151 applicants

Company

Original Job Post

T-Rex Solutions, LLC · 4 days ago

NOSC Cyber Manager

Washington, DC

Full-time

Onsite

Senior Level

$120K/yr - $155K/yr

8+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Information TechnologyIT Management

Growth Opportunities

Insider Connection @T-Rex Solutions, LLC

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Supervise and manage a small team of Cyber Network Defense Analysts (CNDAs) within the NOSC in support of the government customer

Manage and conduct hands-on technical detection, analysis, containment, eradication, and remediation as a member of the Incident Response team

Guide and mentor peers and subordinates to provide cross training

Ensure accountability and punctuality of security analysts assigned to your shift

Capture cybersecurity metrics that support executive-level briefings (daily, weekly, monthly)

Articulate daily challenges to the Government Watch Officer (GWO)

Analyze web and host logs for indications of compromise

Re-mediate and coordinate the remediation of infected or compromised devices

Ensure shift continuity during call-outs and emergencies

Compile incident reports, executive summaries, and analysis reports of intrusions and/or security events

Document and update processes, workflows, and technical guides

Perform simple firewall rule changes (after training)

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

SOC/NOSC knowledgeNetwork portsNetwork topologiesNetwork security devicesPacket analysisMalware knowledgeWindows OSAntivirusDLPFirewallsCritical thinkingAnalysisMalware Reverse-EngineeringOperations/Technical Lead24x7 Missions SupportCybersecurityService Desk SupportNIST SP 800 SeriesISO 27000 SeriesDevOps/Agile ConceptsSOC MethodologiesScripting Languages

Required

A Bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field and a minimum of eight (8) years total professional experience in at least two (2) of the areas listed below: Vulnerability Assessment, Intrusion Prevention and Detection, Access Control and Authorization, Policy Enforcement, Application Security, Protocol Analysis, Firewall Management, Incident Response, Encryption, Web-Filtering, Advanced Threat Protection, Military experience and training may be considered in lieu of degree, Active advanced cybersecurity certification(s), Experience conducting detailed technical analysis of Cybersecurity Events and Incidents

Extensive knowledge of a SOC's/NOSC's purpose and role within an organization

Detailed understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc)

Expertise with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc)

Expertise with packet analysis tools such as Wireshark

Able to perform critical thinking and analysis to investigate cyber security alerts

Extensive knowledge of common malware and attack vectors

Extensive experience with Windows operating systems and standard OS logging

Extensive experience with Antivirus, DLP, and host-based firewalls

Must have at least one of the following certifications: Comptia: Security+, Network+, CASP, SANS GIAC: GCIA, GCIH, GCFA, GPEN, GWAPT, GCFE, GREM, GXPN, GMON, GISF, or GCIH, EC Council: CEH, CHFI, LPT, ECSA, ISC2: CCFP, CCSP, CISSP CERT CSIH, Offensive Security: OSCP, OSCE, OSWP and OSEE

Active Top Secret Security clearance with Dept of Homeland Security (DHS) or Customs & Border Protection (CBP) Active Top Secret Security clearance with Dept of Homeland Security (DHS) or Customs & Border Protection (CBP) preferred