714 - Cyber Protection Team (CPT) Lead - Secret Clearance Minimum
Zeneth Technology Partners
 Alexandria, VA
Zeneth is looking for a Cyber Protection Team (CPT) Lead that enjoys working in a highly collaborative, fast-paced environment to join our growing Federal Cybersecurity Practice. This is a vital role to help ensure the security of our nation’s infrastructure.  If you have a passion and a desire to lead a team to help protect critical assets from cyber attacks, this role is perfect for you.  In this role, you will work in a fast-paced environment that combines technical security operations with consulting expertise to deliver industry-leading CPT services. You will lead a team of CPT analysts that will serve as a Quick Reaction Force (QRF) when called upon to investigate, isolate and eliminate cyber threats.  As a leader, you will be expected to lead by example and conduct hands-on technical incident response assessments beyond automated tool validation, including full exploitation and leveraging of access within multiple environments, such as Windows or *nix, network layer to include wireless, mobile, and cloud.  You and your team will conduct scenario-based security testing or red teaming to identify gaps in detection and response capabilities of client networks and develop comprehensive and accurate reports and presentations for both technical and executive audiences. You will develop CPT capabilities to keep up with ever changing tools and tactics and communicate findings and strategy to client stakeholders, including technical staff and executive leadership. You will act as the primary interface and lead for your team and manage the delivery of staff assignments, as needed. This position will require occasional travel to other locations throughout the US and is located in Alexandria, VA.

Ideal candidates should possess:
·         7+ years of experience in two or more of the following disciplines: network vulnerability assessments, Web application security testing, network penetration testing, red teaming, security operations, threat hunt, forensics, cyber threat intelligence
·         7+ years of experience as a manager and leader
·         Experience with administering, and troubleshooting two or more major Linux platforms, including Ubuntu and Red Hat
·         Experience with phishing and other social engineering tactics
·         Experience with using multiple command and control channels, including DNS and HTTPS
·         Experience with obfuscation and multiple methods of payload delivery, including executable and scripting files, and in in customizing payloads and deployment techniques to avoid detection by Antivirus (AV) and Endpoint Detection and Response (EDR) solutions
·         Experience with Windows environments and Active Directory concepts
·         Ability to author tools and scripts to automate repeatable production tasks in standard languages like python, ruby, bash, csh or batch
·         Knowledge of open security testing standards and projects, including OWASP and ATT&CK
·         Experience with physical security assessments and social engineering tactics
·         Ability to clearly convey results in formal technical reports and deliver briefings to senior client staff
·         Experience with DMZs, LAN and WAN operations, and DoD/Federal regulations related to network security
·         Understand internet technologies and network protocols, including HTTP, basic load balancing configurations, VRF, security zones, VIPs, etc
·         Identify and/or determine whether a security incident is indicative of a violation of law that requires specific legal action.
·         Direct and/or implement operational structures and processes to ensure an effective enclave IA security program including boundary defense, incident detection and response, and key management.
·         Examine enclave vulnerabilities and determine actions to mitigate them.
·         Analyze IA security incidents and patterns to determine remedial actions to correct vulnerabilities.
·         Provide support for IA customer service performance requirements.
·         Provide support for the development of IA related customer support policies, procedures, and standards.
·         Provide OJT for IAT Level I and II DoD personnel.
·         Analyze IAVAs and Information Assurance Vulnerability Bulletins for enclave impact and take or recommend appropriate action.
·         Demonstrates exceptional troubleshooting methodology and solving problem skills
·         Prior military experience in an active duty, reserve or support contractor role is highly preferred

Basic Qualifications:
·         Candidates should already have an active Secret security clearance at a minimum with the ability to upgrade to TS/SCI if required
·         Bachelor of Science degree in Computer Science, Management Information Systems, or a field related to technology or equivalent. Additional experience can be substituted for a degree.
·         Active security certifications at both the DoD 8570 IAT Level III (e.g., CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH and CSSP-AU (e.g., CEH, CySA+, CISA, GSNA, CFR) levels.
·         Excellent verbal and written communication skills with the ability to communicate clearly and effectively based on the audience
·         Works well in a team environment

Zeneth is an Equal Opportunity Employer (EOE), qualified applicants are considered for employment without regard to age, race, color, religion, sex, national origin, sexual orientation, disability, or veteran status.