Apply on Employer Site

SMS Data Products Group, Inc. · 4 months ago

Cybersecurity Operations Manager

Sumter, SC

Full-time

Onsite

Senior Level

5+ years exp

SMS Data Products Group, Inc. is a dynamic systems integrator established in 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions. The Cybersecurity Operations Manager will oversee cybersecurity operations, analyze cyber intelligence, and provide training and technical direction to ensure secure network operations.

GovernmentHardwareInformation TechnologySoftwareTelecommunications

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Provide management oversight for cybersecurity operations & intelligence functions

Analyze cyber intelligence reports to determine correlation and applicability to network operations on AFCENT networks

Analyze network intrusion detection reports and vulnerability assessments to evaluate security posture as it pertains to current operations and information security levels

Recommends security posture changes based on security analysis and changes in threat indicators

Develop reports and trend analysis of internal and external security activity, and incidents

Provide on-shift training for both contractors and government personnel to include analysis interpretation and threat/event correlation

Provide technical direction to other contractors on network and systems engineering to develop network and systems engineering concepts and apply System Development Life Cycle (SDLC) principles

Maintain a professional image and appearance, including appropriate attire commensurate with this senior staff position

Provide technical coordination and research to exploit cutting-edge technologies, assisting with technical and status updates for briefings and reporting

Review technical project documentation for final draft coordination and subsequent release. Includes assisting personnel with project documentation and web site development as needed

Coordinate technical visits from Air Force and other military agencies, and Contractors

Analyze Suspicious Event Reports (SER) to determine the impact and effect on AFCENT’s networks and systems, and provide details on possible actions and alternatives to resolve problems, issues, attacks, and intrusions

Coordinate with intelligence activities to gain situational awareness of cyber and security threats

Examine logs and information gained from network sniffers or protocol analyzers to determine if possible, outside or unauthorized access has occurred

Track and record possible intrusion or security breach from routine daily analysis to successful anomaly/intrusion identification, which includes writing detailed analysis for possible legal use

Use vulnerability assessment reports to analyze networks and operation systems to determine security weaknesses and shortfalls

Research and provide detailed fix actions for all identified vulnerabilities

Coordinate to ensure latest known vulnerabilities are properly identified and corrected. Make recommendations for changes in security policy based on vulnerability assessments

Maintain a standard set of published network architectural diagrams

Establish and coordinate periodic reviews and publishing to keep information accurate for use by Network Engineers and Helpdesk Technicians

Ensure Enterprise and Site network architecture drawings and diagrams are up to date and accurate

Establish and maintain a web page to provide deployed sites up/download access for site-specific drawings and diagrams

Develop logic flow charts for Enterprise processes utilized by the NOSC and deployed sites. Provide standardized written procedures and/or checklists for associated with common tasks and procedures

Convert draft technical documentation into a standard document format for formal publishing. Work with Network Engineers and Project Leads to document Concept of Operations, Engineering Plans, and Tactics, Techniques and Procedures (TTPs)

Establish and coordinate an annual review of published documentation. Develop logic flow charts for processes utilized by the NOSC and deployed sites. Provide standardized written procedures and/or checklists for associated with common tasks and procedures

Coordinate review of local policies. Prepare the System Security Authorization Agreement appendix for NOSC network projects in support of the NOSC and SWA

Assist Training Manager by standardizing training material

Review trouble tickets and create a knowledge base utilized by the level help desk technicians for fault isolation and resolution

Provide General IT Management support

Provide General Networking support

Provide LAN support

Provide WAN Enterprise support

Provide general O&M support as required

Provide documentation/reports support as required

Provide meetings/briefings support as required

Provide functional training support as required

Provide CONUS/OCONUS deployment/TDY travel support as required

Qualification

Unix/Linux experienceFirewall experienceMicrosoft Windows ServerNetwork+CCNAITIL Foundation certificationStorage solutions implementationHigh availability solutionsDNSDHCPGeneral IT ManagementGeneral Networking supportLAN supportWAN Enterprise supportO&M supportDocumentation supportMeetings/briefings supportFunctional training support

Required

B.S. in related field, and 5 or more years' relevant experience or 7 or more years' relevant experience

Unix/Linux and Firewall experience

Ability to identify and prioritize critical business functions in collaboration with organizational stakeholders

Must possess experience and demonstrate an understanding with installation of Microsoft Windows Server in Host and Compute Environments, and Windows Server using server images

Experience with implementation of storage solutions, high availability, Domain Name Systems (DNS), Dynamic Host Configuration Protocol (DHCP), network connectivity and remote access solutions, core and distributed network solutions, advance network infrastructure, and maintain and monitor server environments

Network+ or CCNA

Unix/Linux certification

ITIL Foundation (candidate has up to 60 days to acquire ITIL Foundation certification.)

Top Secret clearance required