1+ months

Federal - SOC Shift Lead

Germantown, MD 20875

Organization: Accenture Federal Services

Location: Germantown, MD

We are:

Accenture Federal Services, providing a tailored strategy to address the many cybersecurity challenges faced by customers in todays ever-changing business and industry landscape. Our team delivers a wholistic approach to cybersecurity assessment, monitoring, investigation, and response. Whether were defending against identified threat actors, detecting and responding to the unknown, or running an entire security operations center, we build cyber resilience so our clients can grow with confidence in their security.

You are:

A Cyber Security professional and enthusiast, who is seeking opportunities to evolve his/her craft by understanding latest cyber threats and help clients identify intrusion in their respective environments. In order to effectively do this, you leverage cutting edge Security Information and Event Management (SIEM) data analytics, as well as network/endpoint detection and response technologies for investigating any malicious activity in customers on-prem and cloud environments.

The Work:

+ The Shift Lead will lead a small team of security analysts responsible for monitoring network traffic for indicators of compromise from a Nation-wide sensor array. The lead will ensure the following daily tasks are adhered to and maintain quality and timeliness standards for each the following:

+ Conduct security incident monitoring of network traffic, using Splunk to analyze a variety of network sensor-based event types, and mentor junior analysts on the same

+ Ensure Incidents reported to the operations center are analyzed and reported to DHS CISA and Departmental Federal leadership within timelines documented in Standard Operating Procedures

+ Manage Watch floor crew to ensure it is properly staffed to maintain 24x7x365 shift coverage; will ensure shifts remain staffed when personnel are on leave, sick, or on official travel

+ Ensure Executive Communication products intended for Departmental executives including the Chief Information Security Officer, Chief Information Officer, and Department of Energy Secretary, are high quality analytical products, free from analytical mistakes and grammatical and typographical errors

+ Shift lead will prepare and present Daily Executive briefing to Departmental leadership covering the previous 24 hours worth of incident reporting and emerging cyber threat intelligence

+ Shift Lead will have excellent communication skills; must be able to speak to Department executives about current issues, incidents and analyses

+ Shift Lead will have a solid understanding of cyber security and be able to analyze incident reporting and follow up with reporting sites to ensure a complete picture of the incident is availableShift Lead will be understand and improve/revise escalation procedures; Lead will keep federal leadership appraised of any incidents that could receive addition attention from leadership, etc.

Heres what you need:

+ 7 years of IT and/or Cyber experience

+ Willingness to work 6pm to 6am - Panama shift

+ Bachelors Degree required OR 4 additional years of professional IT and/or Cyber experience in lieu of a Degree

+ Experience working as a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) and/or Security Operations Center (SOC) analyst

+ Experience with Intrusion Detection Systems (IDS/IPS), Firewalls, Active Directory, Web Proxies, Vulnerability Assessment tools, AntiVirus and/or other security tools found in large enterprise network environments

+ Experience using Splunk or any comparable SIEM Tool for security incident monitoring and/or traffic analysis

Bonus points for:

+ Experience leading small teams of security analysts

+ Experience developing re-usable Splunk Content such as notable alerts and dashboards

+ GNFA, GCIH, GPEN, GWAPT or equivalent certifications preferred

Important Information:

An active security clearance or the ability to obtain one may be required for this role.

Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.

Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States and with Accenture (i.e., H1-B visa, F-1 visa (OPT), TN visa or any other non-immigrant status).

Accenture is a Federal Contractor and an EEO and Affirmative Action Employer of Females/Minorities/Veterans/Individuals with Disabilities.

Equal Employment Opportunity All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.

Accenture is committed to providing veteran employment opportunities to our service men and women.


Posted: 2021-03-12 Expires: 2021-04-18

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Federal - SOC Shift Lead

Germantown, MD 20875

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast