Security Operations Center Manager

Job Description

Description

SAIC is seeking a Security Operations Center (SOC) Detection Manager/Sensor Grid Support Manager to work onsite with our customer in Quantico, VA. This position supports the Marine Corps Cyberspace Operations Group (MCCOG).

This position is contingent upon contract award. If awarded, work will begin in Fall 2023.

Job Summary: The (SOC) Detection Manager will manage a team of Senor Grid Support specialist that include Endpoint Security Solutions (ESS); Network Intrusion Detection and Prevention (NID/PS); Security Information Event Management (SIEM) solution; and cyber incident detection rules and signatures solutions residing on-premise, and in the cloud.  Lead the support team that is responsible for maintaining the accreditation and authorization to operate documentation for these systems as well as performing systems integration when the Government acquires new technologies.  
 

Duties and Responsibilities:
•    Manage the CTR workforce assigned to the Sensor Grid Support team.
•    Serve as the senior expert across the Sensor Grid Support tasks.
•    Manage the Endpoint Security Solution (ESS) Support team.
•    Manage the Network Sensor Support team.
•    Manage the Signature Development  team.
•    Serve as the senior SIEM SME by leveraging Snort, Regex, and YARA.  
•    Provide Security Information and Event Management (SIEM) subject matter expertise in Kafka, Red Hat Linux, Elastic Search, Logstash, and Kibana.
•    Monitor, analyze, and modify SIEM as necessary.
•    Maintain a culture of continuous learning and improvement by updating the tactics, techniques, procedures, training, and education documentation related to this task.  

Qualifications

Position Requirements:

• Active TS/SCI clearance
• Bachelors and fourteen (14) years or more experience; Masters and twelve (12) years or more experience; PhD or JD and nine (9) years or more experience.
• Three (3) years of experience specifically in Sensor Grid Support.
• At least five (5) years overall experience with DCO and cyber security tools
• Possess DoDD 8570 CSSP Infrastructure Support certification
• Possess DoDD 8570 IAT Level II certification or greater
• Experience managing an enterprise-grade Security Information and Event Management toolset, including maintenance, cyber analytics and correlation use cases.
• Experience leveraging network and ESS sensors and other DCO tools to enhance the detection of adversary activity in a large enterprise network.

View Additional positions with this team here: https://jobs.saic.com/mccogEM

Overview

SAIC® is a premier Fortune 500® technology integrator driving our nation's technology transformation. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes secure high-end solutions in engineering, digital, artificial intelligence, and mission solutions. Using our expertise and understanding of existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions that are critical to achieving our customers' missions.

We are approximately 26,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer, fostering a culture of diversity, equity, and inclusion, which is core to our values and important to attract and retain exceptional talent. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.4 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom.