Technical Program Cyber Lead with Security Clearance

TECHNICAL LEAD (Role/Responsibilities)The Watch Floor Technical Lead''s main objective is to mature the ESOC Watch Floor''s ability to protect the FBI enterprise network. This objective is to be accomplished by training analysts to identify, analyze, and respond to threats that are detected by IDS / IPS alerts and to hunt for threats that have evaded defenses. Training will include updating existing Standard Operating Procedures and guides to reflect the analysis techniques needed to identify any hidden addition, the Technical Lead is responsible for developing threat hunting use cases, creating enhanced monitoring dashboards, and automating detection through alerts and analytics. Lastly, the Technical Lead supports the shifts providing consistent availability of security tools, appliances, and operating devices in the continued 24x7 Security Operations Center environment. Technical Lead ensures daily continuity of appliances and security tools are up and communicating. Technical Lead maintains high visibility communications between the customer, engineering, and other supporting teams to address outages and degradations. The technical Lead''s role is to detect and identify troubleshooting matters promptly and track their progress. Technical Lead will establish and implement training processes and strategies for all technical personnel and be an advocate for cross-training between the different teams. Analyze, plan, and develop requirements and standards about content development. Assign and oversee the daily tasks to shift leads and analysts. Ensures all ESOC Watch Floor appliances and security tools are actively working toward established milestones. Hold regular technical team meetings to determine progress and address any questions or challenges regarding projects. Determine and define clear deliverables, roles, and responsibilities for staff members required for specific projects or initiatives. Recruit and train exceptional employees to fulfill posted positions within the technical department. • Improve the team''s processes for event handling and provide training to quickly triage alerts by weeding out false positives and identifying malicious events.• Mature the ESOC Watch Floor''s ability to search and hunt for threats that evade defenses.• Introduce detection methodologies and analysis techniques that close the detection gap of the SOC''s existing toolset by developing and testing threat hunting use cases.• Create Splunk Dashboards for identified intrusion TTP from adversaries.• Develop Splunk (SPL) and Azure Sentinel (KQL) search queries to be shared across the team to perform deep-dive analysis.• Become a Subject Matter Expert (SME) with security tools and its employment.• Recommend rule and signature tuning for Intrusion Detection and Protection appliances.• Enhance the SIEM functionality by finetuning analytics rules.• Ensure Splunk is receiving all the necessary logs from network and endpoint devices.• Liaison between the Watch Floor and Engineer team for degradations, outages, and system updating/rebooting.• Provide recommendations for improving the performance of security tools and appliances.• Provides knowledge in Computer and network vulnerability testing/penetration techniques;• Tool development for computer and network forensics and vulnerability testing. • Provides computer forensic support to high technology investigations in the form of evidence seizure, computer forensic analysis, and data recovery. Conducts vulnerability assessments/penetration tests of information systems. • Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding and encryption. • Develop tools, techniques, training and countermeasures for computer and network vulnerabilities, data hiding and encryption. • Deter, identify, monitor and investigate computer and network intrusions. • Provides expert knowledge in computer and network forensics. • Conducts vulnerability assessments. • Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities. Identify, deter, monitor and investigate computer and network intrusions. EXPERIENCE REQUIREMENTS:• Requires Bachelor''s degree or equivalent and ten to twelve years of related experience with a minimum of four years of experience in one or more of the following: computer network penetration testing and techniques; computer evidence seizure, computer forensic analysis, and data recovery; computer intrusion analysis and incident response, intrusion detection; computer network surveillance and monitoring; network protocols, network devices, multiple operating systems, and secure architectures or Master''s degree and seven to nine years LOCATION: WASHINGTON, D.C. FBI HQ OPPORTUNITYReady to join an Elite Cyber Team? This is a tremendous opportunity for experienced Security Operations Center Technical Lead to further their technical and professional skills in full life cycle security engineering in a highly technical environment using excellent state of the art technologies. This program is of significant size, scope, and complexity that will allow the selected individual to expand and grow their career. THE COMPANYMicroSys (is a 20 year old integrity driven Federal Cyber Security and Systems Engineering Certified 8(m) EDWOSB headquartered in Gainesville, Virginia. We integrate people, processes, and technology to deliver value driven IT solutions to our customers nationwide. Our focus is enabling the United States Government, specifically focused in the Intelligence Community; Homeland Security & Law Enforcement; and Armed Forces, to meet their mission-critical objectives through the use of highly advanced and cost-effective technology solutions. If you''re tired of being just another number and want to work for a company that truly watches out for its employees on an individually basis then strongly consider MicroSys.MicroSys provides a very thorough benefits program, which includes the following: Medical Vision Dental Life Insurance Life and AD&D Insurance Short-Term Disability Long-Term Disability Retirement Plan with company matching 529-College Savings Program Paid Time Off (PTO) - o Years 1-3 15 days (120 hours) per calendar year o Years 4-7 20 days (160 hours) per calendar year o Years 7+ 25 days (200 hours) per calendar year Paid Holidays Parking/Metro Reimbursement Direct Deposit Section 125 Employee Bonus Program Employee Referral Bonus

Created: 2025-11-15