Cyber Threat Hunter Log Analyst Team Lead at Leidos

Description

Leidos Digital Modernization sector has a career opportunity for a Cyber Threat Hunter Log Analyst Team Lead  to support the Air Force National Capital Region IT Services program. 

The AFNCR IT Services program provides support services for information systems for Headquarters Air Force (HAF), Air Force District of Washington (AFDW), Office of the Secretary of Defense (OSD), Joint Chiefs of Staff, and other Air Force activities within the AFNCR, missions to include the Pentagon, Joint Base Andrews (JBA), Joint Base Anacostia-Bolling (JBAB), and other locations, leased spaces, and alternate sites. The major support areas required are IT Operations and Maintenance; Plans, Projects, and Engineering (PP&E); and National Military Command Center (NMCC). The senior leaders and national defense missions that are supported require that the AFNCR operations never fail, resulting in a fast-paced, challenging, but also rewarding environment. 

If this sounds like the kind of environment where you can thrive, keep reading!

The Leidos Digital Modernization Sector provides a diverse portfolio of systems, solutions, and services covering land, sea, air, space, and cyberspace for customers worldwide. Solutions for Defense include enterprise and mission IT, large-scale intelligence systems, command and control, geospatial and data analytics, cybersecurity, logistics, training, and intelligence analysis and operations support. Our team is solving the world’s toughest security challenges for customers with “can’t fail” missions. 

To explore and learn more, click here!

Are you ready to make an impact? Begin your journey of a flourishing and meaningful career, share your resume with us today!

The Cyber Threat Hunter Log Analyst Team Lead is responsible for overseeing the testing, implementation, and maintenance of cyber systems and network infrastructure. This role requires a strategic mindset to enhance security measures, troubleshoot complex issues, and ensure the integrity and reliability of our cyber defenses. The ideal candidate will lead a team of cyber professionals, driving initiatives that align with organizational goals and contribute to a robust cybersecurity posture.

Key Responsibilities: 

Leadership & Team Management:

• Lead, mentor, and develop a high performing team of cyber threat hunters and log analysts.
• Manage team performance to ensure effective execution of threat detection and incident response strategies.
• Collaborate with executive leadership to provide insights and updates on cybersecurity initiatives and incidents.

Cybersecurity Operations:

• Oversee the configuration, management, and protection of servers and computer systems, ensuring compliance with security standards.
• Implement and manage intrusion detection systems (IDS) and conduct device scanning, OS fingerprinting, and service scanning.
• Proactively identify, analyze, and respond to potential threats through advanced log analysis and threat hunting techniques.

Innovative Problem Solving: 

• Resolve complex cybersecurity issues through innovative solutions, utilizing advanced technical knowledge and industry best practices.
• Recommend and develop new technical solutions and standards that support the organization's cybersecurity strategy.

Communication & Collaboration:

• Effectively communicate cybersecurity strategies and findings to nontechnical stakeholders and executive leadership.
• Work cross functionally with other IT teams to integrate security measures into systems and processes.

Research & Development: 

• Stay current with emerging threats and trends in cybersecurity, integrating relevant knowledge into threat hunting methodologies.
• Develop and refine incident response playbooks and procedures to enhance organizational resilience.

Basic Qualifications: 

• BS degree and 12+ years of prior relevant experience additional years of experience will be accepted in lieu of a degree.

• DoD Secret clearance.

• In depth understanding of intrusion detection systems, SIEM tools, and cybersecurity frameworks.

• Proficient in scripting languages (e.g., Python, PowerShell) for automation and data analysis.

• Strong knowledge of network protocols, operating systems, and security best practices.

• Experience with Security Onion.

• Experience with Air Force ELICSAR.

• Experience with Gabriel Nimbus/ IONIC.

Soft Skills: 

• Exceptional communication and interpersonal skills, with the ability to influence and drive organizational change. 

• Strong analytical and problem-solving abilities, capable of conceptualizing complex scenarios and solutions.

• Ability to prioritize and manage multiple projects simultaneously in a fast paced environment.

Preferred Certifications:

• CompTIA Security+

• Certified Information Systems Security Professional (CISSP)

• Certified Ethical Hacker (CEH)

• GIAC Cyber Threat Intelligence (GCTI)

Original Posting Date:

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.