AAC Inc. · 11 hours ago
SECOPS Lead
Washington, DC
Full-time
Onsite
Senior Level
7+ years expAAC Inc. is seeking a SECOPS Lead to provide expert advisory support to senior government officials and coordinate with managed security service providers. The role involves guiding technical discussions, conducting cybersecurity assessments, and supporting incident response efforts while ensuring compliance with governance and risk management activities.
Information Technology
No H1B
U.S. Citizen Only
Responsibilities
Demonstrated ability to guide technical discussions and provide expert advisory support to senior government officials, including the CISO, system owners, SOC staff, and executive leadership, while operating under government direction
Proven experience as a SOC Lead or Senior Team Lead, successfully coordinating with managed security service providers (MSSPs) and external cybersecurity partners (e.g., CISA, CYBERCOM) in support of incident response (IR), incident handling (IH), and vulnerability management (VM) activities), including mitigating actions to contain activity and facilitating forensics analysis when necessary
Documented experience conducting and guiding in-depth technical evaluations of INFOSEC, IT security, and cybersecurity tactics, techniques, and procedures (TTPs), including their impact on baseline system configurations
Demonstrated proficiency providing cybersecurity posture assessments, hygiene reporting, and technical input in support of Governance, Risk, and Compliance (GRC) activities and continuous monitoring programs
Experience providing incident response support to network subscribers, including recommending mitigating actions, supporting containment efforts, and facilitating forensic analysis under government oversight
Demonstrated expertise in log-based and endpoint-based threat detection, threat hunting, and analysis across multiple threat sources
Strong technical knowledge of web services security, Microsoft cloud environments (Azure, M365), and modern enterprise security architectures
Advanced experience evaluating the security of complex web portals, APIs, and databases (e.g., Java, Ruby, SQL, Oracle) using commercial and open-source security assessment tools such as SQLmap and mongoaudit
Near-expert proficiency in: Web application security testing frameworks (e.g., NMAP, W3af), Continuous monitoring and remediation tools (e.g., Azure Security Center, Defender for Cloud, Qualys, Wireshark), Endpoint Detection and Response (EDR) platforms (e.g., HBSS, SEP, Microsoft Defender)
Near-expert knowledge of SOC operations, incident handling (IH), incident response (IR), and adversary tactics, techniques, and procedures (TTPs)
Ability to facilitate adoption of cybersecurity best practices with development, database, and system administration teams through technical expertise and collaborative engagement
Qualification
Required
Demonstrated ability to guide technical discussions and provide expert advisory support to senior government officials, including the CISO, system owners, SOC staff, and executive leadership, while operating under government direction
Proven experience as a SOC Lead or Senior Team Lead, successfully coordinating with managed security service providers (MSSPs) and external cybersecurity partners (e.g., CISA, CYBERCOM) in support of incident response (IR), incident handling (IH), and vulnerability management (VM) activities), including mitigating actions to contain activity and facilitating forensics analysis when necessary
Documented experience conducting and guiding in-depth technical evaluations of INFOSEC, IT security, and cybersecurity tactics, techniques, and procedures (TTPs), including their impact on baseline system configurations
Demonstrated proficiency providing cybersecurity posture assessments, hygiene reporting, and technical input in support of Governance, Risk, and Compliance (GRC) activities and continuous monitoring programs
Experience providing incident response support to network subscribers, including recommending mitigating actions, supporting containment efforts, and facilitating forensic analysis under government oversight
Demonstrated expertise in log-based and endpoint-based threat detection, threat hunting, and analysis across multiple threat sources
Strong technical knowledge of web services security, Microsoft cloud environments (Azure, M365), and modern enterprise security architectures
Advanced experience evaluating the security of complex web portals, APIs, and databases (e.g., Java, Ruby, SQL, Oracle) using commercial and open-source security assessment tools such as SQLmap and mongoaudit
Near-expert proficiency in web application security testing frameworks (e.g., NMAP, W3af)
Near-expert proficiency in continuous monitoring and remediation tools (e.g., Azure Security Center, Defender for Cloud, Qualys, Wireshark)
Near-expert proficiency in Endpoint Detection and Response (EDR) platforms (e.g., HBSS, SEP, Microsoft Defender)
Near-expert knowledge of SOC operations, incident handling (IH), incident response (IR), and adversary tactics, techniques, and procedures (TTPs)
Ability to facilitate adoption of cybersecurity best practices with development, database, and system administration teams through technical expertise and collaborative engagement
Requires a bachelor's degree in Cybersecurity, Information Assurance, or Information Security and 7+ years of relevant work experience. Additional experience may be substituted for a degree
Must be engaging and proactive with critical thinking and problem-solving ability, both independently and as part of a team
Candidate must demonstrate the ability to present ideas and reports clearly in English, both orally and in writing
Must obtain agency suitability clearance prior to start date
Preferred
Highly Desired Certifications:CISSP, OSCP, GCIH, GPEN, GSEC, GCIA, GCED, GCID, CCSP, GWEB, GSNA, GCWN, GAWN, GSE, GPPN
Experience supporting a nationwide mid-sized Federal agency enterprise is a plus
Company
AAC Inc.
AAC (www.aac.com) is a Veteran-owned small business headquartered in Tysons Corner, VA.
201-500 employees
Funding
Current Stage
Growth StageCompany data provided by crunchbase