CSSP Engineering Team Lead

About The Position

Requirements

• Minimum 8 years of cybersecurity engineering experience in DoD or Federal Government environments
• Demonstrated expertise engineering enterprise SIEM platforms (Splunk, ArcSight, Microsoft Sentinel)
• Experience with network security technologies including enterprise firewalls (Palo Alto, Cisco), IDS/IPS, and web proxies
• Hands-on experience with Microsoft Defender security suite (MDE, MDI, MDCA)
• Experience with vulnerability assessment tools (ACAS, Nessus) and penetration testing methodologies
• Knowledge of Zero Trust architecture principles and implementation
• Experience with DoD CSSP requirements, evaluations, and accreditation processes
• Strong understanding of NIST 800-53, DISA STIGs, and DoD cybersecurity frameworks
• Proven ability to lead technical security teams in 24/7 operational environments
• Ability to support COOP exercises and emergency operations
• BA/BS Degree
• AZ801-802 and CISSP (or equivalent per 651 A)
• Computing Environment (CE) certification required for privileged access roles
• Must obtain and maintain all mandatory DoD 8140 certifications
• Active Top Secret/ SCI clearance is required.
• Must be a United States Citizen and pass a background check.
• Maintain applicable security clearance(s) at the level required by the client and/or applicable certification(s) as requested by FEDITC and/or required by FEDITC’S Client(s)/Customer(s)/Prime contractor(s).

Nice To Haves

• Azure security certifications (AZ-500, SC-200)
• Splunk Certified Architect or Administrator
• GIAC certifications (GCIA, GCIH, GPEN)
• Experience with microsegmentation technologies (Illumio)
• DFAS or DoD financial system security engineering experience

Responsibilities

• Lead and supervise CSSP Engineering technical staff delivering 24/7 security infrastructure engineering support
• Engineer, deploy, and maintain network perimeter defense appliances including firewalls, IDS/IPS, web proxies, and reverse proxies
• Direct Security Information and Event Management (SIEM) engineering including Splunk, ArcSight, Microsoft Sentinel, and Azure Data Explorer (ADX)
• Oversee CSSP tool suite engineering including Microsoft Defender for Endpoint (MDE), Defender for Identity (MDI), and Defender for Cloud Apps (MDCA)
• Lead penetration testing capabilities, vulnerability management, and Assured Compliance Assessment Solution (ACAS) operations
• Engineer Zero Trust Network Architecture technologies aligned with DoD Zero Trust requirements
• Coordinate security infrastructure projects with CCB and DFAS Engineering teams
• Develop and maintain engineering documentation for security tools, configurations, and operational procedures
• Support CSSP accreditation requirements and documentation
• Ensure compliance with DoD CSSP Evaluators Scoring Metrics, JFHQ-DODIN, DISA, and U.S. Cyber Command guidance
• Provide quarterly technology briefings on CSSP engineering capabilities to DFAS management