Req ID: RQ208648
Type of Requisition: Regular
Clearance Level Must Be Able to Obtain: None
Public Trust/Other Required: MBI (T2)
Job Family: Cyber and IT Risk Management
Skills:
NIST,Project Management,Security Operations
Experience:
7 + years of related experience
US Citizenship Required:
Yes
Job Description:
General Dynamics Information Technology (GDIT) is seeking a highly skilled and experienced Security Operations Center (SOC) Project Manager to support an enterprise cyber program for one of our federal health customers. The SOC Project Manager will serve as the primary point of contact and leader for the SOC team, overseeing all aspects of the SOC's operations and ensuring effective management of cybersecurity incidents across a hybrid on-premises/cloud environment. As a team member, the PM will work collaboratively with federal and contractor staff to ensure the SOC effectively meets the security operations requirements in a timely and comprehensive manner.
The SOC PM will be an advocate for IT security operations activities to promote greater awareness and understanding of operational cybersecurity posture.
HOW A SOC PROJECT MANAGER WILL MAKE AN IMPACT:
Ensure that SOC operations are managed according to best business practices and Project Management International (PMI) standards.
Continuously monitor the performance of SOC staff in conjunction with the Contract Service Level Agreements (SLAs), including program progress, risks, issues, and proposed resolutions.
Direct, execute, and control all elements of contractor provided SOC services and ensure that all necessary management, analysis, business, contracts, engineering, implementation, and maintenance personnel resources are available and enough, both in numbers and in qualifications, to perform all required tasks.
Exchange information and communicate with the Government Cyber Operations personnel and Contract Officer Representative (COR) as necessary.
Execute and provide information on the activities and milestones completed and deliverables submitted to support program reporting.
Identify and communicate potential schedule variance, mitigation strategies, and actions taken.
Identify and communicate issues encountered and resolution applied.
Track and communicate information related to unresolved issues as well as their current status and actions taken.
Establish milestones and activities that are planned for the next reporting period.
Conduct policy and technical document reviews.
Develop security configuration standards, standard operating procedures, and checklists, and provide updates supporting the daily activities.
Provide requested metrics and artifacts to support reporting and audit requests.
Track schedules including milestones and deliverables.
Maintain risk registers and risk and issue mitigation strategies for all risks.
Provide a plan to monitor and track program and task performance to ensure on time service delivery.
Resolve management and programmatic issues.
Develop staff of varying skill levels on both cybersecurity competencies/expertise and personal development. Guide in their continued growth and success as individuals and as a team.
Participate in the development and tracking of key performance indicators (KPIs) related to SOC operations, to benchmark and further enhance capabilities.
Perform special projects and other duties as assigned.
SOC Management:
Oversee the day-to-day operations of the Security Operations Center, ensuring all processes and responses are conducted efficiently and effectively.
Implement and maintain SOC policies, procedures, and processes to ensure comprehensive monitoring and incident response capabilities.
Develop and manage key performance indicators (KPIs) to measure SOC effectiveness and provide regular reports to executive leadership.
Incident Response:
Lead the incident response team to manage and mitigate cybersecurity incidents, including reporting and following up on security events.
Ensure prompt detection, analysis, containment, eradication, and recovery from security incidents.
Coordinate post-incident reviews to identify lessons learned and propose improvements.
NIST Cybersecurity Framework Implementation:
Oversee and manage activities related to all five portions of the NIST Cybersecurity Framework-Identify, Protect, Detect, Respond, and Recover.
Ensure compliance with federal regulations and customer requirements.
Develop and maintain comprehensive documentation on SOC processes and procedures.
Team Leadership and Development:
Lead and mentor a team of cybersecurity analysts and engineers, providing guidance, training, and professional development opportunities.
Recruit, hire, and retain top talent to support the strategic goals of the SOC.
Foster a collaborative and high-performance culture within the team.
Client and Stakeholder Engagement:
Serve as the primary point of contact for stakeholders, ensuring clear communication and understanding of SOC activities and initiatives.
Develop and maintain strong relationships with customers and partners to ensure alignment with enterprise goals.
Provide detailed and executive-level briefings and reports to stakeholders on a regular basis.
Technology and Tools Oversight:
Manage and optimize the deployment and use of SOC tools, including SIEM, endpoint detection and response (EDR), threat intelligence platforms, and other security technologies.
Stay current with emerging cybersecurity trends, threats, and technologies to continuously improve the SOC's operations.
Ensure the integration and utilization of cloud-native security tools and practices alongside traditional on-premises solutions.
WHAT YOU'LL NEED TO SUCCEED:
Bachelor's degree in Information Technology or equivalent experience. Master's degree a plus
Minimum ten (10) years of experience in IT Security or Information Technology.
At least 5 years of experience in cybersecurity incident response in environments with 50,000+ endpoints.
A minimum of 3 years of experience running a Security Operations Center, preferably a SOC managing both on-premises and cloud environments.
In-depth knowledge and hands-on experience with the NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover).
Strong leadership, problem solving and critical thinking skills. Ability to prioritize and execute autonomously.
Strong understanding of latest security principles and protocols.
Strong understanding of security operations technologies including SIEM and orchestration.
Knowledge in emerging technologies and tactics used within a SOC and how they are applied to improve efficiency and effectiveness.
Understanding of tactics, techniques and procedures associated with cyber threats.
Proven experience in deploying, operating, and optimizing SOC tools and technologies.
Excellent communication skills, with the ability to effectively convey complex technical information to both technical and non-technical stakeholders.
Familiarity with federal cybersecurity regulations and compliance requirements.
Preferred Qualifications:
Certifications such as CISSP, CISM, or equivalent.
Experience with cloud environments and cloud security technologies.
Background in federal health sectors or similar highly regulated industries.
GDIT IS YOUR PLACE:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays
Join GDIT and help support our mission to protect the health information infrastructure of our federal health customers through leading-edge cybersecurity solutions. Apply now to become part of a dynamic and dedicated team of professionals.
The likely salary range for this position is $136,000 - $184,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at https://gdit.com/tc.
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
