onsite
Technical Engagement Network Lab Manager - Castalia Systems
Software Engineer
Lead a cyber‑incident response lab, overseeing network forensics, lab operations, and customer support while guiding investigations, mitigation planning, and service restoration for government and critical‑infrastructure clients.
About the role
Key Responsibilities
- Manage the Technical Engagement Network (TEN) lab environment, ensuring hardware, software, and network configurations support rapid incident response.
- Conduct and supervise network forensics investigations, analyzing traffic captures, logs, and malware artifacts to assess breach severity.
- Develop and implement mitigation and remediation plans, coordinating with government customers and critical asset owners to restore services.
- Provide tier‑2/3 technical support and customer service, acting as the primary point of contact for on‑site incident response teams.
- Maintain and update security tooling, including SIEM platforms, packet capture appliances, and analysis scripts (Python, PowerShell).
- Document investigation findings, produce after‑action reports, and contribute to knowledge‑base improvements.
Requirements
- Active Secret clearance with ability to obtain TS/SCI; U.S. citizenship required.
- 5+ years of experience in incident response, network forensics, or related cyber‑security roles.
- Proven lab management experience, including configuration of Windows and Linux systems and networking equipment.
- Strong scripting skills in Python and PowerShell for automation and analysis.
- Excellent communication and customer‑service skills, with the ability to convey technical findings to both technical and non‑technical stakeholders.