Security Operations Center

ManTech seeks a highly skilled and knowledgeable Security Operations Center (SOC) Manager to lead a 24x7x365 Watch Floor team and safeguard the confidentiality, integrity, and availability of an organization's information assets. This position is located on customer site in Huntsville, AL. Responsibilities include but are not limited to: Manage a team that operates 24/7, 365 days a year and ensures the monitoring for, timely detection of, and analysis and resolution of potential security incidents, thereby minimizing the impact of cyber threats on the organization.
Lead highly skilled security professionals in actively detecting, monitoring, preventing, and analyzing real-time cybersecurity information, events, and threats. Work with Program Manager for planning, scheduling, resource assignments, and budget.
Manage teams to achieve customer requirements, goals, service levels and quality; ensure products meet NIST security standards.
Responsible for reducing false positives and other extraneous alerts and enhancing threat detection capabilities. Responsible for ensuring cyber updates and notices are sent out daily to Government and other stakeholders.
Develop and maintain metrics and SOPs to improve quality of team performance.
Manage staffing and staff skill development to include provide mentoring to staff and facilitate knowledge-sharing within the team
Coordinate with other programs teams - incident response, threat intelligence, forensics, and engineering for response and analysis of events, as well as assist to provide weekly status, updates, and reports on issues and risks. Minimum Qualifications: Bachelor's degree, preferably in an IT-related or cybersecurity discipline
8+ years of cybersecurity experience
5+ years of experience managing a SOC of 30+ FTEs
3+ years of experience using Splunk Preferred Qualifications: Experience using Microsoft Sentinel
Preferred Certifications:
GIAC Continuous Monitoring Certification (GMON)
GIAC Certified Incident Handler (GCIH)
GIAC Certified Forensic Analyst (GCFA)
GIAC Certified Intrusion Analyst (GCIA)
GIAC Network Forensic Analyst (GNFA)
GIAC Cloud Threat Detection (GCTD)
GIAC Cloud Forensics Responder (GCFR) Security Clearance Requirements: Must possess active Top Secret security clearance with SCI eligibility Physical Requirements: Must be able to remain in a stationary position 50%
Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer
The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.