Govt: Manager Intrusion Detection - US Citizen (5 Positions)Work Location: N.E. Washington DCInterview: Phone & Webex / CamCertifications: Any security related active cert will work. Clearance: Public Trust background check with finger-printing and drug screeningSkills:ID/IPs, SIEM (splunk, arcsight), Soc or Security Operations, NIST 800-181 OR 800-53 The Contractor shall serve as the subject matter expert for all intrusion detection-monitoring activities. The Contractor Program Manager is also responsible for the quality review and validation of all analysis conducted by contract shift staff.The Contractor shall perform the following tasks to support intrusion detection management and oversight:a) Support detailed discovery and analysis of intrusion detection security events, conduct a quality assurance check of the initial analysis conducted.b) Validate analysis that is conducted and ensure that the analysis provided is completed at a professional standard.c) Serve as the single point of contact for final incident reporting review and escalation.d) Ensure that all incidents are clearly documented and processed in accordance with the Intrusion Detection Team (IDT) Operations Guide and the Security OperationsCenter Incident Response Plan (SOCIRP) and have been reviewed for quality andaccuracy.e) Ensures that shift lead reports are completed for each shift and that the reports clearly detail all work performed during the shift. The Contractor is responsible for combining each of shift lead reports into a single daily report for digest by Government staff. The report shall be written in a concise and professional manner and the Contractor shall provide the individual shift lead reports when requested. f) Ensures that a shift change is conducted by shift leadership every shift to ensurecontinuity of operations and dissemination of key information. At a minimum, keyevents/incidents, communications and tasks must be transitioned to incoming shift, and accountability of staff on shift must be documented. g) Continuously review and update the IDT Op Guide and provide recommendations toannual updates for the JSOCIRP. All SOPs and Op Guides are federal governmentproperty. Contract staff provide recommendations in draft form for federal management review, approval and adoption.h) Communicate clearly both orally and in writing.i) Deliver a quality written shift lead report detailing work performed during the shift. The report shall be provided in Microsoft Word, 12 font, single spaced, and will be shared with Executive Management.
