SOC Project Manager

Position Description

Valiant Solutions is seeking a SOC Project Manger in the Washington DC Metro area to join our rapidly growing and innovative cybersecurity team!

Do you have a background leading SOC and Incident Response teams, along with maturing the tools and processes supporting SOCs? If so, this could be the perfect role for you!! As the Security Operations Center (SOC) Project Manager, you and the team will be responsible for manning a 24x7x365 coordination center and responding to alerts, notifications, communications, and providing incident response activities.  The candidate will be responsible for supporting and leading a team of SOC analysts, threat hunters, threat intelligence specialists, and forensics SMEs. This is a hands-on leadership role where you will both lead the team and participate as a subject-matter expert. The successful candidate will have a technical background and prior experience leading large SOC teams successfully. This is a great opportunity to join our growing company in a role that involves leading SOC/IR operations and advancing the capabilities and processes that support them.

Named one of the Best Places to Work in the Washington DC area for 11 consecutive years, Valiant is proud of our employee-centric culture and commitment to excellence. If you are interested in learning more about Valiant and this opportunity, we invite you to apply now!

This position should expect to report onsite, but may allow for remote work. Remote work necessitates a high-level trust in our employees and we strictly adhere to the details found below in our Remote Work Policy. 

Required Experience: 

• Project Management Professional (PMP), in good standing
• Certified Information Systems Security Professional (CISSP), in good standing
• Active Top Secret clearance with SCI eligibility (or able to obtain)
• 10 years of experience leading  24x7x365 SOCs, including at least five years managing hybrid environments that span both on-premises and cloud infrastructures.
• 10 years of hands-on cybersecurity incident response experience within large-scale environments, supporting 50,000 or more endpoints.
• At least (5) years managing a federal vulnerability management program
• Experience across all five portions of the NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, and Recover).
• Demonstrated ability to influence others to accept practices and approaches, and the ability to communicate with and influence executive leadership.
• Demonstrated ability to evaluate events (through a triage process) and identify appropriate prioritization for response
• Experience and ability to use and follow Standard Operating Procedures (SOPs)
• In-depth experience with processing and triage of Security Alerts, from multiple sources but not limited to: Endpoint security tools, SIEM, email security solutions, CISA, Threat Intel Sources
• Demonstrated experience with triage and resolution of SOC tasks, including but not limited to: vulnerability announcements, phishing email review, Tier 1 IR support, SIEM/Security Tools - alert analysis
• Demonstrated experience and understanding of event timeline analysis and correlation of events between log sources

Responsibilities: 

• Manage the 24/7/365 SOC, as well as Vulnerability Management Team, Threat Intel, Forensics, and Threat Hunt personnel and objectives. 
• Lead and shall assign and deploy staff to achieve SOC objectives identified by the Government.
• Maintain, manage, and revise the SOC personnel shift schedules
• Provide technical guidance to the SOC team
• Produce and review aggregated performance metrics
• Manage and increase the effectiveness and efficiency of the SOC through improvements to each function, as well as coordination and communication between support and business functions.
• Think critically and creatively while analyzing security events, network traffic, and logs to engineer new detection methods.
• Work directly with IT Security and SOC leadership on cyber threat intelligence analysts to convert intelligence into proper detection.
• Create and brief customer reports.
• Participate in on-call rotation for after-hours security and/or engineering issues.
• Perform customer security assessments
• Develop and run tabletop exercises
• Collaborate with the incident response team to rapidly build detection rules as needed.
• Perform lessons learned activities.
• Mentor and provide training to SOC analysts and run brown bag training sessions
• Responsible for supporting 24x7x365 SOC operations, including but not limited to: alert  review, analysis, triage, response, and action on IOCs and other operationally impactful information, initial review and triage of reported Incidents 
• Perform analysis across all security tools, uncovering attack vectors involving a variety of malware, data exposure, phishing, and social engineering methods.
• Monitoring security events received through alerts from SIEM or other security tools
• Review and reporting on anomalous patterns (Hunting) across all security tools / SIEM.
• Logging security incidents in the IT ticketing system
• Managing security incidents throughout their lifecycle to closure
• Supporting ad-hoc data and investigation requests
• Participating in the remediation of incidents and responses that are generated from live threats against the enterprise
• Quickly develop an understanding of customer and SOC operations requirements and policies
• Ensure reports are properly entered into the incident tracking system
• Triaging events and investigating to identify security incidents
• Supporting incident response and handling (Detection, Analysis, Triage)
• Supporting and developing reports during and after SOC monitoring or Incidents, which include all actions taken to properly mitigate, recover, and return operations to normal operations
• IDS monitoring and analysis, analyze network traffic, log analysis, prioritize and differentiate between potential intrusion attempts and false alarms
• General cyber-attack stages, profiling techniques, and techniques for detecting host and network-based intrusions
• Composing security alert notifications

About Valiant Solutions

Valiant Solutions is a security-focused IT solutions provider with public clients nationwide. Named one of the fastest growing privately held companies by Inc. 5000, Washington Technology’s Fast 50, and Washington Business Journal’s Best Places to Work in the D.C. area, Valiant Solutions prides itself on providing its employees with great benefits and career development opportunities. As a company, we are just as committed to growing careers as we are to building world-class IT solutions, all while enjoying an unparalleled work-life balance. We are in a phase of tremendous growth and building the team that will take us to the next level. We seek people whose talents and accomplishments will contribute to a thriving company, who have the character to support their capacity, and can make a positive impact on our culture. Alongside our talented team, you’ll learn to think quickly on your feet and expand your own personal and professional skill set. Our management team will inspire you to consider new perspectives and challenge you to become a better practitioner in the fast-paced industry of IT security. We hire people we respect – and we trust them to deliver results leveraging their expertise. If you would enjoy working in a dynamic environment as part of a stellar team of professionals, then we invite you to apply online today.

Benefits Snapshot (includes, but not limited to)Valiant pays 99% of the Medical, Dental, and Vision Coverage for Full-time EmployeesValiant contributes 25% towards Health Coverage for Family and Dependents100% Paid Short Term Disability and Life Insurance Policy for Full-time Employees100% Paid Certifications401K Matching up to 4%Paid Time OffPaid Federal Holidays Paid Time On – 40 hours to pursue innovationWellness & Fitness ProgramValiant University – Online Education and Training PortalReimbursement for Public Transit and ParkingFSA programs for: Medical Costs, Dependent Care, Transit, and ParkingReferral Bonuses

The salary range for this position is a general guideline and not a guarantee of compensation or salary. It has been benchmarked in relation to the scope of the role, market rate, and internal equity. The salary for this role is expected to be in the $140,000 - $170,000 range. Where a candidate falls within the band can be determined based on one or more of the following: skillset, experience level, achievements, education, geographic location, security clearance, involvement in corporate tasks, and other non-discriminatory factors. In addition to the base salary, this role will include benefits as described below.  Valiant reserves the right to adjust the salary range, experience requirements, and position responsibilities at any time without prior notice. 

Remote Work Policy 

Remote work necessitates a high level of trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention and availability to their job duties during working hours, and maintain a schedule during core business hours that align with those of their coworkers and Valiant's clients. In alignment with Valiant's inclusive and engaging environment, cameras are encouraged and can be required to be on during virtual video conferences. Additionally, in alignment with the Office of the Inspector General’s effort to eliminate conflicting employment, all Valiant employees are required to disclose any current or future outside employment engagements. During onboarding and throughout employment, employees must disclose any current activities or intent to engage in outside employment or other professional activities and obtain written approval.  Employees may not solicit or conduct any outside business during core business hours for Valiant Solutions and our clients.

Equal Employment Opportunity

Valiant Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, marital status, or veteran status, in accordance with applicable law.

Physical Demands

Sitting or standing at a desk for prolonged periods of time and consistent operation of a computer. Frequent communication and exchanging of accurate information via electronic communication, phones, and in person. Occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.

Authorization to Share Resume and Personal Information

By submitting your resume for this position, you authorize Valiant Solutions to share your resume, as well as, personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should Valiant Solutions or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.