The Senior Cybersecurity Incident Response Administrator, is responsible for managing Security Information and Event Management (SIEM) systems, including deploying, installing, managing infrastructure, and monitoring events in accordance with Army Business System Log Data Policy and other DoD/Army requirements for the U.S. Army Product Lead Acquisition, Logistics, and Technology Enterprise Systems and Services (PL ALTESS).
· Create SIEM dashboards to display clear and concise visualizations of security-related events, enabling the detection of anomalies and investigation of threats in near real-time.
· Monitor SIEM dashboards to detect threats and anomalies, investigate events, and escalate as necessary.
· Assesses and develops reporting requirements to support audits and security controls, providing Public Key Infrastructure (PKI) support, and monitoring DoD and Army web application security standards and best practices.
· Review Army Cyber Tasking Orders (CTOs), coordinate with Army Cyber Security Service Providers, participate in SW Assurance reviews, and evaluate Information Systems Design Plans for compliance with relevant security regulations, policies, and best industry practices.
Required:
· Cybersecurity Certification (such as Certified Information Systems Security Professional (CISSP)/Information Systems Security Engineering Professional (ISSEP)/Security+/Certified Ethical Hacker (CEH/etc.)
· 10 or more years’ experience with Cybersecurity and Incident Response or related areas
· Extensive experience managing Security Information and Event Management (SIEM) systems, including getting relevant data into the SIEM.
· Proficiency in creating and managing SIEM dashboards for security event visualization.
· Strong ability to monitor and investigate security events and anomalies.
· Experience in developing reporting requirements for audits and security controls.
· Knowledge of Public Key Infrastructure (PKI) and managing SSL/TLS certificates.
· Familiarity with DoD and Army web application security standards and best practices.
· Ability to review and respond to Army Cyber Tasking Orders (CTOs).
· Experience coordinating with Cyber Security Service Providers for audit logs and incident response.
· Participation in SW Assurance reviews for application audit log validation.
· Ability to review and evaluate Information Systems Design Plans and related documents for security compliance.
· Active DoD Secret Security Clearance.
Preferred:
· Bachelor's degree in Computer Science or equivalent years of experience.
· Familiarity with Army enterprise monitoring tools and practices.
· Strong analytical and problem-solving skills.
· Excellent communication and coordination skills.
· Experience with incident response activities.
· Knowledge of engineering change proposals and configuration management.
· Understanding of Continuity of Operation Plans and Communication Plans.
· Experience with security regulations and best industry practices.
· Ability to work effectively in a team environment and collaborate with various stakeholders.
Integral partners with federal defense, intelligence, and civilian leaders to tackle their most important challenges and deliver positive outcomes. Since our founding in 1998, we have helped clients leverage existing and emerging technologies to transform their enterprises, empower growth, drive innovation, and build sustainable success. The forward-leaning solutions we deliver are tailored to each mission with a focus on keeping our nation safe and secure.
Integral is headquartered in McLean, VA and serves clients throughout the country.
We offer a comprehensive total rewards package including paid parental leave and immediate vesting in our 401(k). Give us a try and become part of a curated group of professionals at Integral Federal!
Our package also includes:
· Medical, Dental & Vision Insurance
· Flexible Spending Accounts
· Short-Term and Long-Term Disability Insurance
· Life Insurance
· Paid Time Off & Holidays
· Earned Bonuses & Awards
· Professional Training Reimbursement
· Paid Parking
· Employee Assistance Program
Equal Opportunity Employer/Protected Veteran/Disability
Software Powered by iCIMS
www.icims.com