SOC Shift Lead

Responsibilities for this Position

Location: USA DC Washington - 1 Columbus Cir NE, Ste 34 (DCC004)
Full Part/Time: Full time
Job Req: RQ181505

Type of Requisition:
Regular

Clearance Level Must Currently Possess:
None

Clearance Level Must Be Able to Obtain:
None

Suitability:

Public Trust/Other Required:

Job Family:
Information Security

Job Qualifications:

Skills:
Incident Response, Information Technology Security, Security Operations
Certifications:

Experience:
5 + years of related experience
US Citizenship Required:
No

Job Description:

GDIT has an opportunity for a dynamic and collaborative Intrusion Detection Team Shift Lead to join our team. The Intrusion Detection Team Shift Lead will be a member of our team supporting the Administrative Office of the U.S. Courts (AOUSC), Information Technology Security Office (ITSO). As a team member, the Intrusion Detection Team Shift Lead will work collaboratively with federal and contractor staff to ensure the SOC effectively meets or exceeds the security operations requirements of each shift in a timely and comprehensive manner.

The Intrusion Detection Team Shift Lead must be able to handle events, e.g., identifying user security issues, extensive troubleshooting, and coordinating resolution or restore using a variety of applications and testing tools throughout each shift. The events may include hardware/software failures, as well as, security breaches, threats, or network connectivity issues. The Intrusion Detection Team Shift Lead must ensure that each member of the shift acts in a professional and courteous manner while answering inbound security-related calls and provide the AOUSC with the best possible customer service that includes creating tickets, filling out necessary checklist paperwork, generating trouble tickets for all work and informational requests, handling security-related user complaints, and escalating to the next tier according to established procedures.

HOW A SOC SHIFT LEAD WILL MAKE AN IMPACT

• Shift Management:
  • Supervise and manage the SOC team during assigned shifts.
  • Ensure proper analyst coverage is maintained, including holidays.
  • Ensure seamless transition and handover between shifts.
  • Monitor and maintain SOC workflows and processes to ensure efficiency and effectiveness.
• Incident Detection and Response:
  • Oversee the detection, analysis, and response to security incidents.
  • Coordinate with other SOC teams and stakeholders to manage and mitigate threats.
  • Ensure timely and accurate documentation and reporting of security incidents.
• Operational Oversight:
  • Monitor security alerts and events from various sources, including SIEM, IDS/IPS, firewalls, and endpoint protection systems.
  • Ensure SOC tools and technologies are functioning optimally.
  • Implement and enforce SOC policies, procedures, and playbooks.
• Team Leadership and Development:
  • Provide guidance and support to SOC analysts during shifts.
  • Conduct regular performance reviews and provide feedback to team members.
  • Identify training needs and facilitate skill development for the SOC team.
• Continuous Improvement:
  • Identify areas for improvement in SOC operations and recommend enhancements.
  • Stay current with emerging threats, trends, and technologies to improve SOC capabilities.
  • Participate in post-incident reviews and lessons-learned sessions.
• Collaboration and Communication:
  • Act as the primary point of contact for security-related issues during shifts.
  • Communicate effectively with other shift leads, SOC managers, and stakeholders.
  • Liaise with external partners and service providers as necessary.

WHAT YOU'LL NEED TO SUCCEED

• Bachelor's degree in Cybersecurity, Information Technology, or a related field. Equivalent experience will be considered.
• Minimum of 3 years of experience in a SOC environment, with at least one year in a supervisory or lead role.
• Proven experience in managing security incidents and incident response processes.
• Strong knowledge of cybersecurity principles, threat landscapes, and attack vectors.
• Proficiency with security technologies such as SIEM, IDS/IPS, firewalls, and endpoint protection systems.
• Familiarity with regulatory requirements and industry standards (e.g., NIST, ISO, GDPR).
• Relevant certifications include CISSP, CISM, GCIA, GCIH, or equivalent.
• Excellent leadership, communication, and interpersonal skills.
• Strong analytical and problem-solving abilities.
• Ability to work under pressure and manage multiple priorities.

Scheduled Weekly Hours:
40
Travel Required:
10-25%
Telecommuting Options:
Hybrid
Work Location:
USA DC Washington

GDIT IS YOUR PLACE:

• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Rest and recharge with paid vacation and holidays

Salary Range: The likely salary range for this position is $100,175 - $135,531. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.#J-18808-Ljbffr