Overview

At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities. To find out more about how Criterion can help you take your career to the next level please visit our website: www.criterion-sys.com. Criterion Systems is a Military/Veteran Friendly Company therefore we encourage Veterans to apply.

Responsibilities

We are seeking a mission-focused Cybersecurity Operations and Engineering Team Lead to support and contribute to our government customer’s success in Alexandria, VA.

The individual in this position must be a motivated team player that strives for professional and technical excellence in Cybersecurity.

This position is responsible for leading the Cyber Security Operations and Engineering Team which includes performing as the liaison with the government customer and taking ownership for all tasks within the Statement of Work (SOW) for this team. The position provides leadership and oversight to all functional task areas relating to Cyber Security Operations and Engineering with emphasis on operations and maintenance (O&M) of Vulnerability Management (VM), Incident Response (IR), Intrusion Detection and Analysis, Forensics Analysis, Baseline Compliance Management, Cloud Security, Continuous Diagnostics and Mitigation (CDM), and Threat Intelligence Dissemination. The Team Lead will be key in the management, prioritization, and planning of all Team activities including security policy development, Standard Operating Procedure (SOP) maintenance, technical reviews of proposed additions to the Enterprise (IT systems, software, hardware, and architecture), collaborating with other contractors, external vendors and other Government Agencies/Departments, and reviewing artifacts and reports prior to submission to verify they are sufficient in preparing the customer to address known security operations and engineering requirements and/or concerns. This position requires working closely with the Federal Stakeholders to ensure cooperation and task implementation in addition to close collaboration with Project Managers managing Special Projects associated with the Operations and Engineering team. The candidate must have proven success in management of teams and direct collaboration with project managers and government customers. 

Duties, Tasks & Responsibilities

• Experience in a team leadership/oversight role including providing mentor-ship to junior and mid-level engineers in developing skills
• Must be a self-starter with a demonstrated ability to work with a mix of technical and non-technical colleagues
• Proven problem-solving skills and attention to detail; effective written and verbal communication skills; ability to communicate with all levels of the enterprise
• Ability to handle difficult and stressful situations with professional composure; ability to work collaboratively and build strategic relations with colleagues, co-workers and Federal Stakeholders
• Experience working with Government organizations and a familiarity with Federal organizational structure and the relationship between Offices/Directorates.
• Exposure to computer networking in multi-process platform environment (UNIX, Linux, Mac OS, Microsoft, Solaris) and mobile devices
• Knowledge of computer networking concepts and protocols, and network security methodologies, including intrusion detection methodologies and techniques for detecting host-and network-based intrusions via intrusion detection technologies
• Experience with Data Loss Prevention (DLP), preferably specific to the McAfee DLP product
• Familiarity and experience using the customer’s tools, technologies and products:
  • FireEye AX, FireEye HX, FireEye NX, FireEye PX, Cylance, Security Onion, EnCase, CyberArk, ForeScout CounterACT, Splunk Enterprise, RSA Archer, ServiceNow, Tenable Security Center (SC), McAfee Endpoint Protection, McAfee ePolicy Orchestrator (ePO), McAfee VirusScan Enterprise (VSE), McAfee Host Intrusion Prevention System (HIPS); McAfee DLP
  • Amazon Web Services (AWS) and other cloud tools, technologies and products: AWS Configuration Manager, AWS GuardDuty, AWS Secrets Manager, AWS Parameter Store, Web Application Firewalls, AWS CloudWatch, Twistlock, Secrets, Key Management Services (KMS)
• Support of Inspector General (IG) Monitoring
  • Modernize the customer’s established processes and procedures
  • Support the customer in achieving a risk based and cost effective cyber security program compliant with National Institute of Standards and Technology’s (NIST) Cyber Security Framework areas
  • Identify, Protect, Detect, Respond, and Recover
  • Identify, develop and support the NIST procedures and artifacts for annual IG metrics
  • Perform as the subject matter expert for Federal Risk and Authorization Management Program (FedRAMP)
• Information Security Controls and Continuous Monitoring
  • Lead team members in performing all tasks for continuous monitoring of system configuration components
  • Take immediate and appropriate counter measures upon knowledge or discover of threats
  • Perform as a subject matter expert regarding all Federal Information Security Management Act (FISMA) topics, including attending briefings and meetings
  • Research major obstacles related to federal changes in FISMA requirements and coordinate closely with team members for execution
  • Collect and analyze intelligence regarding cyber threats and vulnerabilities; direct and coordinate the response to such threats and vulnerabilities using the latest methods and tools available
  • Conduct security impact analyses of environmental changes
  • Ensure regular system scanning and assessments of assets connected to the customer’s networks and develop/deliver reports to the security management team
  • Track whether threats and vulnerabilities have been mitigated on time and appropriately
  • Validate the quality of system artifacts
  • Present the vulnerability and incident status portion of the Daily Tag-Up Report
• Cyber Security Intrusion Detection, Incident Response, and Forensic Analysis
  • Assist with the creation and maintenance of position run-books for relevant areas of responsibilities
  • Serve as the primary point of contact for Managed Security Services monitoring, alerts, etc.
  • Provide 24x7 monitoring and incident response capabilities, and Web-accessible audit logs
  • Assist in the deployment of additional intrusion detection capability
  • Provide support during computer cyber security intrusion/incident investigations
  • Establish the objectives and data to be searched to determine whether inappropriate material exists within the customer’s network
  • Manage the licensing and end of life of software and products
• Network Operations Center (NOC) Support
  • Recommend services and standards for supporting the end user computing environment/end users from the perimeter endpoints
  • Periodically review approaches and methods used in operation sustainment of assets and their impact or risk to the NOC
  • Recommend Cyber Security improvements to the operation of the service desk that will help ensure compliance to Security Policy and regulations and that will minimalize vulnerabilities
  • Participate in groups addressing cyber security related issues from escalated trouble tickets
  • Conduct post mortem review and where opportunities from improvement are identified; provide follow-up recommendations for improving NOC Tier 1 solutions

Qualifications

Required Experience, Education, Skills & Technologies

• Degree in Cyber Security, Computer Science or expertise in the field to compensate
• 7 Years of Experience
• Security Certification
• Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM) or SANS GIAC Security Essentials (GSEC)
• US Citizen eligible for a NACI/Public Trust clearance

Preferred Experience, Education, Skills & Technologies

• Project Management Institute certified Project Management Professional (PMP)
• Certified Ethical Hacker
• Certified Information System Auditor (CISA)

Security Clearance Level

• US Citizen eligible for a NACI/Public Trust clearance

Work Schedule

• Full-time on-site

Benefits Offered

• Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Tuition/Training Assistance, Parental Leave, Paid Time Off, and Holidays.

Criterion Systems, LLC and its subsidiaries are committed to equal employment opportunity and non-discrimination at all levels of our organization. We believe in treating all applicants and employees fairly and make employment decisions without regard to any individual’s protected status: race, ethnicity, color, national origin, ancestry, religion, creed, sex/gender, gender identity/gender expression, sexual orientation, physical and mental disability, marital/parental status, pregnancy (including childbirth, lactation, and related medical conditions), age, genetic information (including characteristics and testing), military and veteran status, or any other characteristic protected by law. For our complete EEO/AA and Pay Transparency statement, please visit https://careers-criterion-sys.icims.com/.