Shift Leads/Security Operation Center

Company Description

Comtech is a woman-owned small business founded in 1998 and headquartered in Reston, VA. We offer IT solutions across the disciplines of program/project management, applications development, infrastructure, Cyber security, and enterprise content/data management services. We have developed our methodologies and processes based on the IT Infrastructure Library (ITIL) v.3 Framework across enterprise infrastructure operations. These methodologies and processes are reinforced through our organization’s externally accredited certifications, which include ISO 9001:2008 Quality Management System (QMS), ISO/IEC 20000-1:2011 IT Service Management Systems (SMS, corporate ITIL certification), ISO 27001:2005 Information Security Management System (ISMS), and CMMI-DEV Level 3"

Job Description

Job Description:

There will be one Shift Lead in each shift. A Lead is the subject matter expert for all intrusion detection-monitoring activities during their assigned shift. The Task Lead must have the ability to support detailed discovery and analysis of intrusion detection security events, in order to assure that quality work is performed. The Task Lead is the single point of final incident reporting review and escalation. The Task Lead acts as a point of contact for escalations to Management or the Judiciary Automated Systems Incident Response Capability (JASIRC) and releases all notification created by their team to the Courts. The Task Lead will ensure that all incidents are clearly documented and process timely and have been reviewed for quality: the ability to communicate clearly both orally and in writing. The Shift Task Lead will deliver in Microsoft Word a quality written shift lead report detailing work performed during the shift. The report may be shared with Executive Management.

Qualifications

Education:

High School Diploma. Bachelor’s degree in Information Systems, Computer Science or related field is preferred.

General Experience:

Seven years of security intrusion detection examination experience involving a range of security technologies that product logging data; to include wide area networks host and network IPS/IDS/HIPs traffic event review, server web log analysis, raw data logs.

Specialized Experience:

Contractor will have at least two years as a cyber security or security operations shift team leader. Contractor will have at least five years’ experience working at a senior level, performing analytics examination of logs and console events in the following working experience areas of; creating advance queries methods in Splunk or advance Grep skills, firewall ACL review, examining Snort based IDS events, Pcaps, web server log review, and working in a SIEM environment.

 The contractor must possess at least one (1) of the following certifications:

•  GIAC Certified Intrusion Analyst (GCIA) 
  
• EC-Council's Certified Security Analyst(ECSA)
  
•  GIAC Certified Perimeter Protection Analyst (GPPA) 
  
• GIAC Certified Enterprise Defender (GCED)
  
•  Systems Security Certified Practitioner (SSCP) 
  
•  Certified Information Systems Security Professional(CISSP)

Current Shifts:

Week day shift (Monday – Friday) – we will have three 8.5 hours shifts with the start times being7am to 3:30 pm, 3:00 pm to 11:30 pm, and 11:00pm to 7:30am Weekend (Saturday and Sunday) – we will have two 12.5 hour shifts. 7:00am to 7:30 pm, 7:00 pm to 7:30am

All the shifts have a 30 min overlap.

Additional Information

** Please share me your updated word copy of Resume.

*** I Appreciate, if you can  refer  someone who is looking for this position.

Contact  703 291 0984