Federal - CIRT Senior Manager

Company: Accenture
Location: Arlington
Posted on: May 16, 2022

Job Description:

Organization: Accenture Federal Services

Location: Arlington, VA

Accenture Federal Services, helping our federal clients tackle their toughest challenges while unleashing their fullest potential...and then some. What makes our approach so unique? Operating from the nation's capital, we bring together commercial innovation and leading-edge technologies to deliver an integrated and interactive experience that far exceeds expectations. How? Our passion meets purpose! Through our diverse culture and inclusive thinking, we embrace our employees' ideas taking them from concept to practical solutions. Not to mention, we sleep well at night knowing our work directly impacts and improves the way the world works. We keep our tech smarts sharp by providing abundant training and certification opportunities. Are you ready to learn and grow in a career, while making a difference?

You Are:

The CIRT Senior Manager role will oversee 10-20 employees in multiple shifts of Cyber Incident Response Analysts, a Forensics Team, and the XDR subcontracting team to detect, respond to and remediate cyber incidents for AFS corporate information systems. This person will also support legal investigations, FOCI investigations, CDP investigations and client team security incidents where appropriate.

The CIRT Senior Manager is directly responsible for outputs and communications of service and capability the CIRT team provides and directly interacts with the internal IT Security, Infrastructure and Application teams, Client Security teams, CISO, Legal and HR, as well as project AMDs and CALs. This individual must be well spoken, and very focused on security and the services provided by this CIRT team as well as being versed on potential risk to delivery as well as the company directly. This role oversees CIRT delivery, management and planning, and communications.

The Work:

• Manage CIRT hiring, training and delivery to meet response time and criticality SLAs
  
• Create and contribute to metrics showing trends and threats to the AFS environment
  
• Manage staffing levels against CIRT scope
  
• Ensure skill capabilities against forensics, AFS technologies and response skills; cross-train to ensure critical skills are 2 or 3 deep
  
• Coordinate and oversee XDR SIEM interactions with AFS data eg ensure content and correlation produce actionable CIRT incidents. Work with XDR team for tuning and updates.
  
• Oversee CIRT team members to create, manage, and update engagement documentation including runbooks, SSP inputs, IR plans, etc.
  
• Oversee and perform Root Cause Analysis for security incidents, including preserving forensic evidence and working with Legal, HR and Insider Threat teams to support corporate action
  
• Coordinate with legal andManage C-level relationships and communication for major incidents, keeping the CISO and CSO and General Counsel, and other required stakeholders in the loop with clear, effective and calm communications
  
• Provide support to Legal and HR for investigations
  
• Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and other assessments
  
• Evaluate new / emerging security products and technologies and make recommendations to customer leadership regarding the security impact and value to the organization
  
• Review service management reports to ensure tickets (i.e., incidents, problems, requests, changes) related to information security, are being acknowledged, worked and Service Level Agreements are met; provide direction on ticket remediation and ensure remediation is complete
  
• Cultivate trusted partner relationships with CIO team and CDP team; keep consistent and open dialogue to uncover issues, challenges, risks
  
  
  Here Is What You Need:
  
  • Bachelors Degree or 7 years of equivalent industry experience
    
  • Experience with SOC and/or CIRT operations
    
  • Experience working with security principles and/or practices around one or more of the following type of platforms; SIEM, SOAR, EDR Endpoint Protection capabilities (Antivirus/Antimalware, FIM, DLP), Network and Host-based Intrusion Detection
    
  • Experience with SOC and/or CIRT leadership
    
    
    Bonus Points If:
    
    • Advanced degree
      
    • 10+ years of industry experiences
      
    • Forensics investigations
      
    • Legal investigations
      
    • Excellent incident communications skills with senior leadership
      
      
      The Extras:
      
      • US Citizenship Required
        
        
        As required by theColorado Equal Pay Transparency Act, Accenture Federal Services provides a reasonable range of minimum compensation for roles that may be hired in Colorado. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and specific office location. For the state of Coloradoonly, the range of starting pay for this role is$151,500 - $212,300andinformation on benefits offered is here.
        
        COVID-19 update:
        
        The safety and well-being of our candidates, our people and their families continues to be a top priority. Until travel restrictions change, interviews will continue to be conducted virtually.
        
        Subject to applicable law, please be aware that Accenture requires all employees to be fully vaccinated as a condition of employment. Accenture will consider requests for accommodation to this vaccination requirement during the recruiting process.
        
        What We Believe
        
        We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Accenture has the responsibility to create and sustain an inclusive environment.
        
        Inclusion and diversity are fundamental to our culture and core values. Our rich diversity makes us more innovative and more creative, which helps us better serve our clients and our communities. Read more here
        
        Equal Employment Opportunity Statement
        
        Accenture is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation.
        
        All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
        
        Accenture is committed to providing veteran employment opportunities to our service men and women.
        
        For details, view a copy of the Accenture Equal Opportunity and Affirmative Action Policy Statement.
        
        Requesting An Accommodation
        
        Accenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.
        
        If you would like to be considered for employment opportunities with Accenture and have accommodation needs for a disability or religious observance, please call us toll free at 1 (877) 889-9009, send us an email or speak with your recruiter.
        
        Other Employment Statements
        
        Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.
        
        Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.
        
        Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.
        
        The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.

Keywords: Accenture, Arlington , Federal - CIRT Senior Manager, Executive , Arlington, Virginia