Cybersecurity/SOC Manager

Data Systems Analysts, Inc. (DSA) is a leading Information Technology and Management Consulting firm, delivering solutions to Federal, State and Local Government and commercial industry. We are best known for Knowledge & Information Management, Energy Management & Environmental Sustainability, Enterprise Systems Development & Operations and Cyber Security and Information Assurance. With offices in the DC Metropolitan Area and across the nation, we serve Fortune 500 decision makers and Federal, State and local government agencies throughout the U.S. Location: The primary places of performance are at the customer facilities in Research Triangle Park (RTP)/Raleigh/Durham/Chapel Hill, North Carolina. Occasional travel may be required to customer sites throughout the Contiguous U.S., Alaska, Hawaii, and Puerto Rico. Job Description:The Cybersecurity Manager will serve as the technical expert and operations manager for an enterprise cyber-Security Operations Center (SOC) and will manage the security operations team in providing 24x7x365 incident management and response activities, as required, and provide leadership in carrying out executive leadership s strategic vision. The Cybersecurity Manager will provide technical guidance, build and maintain customer relationships, and manage and oversee day-to-day operations of the SOC. The ideal candidate will have strong leadership, technical, and advisory skills and the ability to lead teams, tasks and projects of 20+ junior, mid, and senior level resources. Primary Responsibilities:

• Work directly with the contract Program Manager and customer to establish direction, priorities, provide overall operational guidance, and manage day-to-day operations of the SOC.
• Build, staff, lead, and manage a 24x7x365 SOC along with scope, deliverables, resource assignments, and status reporting and tracking.
• Create compliance reports, dashboards, and support the audit process and measure SOC performance metrics and report on security operations to senior leadership.
• Select and deploy diverse SOC tools and infrastructure and build a team that is capable of acting upon events and maintaining infrastructure.
• Expert understanding of log and monitoring management systems, security event monitoring systems, threat intelligence, network-based and host-based intrusion detection systems, firewall technologies, end-point detection and response technologies and anti-malware solutions.
• Provide assessment for a wide range of incidents, events, and situations and provide potential resolutions.
• Be adept at managing crises; provide front-line leadership in coordinating responses to a wide range of events.
• Instill and reinforce industry best practices in the domains of incident response, cybersecurity analysis, case and knowledge management, and SOC operations.
• Promote and drive implementation of automation and process efficiencies.
• Provide strategic direction for core security program elements, including security governance and compliance, awareness and training, security operations, security assessments, Cloud services security, and continuous diagnostics and mitigation (CDM).
• Provide thought leadership and SME value to client interactions. Create strategies for developing win themes and addressing business challenges and opportunities uniquely and distinctly.
• Technology advocate and proficient in project management tools.

• Must be a US Citizenship.
• Must have an active Secret clearance.
• Bachelor s degree in Computer Science, Information Systems, Business, or other related discipline is required. Four (4) additional years of experience in /Information Security will be an acceptable substitute for a Bachelor s degree.
• Minimum of five (5) years of experience managing a cyber SOC (or similar cybersecurity team) in a complex environment.
• Minimum of three (3) years of hands-on experience utilizing a Security Information and Event Management (SIEM) system.

• Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), or Certified Ethical Hacker (CEH).
• Minimum of three (3) years of experience developing, documenting, and implementing processes to comply with NIST 800-61.
• Demonstrated experience recommending, designing, documenting, implementing, and/or managing an enterprise network security architecture.
• Current Project Management Professional (PMP) or Program Management Professional (PgMP) certification.