Vencore Tech Lead, Incid Response Tier 2 in Washington, District Of Columbia
Vencore is a proven provider of information solutions, engineering and analytics for the U.S. Government. With more than 40 years of experience working in the defense, civilian and intelligence communities, Vencore designs, develops and delivers high impact, mission-critical services and solutions to overcome its customers most complex problems.
Headquartered in Chantilly, Virginia, Vencore employs 3,800 engineers, analysts, IT specialists and other professionals who strive to be the best at everything they do.
Vencore is an AA/EEO Employer - Minorities/Women/Veterans/Disabled and other protected categories
Provides technical and programmatic Information Assurance Services to internal and external customers in support of network and information security systems. Designs, develops and implements security requirements within an organization’s business processes. Prepares documentation from information obtained from customer using accepted guidelines such as DITSCAP (DoD Information Technology Security Certification and Accreditation Process). Prepares Security Test and Evaluation plans. Provides certification and accreditation support in the development of security and contingency plans and conducts complex risk and vulnerability assessments. Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps. Develops and completes system security plans and contingency plans. Recommends system enhancements to improve security deficiencies. Develops, tests and integrates computer and network security tools. Secures system configurations and installs security tools, scans systems in order to determine compliancy and report results and evaluates products and various aspects of system administration. Conducts security program audits and develops solutions to lessen identified risks. Develops strategies to comply with privacy, risk management, and e-authentication requirements. Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements. Evaluates, develops and enhances security requirements, policy and tools. Provides assistance in computer incident investigations. Performs vulnerability assessments including development of risk mitigation strategies.
Considered an emerging authority, who applies extensive technical expertise. Develops technical solutions to complex problems. Exercises considerable latitude in determining objectives and approaches to assignment.
Requires 8 to 10 years with BS/BA or 6 to 8 years with MS/MA or 3 to 5 years with PhD.
Duties: Technical Lead - Computer Incident Response Team - Tier 2
Leads and oversees Tier 2 contractor activities for the CIRT program; provides technical and operational oversight.
Schedules, coordinates, guides, monitors, tracks and reports on Tier 2 activities and performance. Conducts advance analysis and recommends remediation steps for computer security events and incidents. Ensures established Tier 2 processes and procedures are followed, including during surge support and in interaction with customers. Recommends improvements to increase operational efficiency. Liaises and coordinates with operational managers and other entities within the Department and with outside agencies.
Education: Bachelor's (or equivalent) with 8 yrs of experience, or a Master's with 6 yrs of experience. A Bachelor’s or Master's Degree in Computer Science, Information Systems, Engineering, Telecommunications, or other related scientific or technical discipline. Four (4) additional years of general experience (as defined below) may be substituted for the degree.
Experience:Eight (8) years of experience in network center management and operation with increasing responsibilities. Five (5) years of current experience in 24x7x365 network security monitoring operations of similar size and scope as the DoS CIRT. Three (3) years of experience in LANs, WANs, VPNs, network protocols, firewalls, routers, and performing malware analysis. Demonstrated experience in network security systems and products.
Certifications Required: CISSP
Certifications Desired: N/A
Job ID 2018-50197
# of Openings Remaining 1
Category Information Technology
Residency Status U.S. Citizenship Required
Clearance Top Secret
Employee Type Regular
Time Type Full Time