Aretec, Inc. · 2 months ago
CSIRT Lead (Data Analyst IV)
Mississippi, United States
Full-time
Onsite
Mid, Senior Level
1+ years expAretec, Inc. is a company specializing in advanced analytics, machine learning, data analysis, cybersecurity, and business optimization for federal agencies. They are seeking a CSIRT Lead (Data Analyst IV) to oversee the Cyber Security Incident Response Team, ensuring effective monitoring and response to cybersecurity incidents while leading a team in a high-stakes environment.
Cyber SecurityInformation TechnologyProfessional ServicesSoftware
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Leading Innovative Projects: Lead a team providing 24x7x365 on-site coverage for monitoring and responding to security alerts, ensuring rapid response to incidents and alignment with USCIS SOC operations
Collaborative Solution Development: Oversee the tracking of all security incidents through platforms such as Swimlane, ServiceNow, and DHS Enterprise Case Management, ensuring complete visibility and accountability
Strategic Impact: Coordinate and advise on incident response actions, providing clear and effective guidance to ensure containment and remediation
Stakeholder Engagement: Work in partnership with the SOC Government Watch Officer (GWO) and Program Manager (PM) to manage incident workflows, reporting, and communications
Process and Policy Development: Develop and maintain formal Standard Operating Procedures (SOPs) and ensure compliance with the USCIS SOC Concept of Operations (CONOPS) and automated playbooks
Operational Excellence: Oversee investigations of anomalous events detected by security tools and ensure high-quality documentation and recommendations
Continuous Improvement: Provide comprehensive reports, remedial recommendations, and process enhancements that strengthen incident response capabilities and operational efficiency
Qualification
Required
Bachelor's degree (BA/BS) or a minimum of one (1) year of experience in operations or incident response
Must have and maintain at least one active certification: Security+ or ISC² CISSP (or other comparable certification approved in advance by the SOC PM)
Must have and maintain a GCIH certification (or other comparable certification approved in advance by the SOC PM)
Must be able to attain up to a Final TOP SECRET SCI Clearance
Must meet SCI eligibility (ICD 704) with no waivers or conditions
Proficient in security operations, incident response, event analysis, and the use of SOC tools such as Swimlane, ServiceNow, and SIEM platforms
Skilled in assessing security incidents, identifying root causes, and implementing preventive measures
Proven ability to lead high-performing teams in 24x7 operational environments, maintaining calm under pressure while ensuring mission continuity
Exceptional ability to provide clear, actionable guidance to both technical teams and non-technical stakeholders
A strong understanding of federal cybersecurity objectives and a passion for supporting initiatives that safeguard national systems
Benefits
Health, Dental, and Vision Insurance: Comprehensive coverage to keep you and your family healthy.
401(k) Plan with Employer Match: Invest in your future with our competitive retirement savings plan.
Certification Stipends: Support for obtaining professional certifications that enhance your skills and career trajectory.
Professional Development Opportunities: Access to training, workshops, and conferences to stay at the forefront of industry advancements.
Flexible Work Arrangements: Options that promote a healthy work-life balance, including remote work opportunities and flexible scheduling.
Paid Time Off and Holidays: Generous PTO policy to relax, recharge, and spend time with loved ones.
Company
Aretec, Inc.
Since 2013, Aretec, Inc.
51-200 employees
Funding
Current Stage
Growth StageLeadership Team
A
Anthony (Tony) Rivera
CEO
Recent News
Company data provided by crunchbase