Senior Cybersecurity Incident Response Administrator (Informatio

Senior Cybersecurity Incident Response Administrator Position Description: CGI Federal is looking for a Senior Cybersecurity Incident Response Administrator (Information Assurance Engineer - Senior) to help support a program we are working on for the Army's PL ALTESS contract. PL ALTESS, or Product Lead for Acquisition, Logistics, and Technology Enterprise Systems and Services, is a key U.S. Army organization providing IT services and support to the Army and Department of Defense. As a managed service provider, ALTESS delivers infrastructure, platform, and application services across data centers and commercial clouds. It plays a crucial role in modernizing IT systems by migrating them to the cloud and managing mission-critical applications to ensure Army readiness. ALTESS oversees IT service delivery across various hosting locations, aligning with Department of Defense digital transformation strategies as part of PEO Enterprise. This position is located in USA VA Radford -- USAVARAD1.Your future duties and responsibilities: The Senior Cybersecurity Incident Response Administrator (Information Assurance Engineer - Senior) will be responsible for managing Security Information and Event Management (SIEM) systems, including deploying, installing, managing infrastructure, and monitoring events in accordance with Army Business System Log Data Policy and other DoD/Army requirements. The role involves creating SIEM dashboards to display clear and concise visualizations of security-related events, enabling the detection of anomalies and investigation of threats in near real-time. The engineer will monitor SIEM dashboards to detect threats and anomalies, investigate events, and escalate as necessary. Additionally, the role includes assessing and developing reporting requirements to support audits and security controls, providing Public Key Infrastructure (PKI) support, and monitoring DoD and Army web application security standards and best practices. The engineer will review Army Cyber Tasking Orders (CTOs), coordinate with Army Cyber Security Service Providers, participate in SW Assurance reviews, and evaluate Information Systems Design Plans for compliance with relevant security regulations, policies, and best industry practices.Required qualifications to be successful in this role: a) Cybersecurity Certification (such as Certified Information Systems Security Professional (CISSP)/Information Systems Security Engineering Professional (ISSEP)/Security+/Certified Ethical Hacker (CEH/etc.) b) Active DoD Secret Security Clearance. c) 10 or more years' experience with Cybersecurity and Incident Response or related areas d) Extensive experience managing Security Information and Event Management (SIEM) systems, including getting relevant data into the SIEM. e) Proficiency in creating and managing SIEM dashboards for security event visualization. f) Strong ability to monitor and investigate security events and anomalies. g) Experience in developing reporting requirements for audits and security controls. h) Knowledge of Public Key Infrastructure (PKI) and managing SSL/TLS certificates. i) Familiarity with DoD and Army web application security standards and best practices. j) Ability to review and respond to Army Cyber Tasking Orders (CTOs). k) Experience coordinating with Cyber Security Service Providers for audit logs and incident response. l) Participation in SW Assurance reviews for application audit log validation. m) Ability to review and evaluate Information Systems Design Plans and related documents for security compliance.Desired qualifications/non-essential skills required: a) Bachelor's degree in Computer Science or equivalent years of experience. b) Familiarity with Army enterprise monitoring tools and practices. c) Strong analytical and problem-solving skills. d) Excellent communication and coordination skills. e) Experience with incident response activities. f) Knowledge of engineering change proposals and configuration management. g) Understanding of Continuity of Operation Plans and Communication Plans. h) Experience with security regulations and best industry practices. i) Ability to work effectively in a team environment and collaborate with various stakeholdersCompensation: CGI is required by law in some jurisdictions to include a reasonable estimate of the compensation range for this role. The determination of this range includes various factors not limited to skill set, level, experience, relevant training, and licensure and certifications. To support the ability to reward for merit-based performance, CGI typically does not hire individuals at or near the top of the range for their role. Compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range for this role in the U.S. is $127,500.00 - $251,100.00. CGI Federal's benefits are offered to eligible professionals on their first day of employment to include: Competitive compensation, Comprehensive insurance options, Matching contributions through the 401(k) plan and the share purchase plan, Paid time off for vacation, holidays, and sick time, Paid parental leave, Learning opportunities and tuition assistance, Wellness and Well-being programsSkills: Client Management, Communications Management, Cyb.Sec.Eng. (Sensor /Device), Cyber, Public Key Infrastructure