Position: Program Security Operations Manager
Job ID: AS20190411-34519
Location: Melbourne, FL
L3Harris is searching for a talented, experienced security professional to join the L3Harris Security Team as a Program Security Operations Manager for a State Government program. Principal responsibilities include acting a primary customer contact for security and managing the day-to-day security operations and engineering functions. Duties include oversight, training and execution of lifecycle management of security platforms supporting the network, SLA and Accreditation compliance, break/fix response, and monitoring and reporting of cyber threats against program assets, network infrastructure, and information. The environment includes local area networks/wide area networks (LAN/WAN), Internet connections, security devices, servers and workstations.
The Security Operations Manager is responsible for the technical and process direction of the Security Operations Center (SOC), provides direction to the analysts as well as acts as a liaison to other teams within the program and with the customer. The SOC is responsible for continuous monitoring and investigation of correlated security event feeds and the appropriate triage and escalation in case of an identified security incident. The SOC is the primary contact for any suspected security incidents and works to resolve incidents and remediate threats across the managed customer network enterprise.
Lead and manage the network SOC for a State Government program, providing technical oversight.
Lead staff to proactively identify, prevent and respond to security incidents.
Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring.
Ensure compliance to Service Level Agreements (SLA), process adherence and process improvisation to achieve operational objectives and mitigate threats.
Revise and develop processes to strengthen the current operational activities; review policies and recommend changes to improve governance.
Responsible for team management, mentoring, personnel scheduling, overall use of resources and initiation of corrective action where required for the SOC.
Management, administration and maintenance of security devices under the purview of the supported customer system(s).
Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
Responsible for integration of standard and non-standard logs in SIEM.
Creation of reports, dashboards, metrics for SOC operations and presentation to customer and program management.
Co-ordinate with stakeholders to build and maintain positive working relationship; this includes customer SOCs supporting the organization.
BS/BA (or equivalent) degree in Computer Engineering, Computer Science, IT Security or related field, and minimum 9 years related experience.
8+ years of Information Security / Cybersecurity experience.
6+ years working in a security or network operations center.
6+ years in a leadership role.
Prior Security Operations Management experience.
Experience with incident management, problem management and change management best practices.
Previous experience communicating with senior management and Government officials.
Desired skills and certifications:
Prior security analysis experience.
CISSP or CISM Certification.
Experience serving Government customers in a security environment.
Prior experience supporting US and/or State Government networks.
Experience networking and telecommunications integration, design and architecture.
Understanding of SIEM tools such as Splunk, ArcSight, RSA, McAfee ePO, etc.
Experience building and maintaining a high-performance team of analysts.
Expertise with Baseline Compliance standards (e.g., CIS) and US Government security standards (e.g., NIST).
Experience maintaining metrics and SLAs.