Network Operations Center Cyber Security Lead
Powder River Industries, LLC
Job Description
Job Description
Description:
We are seeking a highly skilled and mission-focused SOC Lead to oversee the daily operations of the Security Operations Center and guide a team of cybersecurity analysts in defending the organization against evolving threats. This role requires a blend of technical expertise, leadership presence, and the ability to translate complex cybersecurity issues into clear, actionable insights for stakeholders at all levels.
Requirements:Leadership and Team Management:
- Lead, manage, and mentor the SOC team, ensuring day-to-day operations run smoothly and efficiently.
- Provide guidance, feedback, and training to SOC analysts to improve their performance and skillset.
- Ensure 24/7 operational readiness of the SOC, including shift coverage and resource management.
Incident Response and Management:
- Lead the SOC team in the identification, analysis, and response to cybersecurity incidents (attempted or successful intrusions, malware, data breaches, etc.).
- Reconstruct timelines of events based on network defense data to analyze network intrusions and attacks.
- Serve as the escalation point for complex or high-priority incidents, ensuring proper incident handling and resolution.
- Support enterprise-wide incident response, collaborating with IT and cybersecurity teams to manage and mitigate threats.
- Continuously strengthen incident response methodologies to improve response times and effectiveness.
Threat Detection and Mitigation:
- Develop and support threat detection capabilities to proactively identify emerging risks and vulnerabilities.
- Analyze large volumes of network traffic, system logs, and threat intelligence data to uncover potential threats.
- Use network operations expertise to predict potential attack vectors and devise proactive defense strategies.
- Provide recommendations on improving threat data collection and ensuring high-quality data is available for analysis.
Cybersecurity Risk Analysis:
- Analyze cybersecurity risks and communicate these risks to key decision-makers in a clear, concise manner to support informed decision-making.
- Translate complex technical risks into actionable insights for non-technical stakeholders, including management and senior leadership.
- Assist in identifying areas for continuous improvement in the organization’s cybersecurity practices based on analysis of incidents and risk data.
Intellectual Property Protection:
- Play a critical role in safeguarding the organization’s intellectual property, identifying potential threats and vulnerabilities that could put valuable data at risk.
- Develop and implement strategies to mitigate risks to intellectual property and other sensitive assets.
Collaboration and Communication:
- Collaborate with internal teams (IT, network security, and engineering) to ensure cohesive and effective threat response strategies.
- Serve as the subject matter expert for security incidents, threat analysis, and response processes within the SOC.
- Ensure the organization’s leadership and relevant stakeholders are kept informed of critical cybersecurity events and decisions.
Security Tool Management and Optimization:
- Oversee the configuration, optimization, and management of security tools such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention Systems), endpoint protection, and other monitoring solutions.
- Ensure that security tools are appropriately tuned to detect relevant threats and are providing effective coverage across all systems.
Reporting and Documentation:
- Maintain accurate and detailed documentation of security incidents, including analysis, findings, and mitigation steps.
- Prepare incident reports, post-mortem analyses, and regular updates to senior management on the SOC’s performance, emerging threats, and ongoing mitigation efforts.
- Ensure compliance with industry standards and regulatory requirements in incident documentation and reporting.
Continuous Improvement and Best Practices:
- Foster a culture of continuous improvement within the SOC by assessing performance metrics, conducting after-action reviews, and implementing process improvements.
- Stay up-to-date with the latest cybersecurity threats, trends, and best practices to ensure the SOC operates effectively and remains aligned with industry standards.
Required Qualifications:
- Experience : 10+ years of experience in cybersecurity, with at least 4 years in a leadership role within a SOC or security operations environment.
- Certifications : Certifications in cybersecurity analysis such as OSCP, or equivalent certifications are strongly preferred. CISSP , CISM , GCIH , GCIA or equivalent certifications are nice to have.
- Technical Expertise : Proven expertise in network defense, incident response, threat detection, vulnerability management, and security operations.
- Incident Response : Strong experience leading incident response efforts, including network intrusions, malware infections, and data breaches.
- Data Analysis : Experience with analyzing large volumes of data (network traffic, logs, threat intelligence) to identify cybersecurity risks and respond effectively.
- Leadership Skills : Proven ability to lead and mentor a team, manage operations, and communicate complex security issues to both technical and non-technical stakeholders.
- Communication : Exceptional written and verbal communication skills, with the ability to clearly present technical information to senior leadership.
A notification to prospective applicants that reviews, and tests for the absence of any illegal drug as defined in 10 CFR 707.4, will be conducted by the employer and a background investigation by the Federal government may be required to obtain an access authorization prior to employment, and that subsequent reinvestigations may be required. The position is covered by the Counterintelligence Evaluation Program regulations at 10 CFR part 709, the announcement should also alert applicants that successful completion of a counterintelligence evaluation may include a counterintelligence -scope polygraph examination.
As a federal contractor, we are committed to fair and equitable employment practices. We make employment decisions based on job-related qualifications, merit, contract requirements, and legitimate business needs, and prohibit unlawful discrimination in all employment practices
As a federal contractor, we comply with Section 503 of the Rehabilitation Act and VEVRAA. No disability-related inquiries will be made prior to a conditional offer of employment, except as permitted by applicable law
Employee Rights Under the National Labor Relations Act (NLRA): As a federal contractor, the Company complies with Executive Order 13496 and informs employees of their rights under the National Labor Relations Act. Information regarding these rights is available at the workplace and from the National Labor Relations Board.
This position is covered by the Service Contract Labor Standards (SCLS). Compensation and fringe benefits will be provided in accordance with the applicable U.S. Department of Labor wage determination and any applicable collective bargaining agreement.
Medical, dental, vision, and 401k benefits are included with this position.
$135k - $145k
Description Tyto Athene is searching for an Cyber Event Monitoring Lead to support threat monitoring,... ..., and incident reporting. The Security Operations Center is a 24/7 environment. You will be... ...for monitoring enterprise networks and systems, detecting events, and...NetworkWork experience placement- ...Military, Intelligence & Operations Support (MIOS) could... ...critical national security missions. We are seeking... ...Cybersecurity Manager to lead and strengthen our... ...continuous monitoring of networks, systems, and data for... ...security operations centers and monitoring critical...NetworkContract workFor contractors
$95k - $125k
...Cybersecurity Operations Manager Job Summary... ...partners) on cyber operational planning... ...directly with federal leads to integrate... ...cyber defense, cloud security, cyber policy, or... ...relationships and network effectively with all... ...Operations Center experience Experience...NetworkContract workWork at officeLocal areaFlexible hours$157k
...Responsibilities Lead end-to-end program... ...infrastructure upgrades, and security compliance... ...(e.g., security operations, security... ...technologies including network security, application... ...security operations center (SOC) initiatives.... ...Job Family: IT, Cyber Security, Network...NetworkContract workLocal areaFlexible hours- ...cybersecurity background to lead complex technical... ...and maintain required security clearances to support our... ...domains (e.g., security operations, security architecture,... ...technologies including network security, application... ...or security operations center (SOC) initiatives Background...NetworkContract workLocal areaFlexible hours
$154.05k - $278.48k
...Leidos has an exciting opportunity for a Cyber Security Engineer—Technical Lead in our Intel Security Sector's Analysis Solutions Business Area.... ...talented team works across Security Engineering, Computer Network Operations (CNO), Mission Software, Analytical Methods and...NetworkImmediate startFlexible hours- Phase2 Technology is seeking a Cyber Strategic Planning and Development Specialist to... ...a strategic cyber roadmap to ensure secure operations in an evolving IT environment. The ideal... ...Join us in securing the Army's enterprise network through strategic cyber policy. #J-188...Network
- A cybersecurity and data operations firm is seeking Cyber Eviction Analysts to support the DHS's Hunt and Incident Response Team. The... ...independently. Candidates must have a strong understanding of network architecture and security, as well as excellent communication skills. This...Network
- ...seeking an experienced SME Zero Trust Cyber Security Analyst to support the delivery, enhancement... ...other industry teammates to translate operational and strategic requirements into... ...Trust maturity across identity, device, network, application, and data layers. Support...Network
- Position Title: TSS Cyber Security Sustainment Lead Location: F-35 Program Office, Joint Program Office... ...warfighter. With rapid growth and operations in 15 U.S. locations, we're driven by... ...Access Program (SAP) and collateral networks. Key responsibilities include supporting...NetworkContract workTemporary workFor contractorsWork experience placementWork at office
$86.8k - $198k
Job Number: R0231450 Aviation Cyber Security Policy Lead The Opportunity: When our country's cyber security... ...work with the client to ensure they operate securely as they navigate an evolving... ...integration of computer systems and networks to maintain system security and...NetworkFull timeContract workPart timeLocal areaRemote work$116.9k - $243.1k
...clients across defense, national security, public safety, civilian,... ...forward! We are seeking a Cyber Defense Forensics Lead to oversee forensics and insider threat operations for our customer. You will... ...hands-on experience with host/network security monitoring,...NetworkLive inWork at officeLocal area- NewGen Technologies is seeking a Cyber Security Operations Center (SOC) Manager to lead efforts in a Federal IT sector. Ideal candidates will possess over 7 years of incident response experience and 2 years of technical direction to a SOC with over 5,000 endpoints. The...
- A government IT solutions contractor is seeking a Security Operations Center (SOC) Manager to provide strategic leadership for a 24/7 SOC. You'll oversee incident response operations, direct security teams, and ensure compliance with federal standards. The ideal candidate...For contractors
- A leading cybersecurity firm seeks an experienced Incident Handler to coordinate network security monitoring and lead investigations. The ideal candidate will have over 8 years... ...for maintaining the security posture of operational networks and involves mentoring junior analysts...Network
- Tyto Athene, LLC is looking for a Cyber Event Monitoring Lead to support threat monitoring and incident reporting in Washington, DC. You will be responsible for monitoring enterprise networks, collaborating with Senior Analysts, and utilizing SIEM technologies to provide...Network
- ...Trust Engineer in Arlington, VA, to lead the design and implementation of Zero Trust security solutions for critical... ...ensure the protection of sensitive networks by applying your expertise with... ...over 7 years of experience in IT operations or cybersecurity, along with a Top...NetworkRemote job
- ...Zero Trust Engineer to lead the design and implementation of security architecture based on Zero... ...in cybersecurity or IT operations, along with a Top Secret... ...innovate with offensive cyber operations, maintaining... ...to safeguarding critical networks. #J-18808-Ljbffr Phase2...NetworkRemote job
- ...services and solutions in National Security Programs, Professional, Administrative... ...: Contingent Position Title: Cyber Engagement Scheduling Team Lead Location: National Capital Region... ...experience can come from system or network administration, security analysis,...NetworkFull timeFor contractorsShift work
$113k - $188k
Job Family IT Cyber Security Travel Required None Clearance Required Active... ...- Identity Management Lead to lead the design, assessment... ...Partner with cybersecurity, network engineering, cloud, DevSecOps... ...teams for ICAM / IAM operations, including ICAM/IAM system requirements...NetworkCivilian ContractorTemporary workFlexible hours- ...troubleshooting user issues. Candidates should have a BS in a related field or equivalent experience, with at least 2 years in system administration and relevant knowledge of operating systems and networking. An active Secret clearance is required. #J-18808-Ljbffr ARSIEMNetwork
- Ampcus Inc is seeking a Senior Cyber Security Analyst based in Washington, DC. The role involves... ...technologies within the Security Operations Center (SOC). Key responsibilities include monitoring... ...across IT and Operational Technology networks. The ideal candidate will have a...Network
- ...install, configure, calibrate, operate, and maintain hardware and... ...privileged user access to Navy Networks and Information Systems in... ...administration, and control system security to operate, maintain, sustain... ...Credentials that meet DoD Cyber Workforce requirements for...NetworkContract workWork at officeRemote work
- Job Title Senior Cyber Security Analyst Location Washington, DC Description Summary: The intent... .... The role is part of the Security Operation Center (SOC) which monitors, analyzes,... ...traditional IT and Operational Technology (OT) networks. The role coordinates with both the...NetworkContract workWork at office
- ...guidance to support enterprise security posture, governance, risk... ...policies, architectures, and operational practices to ensure alignment... ...identity and access management, network segmentation, encryption, and... ...Security Operations Centers (SOC) and Security Information...NetworkContract work
$100k - $104k
Castalia Systems is seeking a Technical Engagement Network Lab Manager in Arlington, Virginia, who will provide IT support to government clients experiencing cyber-attacks. Responsibilities include implementing infrastructure solutions, managing user accounts, and troubleshooting...NetworkWork at office- A technology firm is looking for a Technical Engagement Network Lab Manager in Arlington, VA. The ideal candidate has extensive experience in Linux System Administration, Splunk, and Ansible automation, coupled with a DoD Secret clearance. Responsibilities include overseeing...Network
- Node.Digital is seeking a Technical Engagement Network (TEN) Lab Manager located in Arlington, VA. This role requires an active DoD Secret Clearance and expertise in Linux, Splunk, and Ansible System Administration. The manager will oversee a team providing support for...Network
- ...critical asset owners who experience cyber‑attacks, bringing immediate... ...Multiple Places, layered defenses, security robustness, etc.) PerformComputer Network Defense incident triage to include... ...BS Incident Management, Operations Management, Cybersecurity or related...NetworkContract workImmediate startShift work
- ...critical asset owners who experience cyber-attacks, providing immediate... ...Multiple Places, layered defenses, security robustness, etc.) PerformComputer Network Defense incident triage to... ...Suitability BS Incident Management, Operations Management, Cybersecurity or related...NetworkContract workImmediate startShift work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Network Operations Center Cyber Security Lead. Be the first to apply!
- operations lead Washington DC
- network operations center team lead Washington DC
- operations leader Washington DC
- cyber security project manager Washington DC
- cybersecurity project manager Washington DC
- senior manager cyber security Washington DC
- director - cyber security Washington DC
- cybersecurity manager Washington DC
- cyber security program manager Washington DC
- cyber security lead Washington DC

