as a technical team lead within the SOC, and operations management experience. A solid understanding of cyber threats and information security in the domains of TTP’s, Threat Actors, Campaigns, and Observables. Additionally, the ideal candidate would be familiar with intrusion detection systems, intrusion analysis, security information event management platforms, endpoint threat detection tools, and security operations ticket management.

Corporate duties such as solution/proposal development, corporate culture development, mentoring employees, supporting recruiting efforts, will also be required. Position is contingent on successfully completing a program-based background investigation.

 

JOB DUTIES AND RESPONSIBILITIES

 

Serve as Deputy to the Program Manager of the CSOC Program to provide cyber defense capabilities to federal entities provide comprehensive Computer Network Defense support through security event monitoring, advanced analytics, cyber hunt, response and digital forensics, vulnerability assessment, and cyber intelligence activities in support of the SOC operational mission.

· Maintain a 24x7x365 schedule and minimum-manning requirements.

· Construct and optimize operational workflows for 24x7 teams across multiple shifts.

· Develop, collect, analyze security operational metrics to optimize CSOC performance and minimize organizational risk.

· Serve as a technical Cyber SME, onsite task lead, and primary point of contact for customer.

· Lead efforts Planning, organization, scheduling and progress reporting of various projects.

· Develop technical cyber security solutions in response to customer requests or in support of proposal solution development.

· Support new Agile Defense engagements as transitional program or operations lead.

· Support documentation of all business and workflow processes in this area.

· Provides technical consultation in cyber security capability development.

· Acts as a subject-matter expert to multiple tasks and/or programs.

· Provide technical writing support in support of corporate response to RFPs/RFQs from various customers

· Support new Agile Defense engagements as transitional program or operations lead.

· Provide technical writing support in support of corporate response to RFPs/RFQs from various customers.

 

QUALIFICATIONS

 

Candidates will have a minimum of 5 years of direct operational and program management experience in delivery of Cybersecurity program or related projects. Candidates will have a minimum of seven (7) years of professional experience with a solid understanding of incident response, insider threat investigations, digital forensics, and cyber threats.

A minimum of five (5) years of hands-on experience with experience in the last two (2) years that includes host-based and network-based security monitoring, identifying and analyzing anomalous activities with familiarity in insider threat monitoring software, host-based forensic tools, intrusion detection systems, intrusion analysis functions, security information event management (SIEM) platforms, endpoint detection and response tools, security operations ticket management.

 

Education, Background, and Years of Experience

Bachelor’s degree in computer science, engineering, STEM or cybersecurity

 

ADDITIONAL SKILLS & QUALIFICATIONS

Required Skills

 

The ability to create insider threat focused dashboards, reports and workflow diagrams. Experience collecting data, chain of custody and reporting results; handling and escalating security issues or emergency situations appropriately; providing incident response capabilities to isolate and mitigate threats to maintain confidentiality, integrity, and availability for protected data. Experience with mentoring junior members in an open collaborative environment.

 

Preferred Skills or Certifications

 

One of the following GCFA, GREM, GCIH, OSCP, GPEN, GFCE or equivalent preferred.

 

WORKING CONDITIONS

Environmental Conditions

 

Hybrid role in Reston, VA

Strength Demands

Physical Requirements