Cybersecurity Operations Operations Engineer/Incident Response Team Lead in Abu Dhabi at Booz Allen Hamilton Inc.

Date Posted: 9/26/2018

Job Snapshot

Job Description

Job Number: R0033817

Cybersecurity Operations Operations Engineer/Incident Response Team Lead

Key Role:

Direct staff, including direct and indirect reports in conducting event detection, incident triage, incident handling, and hunting consulting services throughout the MENA region. Provide thought leadership for client security tool deployment and implementation. Consult and direct Cybersecurity services for intrusion detection systems, firewalls, boundary protection devices, and security incident management products deployed in client spaces. Provide staff and client training and management activities for intrusion attempts and compromises. Provide briefings regarding ongoing client security incidents for various levels of management and develop and coordinate the shift schedule and deployment of staffing within client organizations. Direct the monitoring and analysis of threat network activities and exploit capabilities using multiple open source intelligence assets. Provide guidance and direction on the development and tuning of Cyber rule sets and alerts to enhance detection and prevention zone technologies in client spaces.

Basic Qualifications:

-Experience with incident response and handling 

-Experience in two or more of the following fields: security products and technologies, security engineering, networking protocols and data center, and security analysis and investigations

-Experience in working with Cybersecurity tools and software, including Splunk, OSSEC, and McAfee security products

-Experience with project management

-BA or BS in Engineering, CS, Information Security, or Information Systems and 5 years of experience in a senior-level IR analyst or IR management role, including IR shift manager or MA or MS degree in Engineering, CS, Information Security, or Information Systems and 3 years of experience in a senior-level IR analyst or IR management role, including IR shift manager

Additional Qualifications:

-Experience with managing a multi-tenant SOC

-Ability to deep dive issues and maintain focus

-Ability to be active in the training, coaching, and development of a team

-Security Certifications, including Security+, CEH, GCIA, GCIH, or CISSP

-Information Systems Security Management Professional (ISSMP) Certification

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

MENA

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.