Mantech

Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International, you’ll help protect our national security while working on innovative projects that offer opportunities for advancement.

ManTech is seeking a motivated, career and customer-oriented Security Operations Center (SOC) Manager to join our team in the Fairmount, WV area. You will manage the operations and performance of an enterprise-wide SOC. You will leverage your expertise to ensure the enterprise cybersecurity strategy is reviewed, updated, and adopted by all stakeholders.

The National Oceanic and Atmospheric Administration (NOAA) Office of the Chief Information Officer (OCIO) is seeking to acquire an integrated approach to support operations for NOAA Cyber Security Center (NCSC) and Department of Commerce’s (DOC) Enterprise Security Operations Center (ESOC). The focus of the NCSC and ESOC is to integrate, correlate, and enrich disparate information sources to provide actionable intelligence and advance information systems to a strong cyber security posture.

Responsibilities include but are not limited to:

• Plan, manage tasks, and direct resources to operate and maintain the NOAA SOC Operations on a 24/7 365 basis.

• Provide technical leadership to SOC analysts in executing on cybersecurity strategy and NOAA incident response plan.

• Lead a team of Security Operators and responsible for ensuring that enterprise information security standards are followed; Coordinating tasks to address potential, suspected, and confirmed IT security incidents and which countermeasures need to be deployed to defend, contain, and recover from an incident; Orchestrate the SOC response to major security threats.

• Provide technical expertise evaluating threats and vulnerabilities.

• Prepares cybersecurity reports by collecting, analyzing, and summarizing data and trends and provide ongoing reports.

• Maintain incident response procedures by ensuring compliance to standards and policies, developing and conducting training programs.

Required Qualifications:

• Possess one of the following technical certifications: DoD 8140; SANS DoD 8140 Cert Track; CompTIA DoD 8140
• A bachelor’s degree in computer science, IT, systems engineering, or a related field of study
• A minimum of (5) five years of experience managing large SOC environments
• Strong knowledge in cloud security, experience in resolving and mitigating vulnerabilities, designing security.
• Prior experience leading a team within a 24/7 SOC environment and demonstrated experience leading development of SIEM and SOAR capabilities.
• Expert understanding of the life cycle of cybersecurity threats, attacks, attack vector, and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs).
• Expert level experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT framework.
• Familiarity with Cloud concepts and experience performing monitoring and responding to threats in Cloud environments.

Clearance Requirements:

• Must be a U.S. citizen.
• Possess an active Top-Secret clearance.

Physical Requirements:

• Must be able to be in a stationary position more than 50% of the time 
• Must be able to communicate, converse, and exchange information with peers and senior personnel 
• Constantly operates a computer and other office productivity machinery, such as a computer 
• The person in this position frequently communicates with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations 
• The person in this position needs to occasionally move about inside the office to access file cabinets, office machinery, etc.