Security Operations Center (SOC) Deputy Program Manager and Technical Lead

Security Operations Center (SOC) Deputy Program Manager and Technical Lead

Hill Associates Corporation is seeking a Security Operations Center (SOC) Lead to join our team supporting the Office of the Chief Information Officer (OCIO) in a large Washington, D.C. Cabinet-level Federal agency. The position will report to the consulting team’s Program Manager. The position will primarily focus on leading a team of 15+ SOC analysts and providing technical expertise for incident analysis. It will involve interfacing with system and service owners and contract support staff for SOC infrastructure and operations, which may be both federal employees and contractors. In addition, the position will need to interface with other Bureau SOC personnel.

The SOC Lead role will require strong technical expertise involving Security Information and Event Management (SIEM) tools such as Splunk and incident handling. Additionally, the SOC Lead must be able to direct the team to ensure shift and daily tasks are complete as per documented standard operating procedures. Communication with the Program Manager is essential, and the candidate must be able to present potential threats and incidents to the Government customer.

Remote-based support in the Washington, D.C. area is currently authorized

Responsibilities include:

The SOC Lead will be responsible for managing day to day operations of a team of 15+ analysts that monitor a 24x7x365 enterprise-level security operations center. Responsibilities include the following:

  • Ensure incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring.
  • Work collaboratively with other cybersecurity teams and business units.
  • Drive the implementation of emerging threat intelligence (Indicators of Compromise [IOCs], updated rules, etc.) to identify affected systems and the scope of attacks.
  • Implement standards and procedures to ensure alerts are addressed with relevancy, accuracy, and in a timely manner.
  • Define protocols and maturing of ‘playbooks’ for operational response to cyber threats.
  • Operate autonomously to further investigate and escalate in accordance with policies, procedures, and defined processes.
  • Provide teaching / mentoring to SOC Level I, II & III Analysts.
  • Lead SOC analysts during incident response actions, advise, and coordinate with leadership during active incidents.
  • Identify, evaluate, develop and report SOC-related metrics via dashboards and/or reports.
  • Manage shift schedules and lead SOC personnel.
  • Develop, lead and present relevant Cybersecurity tabletop exercises to SOC staff and relevant stakeholder groups for the purposes of identifying process improvement opportunities.

Requirements:

  • Master’s degree and at least five years of SOC experience, incident response management, or similar experience, or a bachelor’s degree with at least 15 years of relevant experience.
  • Top Secret Security Clearance required
  • Experience in managing or supporting SOC analysts and working in a high-paced environment.
  • Strong leadership, problem-solving and critical thinking skills. Ability to prioritize and execute autonomously.
  • Ability to communicate effectively with all levels of staff, management, and clients both verbally and in writing.
  • Strong understanding of the latest security principles and protocols.
  • Strong understanding of security operations technologies including SIEM, endpoint tools, and network-based logs.
  • Knowledge of emerging technologies and tactics used within a SOC, and how they are applied to improve efficiency and effectiveness.
  • Understanding of tactics, techniques, and procedures associated with cyber threats and the ability to develop relevant alerting, countermeasures, and threat hunting techniques.

What We Can Offer You

Hill Associates is an affirmative action and equal opportunity employer. Employment decisions will be made without regard to race, color, religion, sex, age, national origin, military status, veteran status, handicap, physical or mental disability, sexual orientation, gender identity, genetic information, or other characteristics protected by law.

If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Hill Associates Recruiting Team at 202-656-6505 or via email at careers@hillasc.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.

Hill Associates offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.