Cyber Data and Applications Lead

General information

Requisition # R58694 Locations USA-AL-Huntsville Posting Date 02/27/2025 Security Clearance Required Top Secret Remote Type Onsite Time Type Full time

Description & Requirements

Transform the future of federal services with ManTech! Join a vibrant, energetic team committed to enhancing national security and public services through innovative tech. Since 1968, we’ve partnered with Federal Civilian sectors to deliver impactful solutions. Engage in exciting projects in Digital Transformation, Cybersecurity, IT, Data Analytics and more. Ignite your career and drive change. Your journey starts now—innovate and excel with ManTech!

ManTech seeks a highly skilled and knowledgeable Cyber Data and Applications Lead. This position is located on customer site in Huntsville, AL.

The Cyber Data and Applications Lead is responsible for developing, operating, maintaining, and enhancing a suite of cybersecurity tools deployed across secure enclaves to support incident response, threat detection, and event monitoring, as well as integrating data from centralized and local system sources.

Responsibilities include but are not limited to:

• Design, develop, deliver, and sustain cyber capabilities/applications, algorithms, and automation to optimize workflows and improve data analysis to support a SOC and other cyber groups; Responsible for program design, coding, testing, debugging, and documentation. 

• Maintain data ingestion configurations to collect and parse log and event data from various sources and various threat intelligence data and feeds into the SIEM

• Create and optimize queries and rules to detect suspicious activities or patterns in the data in the SIEM platform.

• Develop and maintain playbooks, reports, dashboards, and automated responses for the SIEM. Develop reports and dashboards for compliance monitoring and reporting from SIEM data.

• Ensure that cyber tools and infrastructure remain operational, resilient, and adaptable to evolving threats. Collaborate to integrate security requirements into technical solutions and conduct ongoing research to incorporate emerging technologies, enhancing the organization’s overall cybersecurity posture.

• Recommend and utilize the appropriate programming language for each component or workload based upon performance requirements, supportability, integration with existing components, maintainability, and other selection criteria deemed applicable. Ensure DevSecOps and CI/CD processes and SOPs for Agile (SAFe, Scrum, Kanban) and DevSecOps methods are documented and maintained. 

Minimum Qualifications:

• Bachelor’s degree, preferably in IT, Cybersecurity, Engineering, Computer Science, Mathematics, or related discipline.

• 7+ years of IT experience.  

• 2+ years of experience leading a team using DevSecOps methods.

• 3+ years of experience in Linux administration.  

• 3+ years of experience testing, implementing, deploying, maintaining, and administering infrastructure hardware and software for a cybersecurity/SOC environment.

• In-depth experience with design and development of complex server based, client/server, service oriented, micro-service, and/or n-tiered applications in a hybrid environment (on premise and AWS cloud).

• 3+ years of experience with Splunk.

Preferred Qualifications:

• Experience integrating third-party components, introducing new custom capabilities, modifying existing code, recommending process improvements, and automating operations and maintenance tasks for applications and tools for a SOC environment.

• 2+ years of experience with Oracle and MS SQL based platforms.

• 2+ years of experience with Python and other scripting languages.

• Preferred certifications: Red Hat Certified Systems Administrator (RHCSA), AWS Certified Cloud Practitioner, AWS Certified DevOps Engineer Associate.

Security Clearance Requirements:

• Must possess active Top Secret security clearance

Physical Requirements:

• The person in this position must be able to remain in a stationary position 50% of the time.

• Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.

ManTech International Corporation considers all qualified applicants for employment without regard to disability or veteran status or any other status protected under any federal, state, or local law or regulation.
If you need a reasonable accommodation to apply for a position with ManTech, please email us at careers@mantech.com and provide your name and contact information.