Cyber Security Operations Center Team Lead - Day Shift

Secure our Nation, Ignite your Future

ManTech is seeking a motivated, career and customer-oriented Cyber Security Operations Center Shift Lead in McLean, VA
 

Key Responsibilities:

• Oversee the daily activities of CSOC Analysts during on your shift, ensuring adherence to processes and efficient operations. Ensure smooth handovers between shifts, providing clear and concise updates on ongoing incidents and investigations.
• Facilitate and lead complex investigations involving the entire team, leveraging both technical expertise and strategic thinking to drive incidents to resolution. Review and ensure the accuracy, thoroughness, and quality of investigations and incident responses conducted by the team.
• Serve as the primary point of contact for individuals and teams reporting security issues. Ensure effective communication with stakeholders, addressing concerns and providing timely updates. Act as the primary escalation point for complex incidents, determining appropriate escalation paths when necessary.
• Guide, coach, and mentor SOC analysts to continuously improve their investigative skills and incident response capabilities. Utilize a combination of Socratic questioning and the Scientific Method to foster critical thinking, helping the team develop hypotheses and systematically test them to arrive at confident resolutions.
• Ensure effective use of various cybersecurity tools, including SIEM, IDS/IPS, EDR, and threat intelligence platforms, optimizing their application in detecting and mitigating cyber threats.

Required Qualifications:

• 3+ years of experience in a security operations center; relevant degrees or certifications may qualify toward required years of experience
• Experience using a variety of cybersecurity tools, including SIEM, IDS/IPS, EDR, or similar monitoring platforms
• Knowledge of cyber threat landscapes, attack vectors, and defense mechanisms
• Bachelors Degree in technical field OR high school diploma plus additional 6 years of relevant experience
   

Preferred Qualifications:

• Relevant certifications such as GCIH, GCFA, GCFE, CySA+, or similar
• Experience coaching and mentoring less experienced personnel
• Experience in network analysis using NetFlow, pcap, and proxy log analysis
• Experience with incident response frameworks such as NIST or MITRE ATT&CK
• Experience using endpoint detection and forensic tools such as EDR, Sysmon, memory forensics, or similar tools
• Experience leading investigations in an enterprise-level environment
• Excellent problem-solving skills and experience applying the Scientific Method to cyber investigations
• Excellent interpersonal communication skills, with the ability to communicate complex technical issues to non-technical stakeholders
   

Clearance Requirement:

• Active/current TS/SCI with polygraph
   

Physical Requirements:

• sedentary position
   

SKN.7.23

For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone.

ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.

If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.