Organization: Accenture Federal Services
Location: Arlington, VA
Accenture Federal Services, helping our federal clients tackle their toughest challenges while unleashing their fullest potential…and then some. What makes our approach so unique? Operating from the nation’s capital, we bring together commercial innovation and leading-edge technologies to deliver an integrated and interactive experience that far exceeds expectations. How? Our passion meets purpose! Through our diverse culture and inclusive thinking, we embrace our employees' ideas taking them from concept to practical solutions. Not to mention, we sleep well at night knowing our work directly impacts and improves the way the world works. We keep our tech smarts sharp by providing abundant training and certification opportunities. Are you ready to learn and grow in a career, while making a difference?
The CIRT Senior Manager role will oversee 10-20 employees in multiple shifts of Cyber Incident Response Analysts, a Forensics Team, and the XDR subcontracting team to detect, respond to and remediate cyber incidents for AFS corporate information systems. This person will also support legal investigations, FOCI investigations, CDP investigations and client team security incidents where appropriate.
The CIRT Senior Manager is directly responsible for outputs and communications of service and capability the CIRT team provides and directly interacts with the internal IT Security, Infrastructure and Application teams, Client Security teams, CISO, Legal and HR, as well as project AMDs and CALs. This individual must be well spoken, and very focused on security and the services provided by this CIRT team as well as being versed on potential risk to delivery as well as the company directly. This role oversees CIRT delivery, management and planning, and communications.
Manage CIRT hiring, training and delivery to meet response time and criticality SLAs
Create and contribute to metrics showing trends and threats to the AFS environment
Manage staffing levels against CIRT scope
Ensure skill capabilities against forensics, AFS technologies and response skills; cross-train to ensure critical skills are 2 or 3 deep
Coordinate and oversee XDR SIEM interactions with AFS data eg ensure content and correlation produce actionable CIRT incidents. Work with XDR team for tuning and updates.
Oversee CIRT team members to create, manage, and update engagement documentation including runbooks, SSP inputs, IR plans, etc.
Oversee and perform Root Cause Analysis for security incidents, including preserving forensic evidence and working with Legal, HR and Insider Threat teams to support corporate action
Coordinate with legal and Manage C-level relationships and communication for major incidents, keeping the CISO and CSO and General Counsel, and other required stakeholders in the loop with clear, effective and calm communications
Provide support to Legal and HR for investigations
Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and other assessments
Evaluate new / emerging security products and technologies and make recommendations to customer leadership regarding the security impact and value to the organization
Review service management reports to ensure tickets (i.e., incidents, problems, requests, changes) related to information security, are being acknowledged, worked and Service Level Agreements are met; provide direction on ticket remediation and ensure remediation is complete
Cultivate trusted partner relationships with CIO team and CDP team; keep consistent and open dialogue to uncover issues, challenges, risks
Here Is What You Need:
Bachelors Degree or 7 years of equivalent industry experience
Experience with SOC and/or CIRT operations
Experience working with security principles and/or practices around one or more of the following type of platforms; SIEM, SOAR, EDR Endpoint Protection capabilities (Antivirus/Antimalware, FIM, DLP), Network and Host-based Intrusion Detection
Experience with SOC and/or CIRT leadership
Bonus Points If:
10+ years of industry experiences
Excellent incident communications skills with senior leadership
US Citizenship Required
As required by the Colorado Equal Pay Transparency Act, Accenture Federal Services provides a reasonable range of minimum compensation for roles that may be hired in Colorado. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and specific office location. For the state of Colorado only, the range of starting pay for this role is $151,500 - $212,300 and information on benefits offered is here.
The safety and well-being of our candidates, our people and their families continues to be a top priority. Until travel restrictions change, interviews will continue to be conducted virtually.
Subject to applicable law, please be aware that Accenture requires all employees to be fully vaccinated as a condition of employment. Accenture will consider requests for accommodation to this vaccination requirement during the recruiting process.
What We Believe
We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Accenture has the responsibility to create and sustain an inclusive environment.
Inclusion and diversity are fundamental to our culture and core values. Our rich diversity makes us more innovative and more creative, which helps us better serve our clients and our communities. Read more here
Equal Employment Opportunity Statement
Accenture is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation.
Accenture is committed to providing veteran employment opportunities to our service men and women.
For details, view a copy of the Accenture Equal Opportunity and Affirmative Action Policy Statement.
Requesting An Accommodation
Accenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.
If you would like to be considered for employment opportunities with Accenture and have accommodation needs for a disability or religious observance, please call us toll free at 1 (877) 889-9009, send us an email or speak with your recruiter.
Other Employment Statements
Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.
Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.
The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.