Job Information
SOS International LLC Defensive Cyber Assessment Team Lead in Fort Huachuca, Arizona
Overview
This position is contingent upon award of contract
SOS International, LLC (SOSi) is currently seeking a Defensive Cyber Assessment Team Lead in Fort Huachuca, AZ . The Defensive Cyber Assessment Team Lead reports to the Defensive Cyber Operations Branch Manager and is responsible for the overall technical and personnel management within the Defensive Cyber Assessment Team. The DCA Team Lead is responsible for overall technical and personnel management of the DCA mission. The DCA Team Lead acts as the overall Penetration Testing Subject Matter Expert, maintains ownership of all DCA TTPs, and acts as the coordination point between the DCA mission, government task mangers, external organizations, and other internal technical areas.
Essential Job Duties
Supervisory responsibilities to include but not limited to:
Reporting and timekeeping; technical/administrative training; assuring ITIL process compliance; actively communicating with the government to include utilizing MS Teams; scheduling to effectively utilize all team resources; support management decision-making; committing to quality management standards, QA/QC compliance, and metrics analysis.
Coordinates team schedules ensuring mission coverage.
Trains, mentors, coaches, and enforces the SOSi code of conduct.
Assures ATCTS reporting compliance and employees training and certifications are current.
Recommends innovative solutions to more effectively and efficiently support work performance.
Provides performance feedback and appraisals for all direct reports.
Nominates employees for recognition and awards program.
Supports leadership development and succession planning program.
Responsible for conducting both local and remote penetration testing designed to emulate current threat models to the Army network to execute an assessment of the defensive security posture.
Evaluate for acceptance new penetration testing procedures as required for inclusion on approved penetration tools list.
Organize and conduct CDAP missions consisting of both NAV and PPT mission areas based on Government prioritization and direction.
Organize and conduct NDA missions. This includes validating suspected compromises and identifying the depth of intrusions to gain knowledge for use in mitigation, recovery, and future prevention of possible compromises.
Execute web assessments of all registered public facing web sites, within the CONUS theater.
Develops, publishes, and maintains penetration testing and network damage assessment techniques, tactics, and procedures (TTP).
Leads the integration of new technical solutions and platforms into the DoDIN-A, develops new processes, and authors new SOPs and TTPs to employ them to their full potential.
Travel within 4 hours of notification.
Follow ITIL best practices to manage tickets and processes.
Develop and/or maintain SOPs, TTPs, and SmartBooks associated with current knowledge of relevant technologies as assigned.
Provides guidance and work leadership and structure to less-experienced personnel.
Maintains current knowledge of relevant technologies and recommends improvements based on industry trends.
Provides timely notification to the Government for any critical or high incidents impacting critical systems and services.
Provides on-call support after business hours and during weekends when required.
Participate in special projects as required.
Collaborate with GTMs, Branch Chiefs, Division Chiefs and Leadership.
Minimum Requirements
Active in scope Top Secret (TS) with eligibility for Sensitive Compartmented Information (SCI) clearance
HS +12 yrs similar technical experience or AA/AS +10, or BS/BA +8
An IAT III certification (CASP+CE, CCNP-Security, CISA, CISSP(or Associate), GCED, or GCIH) is required
CSSP-IR Certification (CEH)
GIAC Certified Forensic analyst (GPEN)
ITIL Foundation Certification
Knowledgeable in the mission and operational requirements of the U.S. Army
Demonstrated understanding of U.S. Army IT operational and technical requirements
Must be willing to work overtime, after hours, holidays, and weekends, as necessary
Preferred Qualifications
Master’s degree in Network Management, Telecommunications, Cybersecurity, National Security Strategy, or a related field
ITIL v4 certification
PMP Certification
3-5 years or more of supervisory experience.
Work Environment
Working conditions are normal for an office environment.
Fast paced, deadline-oriented environment.
May require periods of non-traditional working hours including consecutive nights or weekends (if applicable)
SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.