Risk and Integration Lead
Sentar Inc. · Charleston, SC · 1 mo ago
On-siteInformation TechnologyFull-time
About the role
Sentar is seeking a Risk and Integration Lead in Charleston, SC. This team assists the Director in defining Service Area Requirements, identifying process improvement Projects, and providing support in the defensive cyber operations (DCO) monitoring and incident response functions for the IPT. COMET provides ancillary support in fulfilling inherently government responsibilities associated with Operations.
Responsibilities
- Assists the Director in defining Service Area Requirements
- Identifies process improvement Projects
- Provides support in the defensive cyber operations (DCO) monitoring and incident response functions
- Assists in operations oversight, prioritization, and decision-making
- Oversees technical cyber monitoring and incident response during their local daytime shift
- Provides updates to the Director and other stakeholders
- Drives continuous improvement by defining new methodology for Operations' scalability through proactive research, evaluation, and implementation of novel tools, capabilities, and processes
- Maintains requirements, issues, and gap logs to ensure accuracy, traceability, and resolution across the IPT
- Aids in establishing Service Area requirements for the defense, integration, and analysis of subscriber networks
- Oversight and validation of network intrusion detection, monitoring, and correlation analysis; incident response; and network and host-based digital forensics
- Provides professional and technical guidance to Service Area personnel on cybersecurity subject matters
- Attends meetings in support of Service Area to identify operational issues and process improvement opportunities
- Prioritizes and ensures mission execution aligns with requirements (CJCSM 6510.01B, DoD O-8530.1-M, and ESM)
Requirements
- Strong technical understanding of cybersecurity operations and experience in managing and overseeing technical cyber monitoring and incident response
- Excellent communication and problem-solving skills, as well as the ability to work collaboratively with cross-functional teams
- Deep understanding of incident response processes and procedures and ability to apply this knowledge in driving continuous improvement and defining new methodology for Service Area scalability
Qualifications
- Understanding of modern cyber defense policies, procedures, and regulations, such as defense-in-depth principles, intrusion detection methodologies, and incident response frameworks
- Identification of appropriate response actions associated with different cybersecurity event scenarios as well understanding of the different classes of attacks and knowledge of general attack stages (cyber kill chain)
- Ability to communicate in both written and verbal format to stakeholders, tailored at either non-technical or technical levels as required
- Ability to direct, coach, and mentor floor analysts both outside cybersecurity events as part of skills development and during cybersecurity events as a Subject Matter Expert and surge support
- Ensures problems are communicated from analysts up to leadership and follows up between all parties to ensure resolution of problems
- Analyzes, tracks, and directs own workflow to ensure efforts are placed on projects that will improve the workflow and services the Ops Watch Floor provides
- Remains self-disciplined and ensures timely completion of tasks
Desired Skills
- Knowledge of reverse engineering and malware analysis such as familiarity with program memory structure, compilation, and assembly, as well as ability to read code, de-obfuscate code, and determine if code is malicious or benign
- Knowledge of programming language structures and logic, secure coding techniques, and familiarity with computer science sub-fields such as information theory, cryptography, computer security, operating systems, networks, and embedded systems
- Experience presenting to senior (GS15/O5+) Leadership
- Knowledge of DoD Cyber policies and compliance guidelines
- Familiarity with CJCSM 6510.01B Cyber Incident Handling Program
- Working knowledge of common DCO tools
- Familiarity with SaFE methodology and Atlassian products (Jira, Confluence, etc.)
Benefits
- Voluntary Medical, Dental, Vision, with Health Savings or Flexible Spending Plan options
- Voluntary Life, Critical Illness, Accident, and Long Term Care insurance options
- Group Term Life, Short-Term and Long-Term Disability is provided by Sentar to all qualifying employees
- Generous 401(k) match
- Competitive PTO plan that graduates quickly with years of service
- Other leave programs; holiday schedule along with bereavement, maternity, jury and military duty
- Mental health awareness programs
- Tuition reimbursement
- Professional development reimbursement
- Recognition and Awards programs