View All Jobs

Cyber Incident Manager, Principal in Fairfax at General Dynamics Information Technology

Date Posted: 4/7/2018

Job Snapshot

  • Employee Type:
  • Location:
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
  • Job ID:

Job Description

Cyber Incident Manager, Principal

Leads a team of personnel who perform the role of primary Incident/Hunt Coordinator for all incident response and cyber hunt engagements requiring focused response, containment, investigation, and remediation.

Ensures assigned personnel follow the appropriate incident escalation and reporting procedures; coordinate response action to identified threats and incidents

Recommends a course of action on each incident/hunt and create, manage, and record all actions taken and serve as initial POC for Events of Interest reported both internally and externally.

Provides support promptly and efficiently through front-line telephone and email communications.

Ingest, triage, prioritize, assign, track, document, and manage incidents, cyber hunts and results

Provide technical support in response to computer security incidents and cyber hunts; proficient in identifying cyber incident root causes and information necessary to determine root cause

Correlate, map, and fuse any and all incident/hunt information for the development and distribution of cyber alerts and notices, or other products as required

Document technical details of current or potential cyber incidents. Must be flexible and able to work within a 24 X 7 X 365 support environment.

Manage information, requests, that may be considered out of the scope of the incident management or hunt service and route appropriately

Coordinate, communicate, share information, and work closely with teams within HIRT, within NCCIC and outside of NCCIC

Initiates and maintains contact with affected parties during incident response/hunt lifecycle.

Develops Standard Operating Procedures and Performance Metrics

Provides oversight of incident/hunt data flow and response, content, and remediation, and partners with other incident response centers (hunt centers/engagements) in maintaining an understanding of threats, vulnerabilities, and exploits that could impact networks and assets.

Provide significant insight into the management of complex incident response and hunt engagements, programs and initiatives with high threat and large scope.

Participates in special projects as required.

This position could be deployed in the field on-site at a DHS customer to support/perform incident response or cyber hunt activities if the need arises.

Additional Requirements:

This position could possibly be designated as critical to agency operations and may be required to be deployed as part of an Emergency Relocation Group (ERG) in conjunction with COOP deployment or emergency activation team.

Active Top Secret Security Clearance with SCI eligibility is required. In addition, must be able to obtain and maintain a favorably adjudicated DHS background investigation for continued employment

Certifications: One or more of the following Certification(s): Certified Investigator, CISSP, GCIH, GPEN is preferred.

Job Requirements

8-10 years of related experience in data security administration.

As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.