Edgewater Federal Solutions is currently seeking a Incident Response (IR) Manager to provide IR leadership, management, and support to an Incident Response team comprised of IR Tier-1, IR Tier-2, and Forensics specialists on a Federal government contract. This role will also serve as the “Right-of-Boom” Deputy to the Cybersecurity Operations Task Lead.
Responsibilities
Provide oversight, leadership, management, work assignment, organization, and administrative duties for a combined team of around 20 cyber security specialists specializing in Incident Response and Forensics.Provide robust operational management, planning, oversight, metrics, and reporting for the IR team and support audits, assessments, and capability maturity efforts in various tools including Microsoft SharePoint, Excel, PowerPoint, Power Automate, and Power BI.Ensure the complete, accurate, and timely delivery and/or maintenance of all relevant contract Deliverables and ad hoc work products including briefings, artifacts such as strategy documentation, playbooks, incident tickets and reports, after action reports, shift change and daily mitigation reports, chain of custody forms, forensics reports, shift schedules, and select ad hoc reports and executive briefings as required.Ensure the IR team supports the Client’s incident response (IR) capabilities including incident response policy, plan, process, procedures, guidelines for communications, team structure, relationship management between incident response teams, service creation or enhancement with scope definitions, on-going training needs and documentation creation and maintenance.Ensure the IR team provides Tier-1 cybersecurity detection and response operational support to identify and respond to potentially malicious, misuse and abuse of anomalous activities across the Client’s operating environments, including initial detection, identification, triage, and mitigation of security related incidents impacting the confidentiality, integrity and availability of the Client’s network and systems.Ensure the IR team provides Tier-1 cybersecurity detection and response operational support to identify and accurately categorize cyber security incidents, integrate, and utilize other NIH enterprise security capabilities, support threat mitigation techniques and incident response, minimize ticket/incident backlog in NIH ticketing systems, and notify appropriate authorities of incidents and their severity within established timeframes and guidelines.Ensure the IR team provides Tier-2 and Forensics. This also includes counterintelligence/insider threat support and research and development.Ensure the contract team provides forensics services to the Client, including host and appliance based, mobile devices, network, cloud, and malware forensics.Ensure the contract team provides Counterintelligence (CI) and Insider Threat (InTh) services to the Client, including internal investigations, law enforcement investigations, and active monitoring.Proactively enable, coordinate, collaborate, integrate, and recommend on-going improvements for IR capabilities and provide guidance to Federal (Client) leadership.
Qualifications
5+ years’ experience comprehensive cybersecurity operations leadership and management.Bachelor’s Degree or higher in relevant cybersecurity-related major.Demonstrated expert-level delivery experience and knowledge of IR concepts, operations, outputs, and maturity levels.Demonstrated expert-level delivery experience and knowledge of Forensics concepts, operations, outputs, and maturity levels.Demonstrated expert-level delivery experience and knowledge of ticket management tools and practices; troubleshooting; investigations; computer networking; and operating systems.Demonstrated expert-level technical ability/aptitude, demonstrated through prior technical experience and accomplishment.Excellent critical thinking, analytic skills, and experience.Excellent time management skills and experience.Excellent management, teamwork, and interpersonal skills against difficult due dates and timelines.Excellent customer service focus to meet the needs of internal and external customers.Excellent presentation development and delivery skills.Excellent program management, project management, and task tracking skills.Ability to work on occasional weekends and holidays.Ability to pass an HHS Tier-2 security clearance background investigation.
Desired:
One or more certifications in information security (such as CISSP, CISM, CompTIA Advanced Security Practitioner, CompTIA Security Analytics Expert, CCTHP, CySA+, Security+, etc.).Project Management Certifications (such as CAPM, PMP, ITIL etc.).Current Security clearanceAbout Us:
Edgewater Federal Solutions is a privately held government contracting firm located near Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services, and timely delivery. Edgewater is ISO 9001, 20000-1, 27001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2024.
It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other status protected by applicable law.
Options Apply for this job onlineApplyShareEmail this job to a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Application FAQs
Software Powered by iCIMS
www.icims.com