Department of Homeland Security (DHS), Security OperationsCenter (SOC) Support Services is a US Government program responsible tomonitor, detect, analyze, mitigate, and respond to cyber threats andadversarial activity on the DHS Enterprise. The DHS SOC has primaryresponsibility for monitoring and responding to security events and incidentsdetected at the Trusted Internet Connection (TIC) and Policy Enforcement Point(PEP) and is responsible for directing and coordinating detection and responseactivities performed by each Component SOC. Direction and coordination areachieved through a new shared DHS incident tracking system and other means ofcoordination and communication.
The Security Operations Center (SOC) Sr. Metrics Analystwill work directly with the SOC Metrics Team Lead and the customer to ensure thateffective, measurable Cyber metrics are collected, analyzed, and presented onboth and ad hoc and continual basis using the existing infrastructure. Thecandidate will be responsible for implementing SOC metrics program to ensurethe metrics collected are impactful, and assist in driving sound managementdecisions. The candidate must have astrong background as a Sr. Cybersecurity Analyst supporting 24X7 operationswith experience in data security technologies, incident response, forensics,and digital media analysis and process improvement. The candidate should be familiar the CyberKill Chain methodology and how to correctly measure its effectiveness.
Propose SOC metrics for government approval
Develop a set of SOC metrics that indicate ESOC and
Enterprise SOC staff awareness of the Kill Chain methodology
Develop Implementation Metrics that demonstrateenterprise SOCs are actively using Kill Chain methodology
Develop effectiveness and efficiency SOC metrics
Develop Impact Metrics demonstrating the maturity ofenterprise SOCs
Develop a metrics scorecard to display the level ofeffectiveness of enterprise SOCs
Build dashboards using the ESOC infrastructure tosupport on-demand metrics representation
The candidate must currently possess or be able to obtain aDHS EOD and be eligible for Top Secret/SCI. Familiar with the management, operational, and technical aspects of ITSecurity in a complex enterprise environment. Experience operating at a Sr.Analyst in a 24x7 security operations center (SOC) in the areas of DigitalMedia Analysis, Forensics, Incident Response, or malware reverse engineering.
BS in ComputerScience or Information Systems,Industrial Engineering, Business Administration, Business Analysis,Math/Accounting/Finance or related field.
5 to 7 years ofwork experience in the following areas:
designing andproducing metrics, KPIs, and data visualizations.
creatinginteractive metrics dashboards using Power BI, Tableau or other datavisualization tools.
generatingreports, charts, and graphs.
Advanced level proficiency inMicrosoft Excel: ability to write and update complex formulas, build macros,and present numerical data in visual formats such as charts and pivot tablesand ability to create presentations and reports.
Advanced level proficiency inBI/Data Visualization Tools: ability to write and update existing queries,develop/import data from external sources, develop and generate other objectssuch as forms and reports.
Extensive experience with datarequirements, architecture, design, development, deployment, and resourcemanagement methodologies and best practices.
Significant experience withmaintaining, integrating, and preparing complex large data sources andquerying/integrating data from databases.
High degree of knowledge of the
Data and Analytics functional and technical competencies (Business Process,Data Flow, Data Architecture, Technical Design, Development Processes, CodeDeployment, Load Testing, DevOps, etc).
Ability to work in a fast paced,demanding, and fluid environment.
Strong problem solving andanalytical skills.
Strong organization skills andattention to detail.
Exceptional interpersonal skillsand written communication skills to frequently interact with all levels of theorganization.
Familiarity Splunk and its dashboard capabilities
Familiarity with Cyber Kill Chain methodology
Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company's diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer.