SOAR Task Lead


Job Description:

Department of Homeland Security (DHS), Security Operations Center (SOC) Support Services is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the DHS Enterprise. The DHS SOC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC. Direction and coordination are achieved through a new shared DHS incident tracking system and other means of coordination and communication.

Leidos has an immediate need for a Security Orchestration Automation and Response (SOAR) Implementation Task Lead to join our DHS Team. The ideal SOAR Implementation lead is someone who is process driven, efficient, and strives to remove tedium from daily workflows. The SOAR Implementation lead will:
•Support the development of custom software implementation plans for various customers.
•Creating plans/approaches to resolve software issues during the implementation process
•Review and support the development of SOC/Incident Response and Remediation Playbooks
•Be the central point of contact for the implementation team to include all coordination, tracking, and execution of the implementation process
•Identify requirements for each customer and guide them through the implementation process
•Promote the teams capabilities and skills to make recommendations to customers to ensure success at the highest level
•Communicate with executive leadership (internally or client) regarding matters of significant importance to the organization/project.
•Identify and recommend adjustments that will support the improvement of the implementation process
•Provide status reports to the customers and program manager as requested
•Develops solutions that are highly innovative, and achieved through research and integration of best practices


The candidate must be able to obtain an Entry on Duty (EOD) clearance as is required for all Department of Homeland Security SOC employees in order to support this program.
The ideal candidate will have the following qualifications:
•Team player that works well in collaborative situations and autonomous environments
•A solid background in Security Operations Centers (SOCs) and Incident Response (IR) processes and procedures
•Bachelors Degree and 12 to 15 years of prior relevant experience or Masters Degree with 10-13 years of prior relevent experience.
•Ability to quickly grasp complex technical concepts and make them easily understandable verbally, in writing, and designing supporting network diagrams/illustrations as necessary
•University degree in Computer Science, Information Technology, Engineering, or equivalent work experience
•A strong understanding of modern cybersecurity technologies and methodologies, including:
•Deploying and integrating such platforms
•Consulting on best-practices for SOC/IR functions
•Developing and implementing automation and orchestration capabilities to streamline operations

Pay Range: