BCMC is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. In support of the customer’s strategic direction, we are looking for a qualified Cybersecurity Technical Project Manager with experience in Agile Continuous development/Continuous Improvement pipelines, and Computer incident Response (CIRT), who can support our customer as a Monitoring, Metrics, and Requirements Team (MMRT) lead. The MMRT lead works with a cross functional team supporting the USG Security Monitoring and Incident Response (SMIR)group.

Responsibilities:
• Lead the MMRT with implementing the customer requirements to increase visibility in the organization in accordance with the customer’s continuous security monitoring strategy.
• Lead collaboration efforts with the contemporary team leads to help translate the requirements for successful advancement of the detection and response initiatives across the large incident response group.
• Leverage experience with NIST Risk Management Framework/Cyber Security processes to guide other teams to align with provisioning initiatives for Office of Management and Budget (OMB) Memorandum M21-31Minumim Logging requirements.
• Develop and report metrics for security performance of the existing security monitoring initiatives and help develop new requirements to expand capabilities.
• Maintain MMRTs Kanban for Agile project management terms and terminology.
• Utilize strong written and verbal communication skills to coordinate with team members and management and explain technical issues
• Review reports and briefs to provide an accurate depiction of the current threat landscape and associated risk
• Track cross team projects in support of provisional and onboarding efforts into the SMIR.

Required Skills:
• U.S. Citizenship
• Active Secret (TS) clearance. Must be able to obtain a TS/SCI clearance
• Must be able to obtain DHS Suitability
• 10+ years directly relevant experience
• Experience working across multiple functional teams and explaining technical data
• Understanding of Kanban methodology and Agile terms and terminology. Strong written and verbal communication skills to coordinate with team members and management and explain technical issues
• Collect information updates from team members, update the required presentations, and present the status on behalf of the team
• Possesses strong leadership, project management, and familiarity with scaled agile framework or agile concepts
• Analytical and problem-solving skills to handle any issues that occur during the project lifecycle
• Organization and time management skills to keep projects on track and within budget.
• Excellent resource planning and task scheduling skills
• Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures
• Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)
• Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks

Desired Skills:
• Experience as a detection analyst, threat hunter, or incident responder in a CIRT/SOC
• Experience using multiple Security Information and event Management (SIEM) platforms (e.g Splunk, ELK…)
• Experience supporting DHS, Federal Civil, Intelligence and/or DoD Customers • Experience with Agile development or Scaled Agile Framework (Safe), JIRA, and Kanban methodologies for managing projects
• Prior experience with data visualization products such as Analyst Notebook is desired

Required Education:
• Bachelor’s degree in information security, cyber engineering, or a related discipline is required [Twelve (12) years of experience (for a total of twenty-two (22) or more years) may be substituted for a degree.]

Desired Certifications:
• DoD 8570.1-M Compliance at IAT/IAM Level II (e.g., Certified Information Systems Security Professional (CISSP))
• Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP)
• Project Management Professional
• Scaled Agile Framework (SAFE)
• Splunk Certifications (Splunk Certified Cybersecurity Defense Analyst, Splunk Enterprise Security Certified Admin, Splunk Enterprise Security Certified Admin)
• Incident Response Certification (GCIH)

DOM 3298
Information System Security Analyst - Principal II - SCA06