ITC Federal is seeking an experienced Information Systems Security Engineer Lead to support a critical DOJ program. This position is required to support daily security services to all of Executive Office for Immigration Review (EOIR) customers/users and oversee a small team to help ensure IT systems are secure. This position reports directly to the EOIR designated Government lead and will provide weekly incident reports and tasks status to the Government leads. The candidate will be responsible for working with other IT support groups within EOIR to ensure security compliance across all IT systems.

ITC Federal, LLC is an information technology and consulting company focused on servicing the needs of the Federal Government. ITC's mission is to apply earned expertise in information technology and information assurance/security to assist this client in achieving its mission. ITC is located in Fairfax, VA and offers outstanding compensation and benefits plan and a challenging and rewarding professional work environment.

Contributes to rule and signature creations for IDS/IPS strategies.
• Contributes with dashboard creations in Splunk for threat hunting for known common threat vectors and Advanced Persistent Threats (APT).
• Provide a point of interaction between government management, contractor management, and the SOC analysts.
• Identify and mitigate of CVEs within the environment.
• DISA STIG analysis and implementation.
• Perform vulnerability scanning through Tenable.
• Supervise the Network Security Monitoring Team and Leads to ensure efficient processing of alerts from a variety of sources.
• Verify that Shift Leads are conducting proper delegation of duties among team members to satisfy all Service Level Agreement requirements.
• Evaluate work performed by team leads and to ensure that customer expectations are met.
• Performs overviews of team leads evaluations of team members.
• Gather and evaluate performance through the use of metrics to identify potential performance and/or behavioral deficiencies and provide corrective actions when necessary.
• Manage and contribute to the completion of milestones related to multiple ongoing and simultaneous projects.
• Contributes to the development of a comprehensive training plan for all related cyber security operations.
• Work with the customer to create Standard Operating Procedures (SOPs), and Work Processes and Instructions; solicit input from and provide guidance to the analysts regarding workflows and products.
• Liaison with customer with recommendations during development phase of Tabletop Exercises.
• Acts as an observer during Tabletop Exercises conducted by shift leads and analysts from each shift. Evaluate the effectiveness of the SOPs and Work Flows as well as gauge the capability and development of the analysts.
• Command the workspace during major events and critical incidents.