Remote NOSC Cyber Manager

Summary

Join T-Rex Solutions as a Network Operations Security Center (NOSC) Cyber Manager to assist in monitoring, detection, analysis, mitigation, and response to threats and adversarial activity. The role involves supervising a small team of Cyber Network Defense Analysts, managing technical detection and analysis, and ensuring shift continuity during call-outs and emergencies.

Requirements

• A Bachelor’s degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field and a minimum of eight (8) years total professional experience in at least two (2) of the areas listed below: Vulnerability Assessment
• Intrusion Prevention and Detection
• Access Control and Authorization
• Policy Enforcement
• Application Security
• Protocol Analysis
• Firewall Management
• Incident Response
• Encryption
• Web-Filtering
• Advanced Threat Protection
• Military experience and training may be considered in lieu of degree
• Active advanced cybersecurity certification(s)
• Experience conducting detailed technical analysis of Cybersecurity Events and Incidents
• Extensive knowledge of a SOC’s/NOSC’s purpose and role within an organization
• Detailed understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc)
• Expertise with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc)
• Expertise with packet analysis tools such as Wireshark
• Able to perform critical thinking and analysis to investigate cyber security alerts
• Extensive knowledge of common malware and attack vectors
• Extensive experience with Windows operating systems and standard OS logging
• Extensive experience with Antivirus, DLP, and host-based firewalls
• Must have at least one of the following certifications: Comptia: Security+, Network+, CASP
• SANS GIAC: GCIA, GCIH, GCFA, GPEN, GWAPT, GCFE, GREM, GXPN, GMON, GISF, or GCIH
• EC Council: CEH, CHFI, LPT, ECSA
• ISC2: CCFP, CCSP, CISSP CERT CSIH
• Offensive Security: OSCP, OSCE, OSWP and OSEE

Responsibilities

• Supervise and manage a small team of Cyber Network Defense Analysts (CNDAs) within the NOSC in support of the government customer
• Manage and conduct hands-on technical detection, analysis, containment, eradication, and remediation as a member of the Incident Response team
• Guide and mentor peers and subordinates to provide cross training
• Ensure accountability and punctuality of security analysts assigned to your shift
• Capture cybersecurity metrics that support executive-level briefings (daily, weekly, monthly)
• Articulate daily challenges to the Government Watch Officer (GWO)
• Analyze web and host logs for indications of compromise
• Re-mediate and coordinate the remediation of infected or compromised devices
• Ensure shift continuity during call-outs and emergencies
• Compile incident reports, executive summaries, and analysis reports of intrusions and/or security events
• Document and update processes, workflows, and technical guides
• Perform simple firewall rule changes (after training)

Benefits

• Competitive salaries
• Performance bonuses
• Training and educational reimbursement
• Transamerica 401(k)
• Cigna healthcare benefits
• PTO available to use immediately upon joining (prorated based on start date)
• Paid parental leave
• Individual and family health, vision, and dental benefits
• Annual budget for training, professional development and tuition reimbursement
• 401(k) plan with company match fully vested after 60 days of employment