Computer Security Incident Response Center (CSIRC) Lead - Cyber Security Solutions, LLC Atlanta, GA, USA Bookmark Share Print 983 1 4

Listing Description

Overview

**This role fulfills an open requirement for Tantus' protégé firm, CSS.**

Cyber Security Solutions (CSS) is looking for a Computer Security Incident Response Center (CSIRC) lead that enjoys working in a highly collaborative environment with a fantastic mission to join our team. This is a vital role to ensure the security and well-being of our nation’s Healthcare and Public Health (HPH) sector. In this role, you will ensure the OCISO strives to improve the Department’s cybersecurity posture by identifying, verifying, and understanding cyber events and incidents in order to respond, mitigate, and provide 24x7x365 situational awareness to its stakeholders (both internal and external).

The CSIRC acts as a Security Operations Center with 24x7x365 coverage through multiple shifts executed in a federal space located in Atlanta, GA. Normal operating hours in the Atlanta office are 7AM-4PM. The CSIRC lead ensures that all CSIRC shifts are fully staffed and coordinated by shift “leads”. The CSIRC will supervise these leads and develop processes for coordinating, communicating, and reporting with the federal CSIRC lead. #CSSfederal

What You'll Do

Responsibilities include but are not limited to the oversight of day-to-day operations for the CSIRC team, maturing processes and driving new innovations. The lead is a high visibility role and requires a strong technical leader with outstanding customer service skills capable of planning and executing to meet core objectives. Other duties and responsibilities:

- Lead 24x7x365 shift leads and CSIRC team, foster innovation, and drive accountability

- Responsible for 24/7 Cybersecurity Incident Analysis & Investigation and Network Operations Analysis & Investigation

- Validate and report cybersecurity incidents to the United States Computer Emergency Readiness Team (US-CERT)

- Be a thought leader in security engineering and operations delivery - driving automation, analytics, and advanced threat analysis.

- Oversee technical delivery, assessing and continually improving output and ensuring processes are developed and adhered to in order to drive operational excellence.

- Benchmark, analyze, report on, and make recommendations for the improvement and growth of the infrastructure and systems.

- Participate in meetings and keeping stakeholders informed of risks to the enterprise and the status of mitigations.

- Keep current with the latest vendor updates, expansion opportunities, and technology directions, utilized in the environment.

- Establish operational foundations, defining metrics and KPIs to drive governance, quality, and efficiency. Influence and improve existing processes through innovation and operational change.

- Manage staffing, including recruitment, supervision, scheduling, development, evaluation, and disciplinary actions.

- Develop and maintain an educational environment where the knowledge and performance of the group is constantly advancing.

- Perform annual staff appraisals.

- Develop and mentor staff through open communication, training and development opportunities, and performance management processes; build and maintain employee morale and motivation.

Must Haves

- Bachelor’s Degree from four-year college or university Information Technology, Information Security/Assurance, Engineering or similar area of study; at least 5 years related experience and/or training; or equivalent combination of education and experience preferred.

- Excellent verbal and written communications

- Demonstrated understanding of Information Security and Networking required.

- Knowledge of NIST 800-61 and experience in applying these guidelines in operations

- Demonstrated technical knowledge of current network security, network hardware, protocols, and standards required.

- Proven ability to diagnose and troubleshoot technical issues required

- Proven ability to make decisions and perform complex problem-solving activities under pressure.

- Previous management and project leadership experience required.

- Candidates should reside in the Atlanta, GA area. Relocation assistance will not be provided.

- An active ITIL, CISSP or CISM certification is desired

- Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job.

- Ability to acquire and maintain a public trust security clearance. Preference will be given to candidates with active clearances.Oversee day-to-day operations for the CSIRC team, maturing processes and driving new innovations.

Lead 24x7x365 shift leads and CSIRC team, foster innovation, and drive accountability

Responsible for 24/7 Cybersecurity Incident Analysis & Investigation and Network Operations Analysis & Investigation

Validate and report cybersecurity incidents to the United States Computer Emergency Readiness Team (US-CERT)

Be a thought leader in security engineering and operations delivery - driving automation, analytics, and advanced threat analysis.

Oversee technical delivery, assessing and continually improving output and ensuring processes are developed and adhered to in order to drive operational excellence.

Benchmark, analyze, report on, and make recommendations for the improvement and growth of the infrastructure and systems.

Participate in meetings and keeping stakeholders informed of risks to the enterprise and the status of mitigations.

Keep current with the latest vendor updates, expansion opportunities, and technology directions, utilized in the environment.

Establish operational foundations, defining metrics and KPIs to drive governance, quality, and efficiency. Influence and improve existing processes through innovation and operational change.

Manage staffing, including recruitment, supervision, scheduling, development, evaluation, and disciplinary actions.

Develop and maintain an educational environment where the knowledge and performance of the group is constantly advancing.

Perform annual staff appraisals.

Develop and mentor staff through open communication, training and development opportunities, and performance management processes; build and maintain employee morale and motivation.