SITEC - Cybersecurity Analyst (SR) - MacDill AFB

About The Position

Requirements

• Min 12 years with HS Diploma, 10 years AS/AA degree, 8 years with BS/BA degree, 6 years with MS/MA, 3 years with a PhD.
• A DoD TS/SCI clearance is required
• DoD 8570 IAT II certifications AND CEH OR CFR OR CCNA Cyber Ops OR CCNA-Security OR CySA+ OR CHFI OR GCIA OR GCIH OR GCFA OR GICSP OR Cloud + OR SCYBER OR PenTest +
• Deep expertise in cybersecurity concepts, including threat detection, malware analysis, network security, and threat intelligence.
• Extensive experience with one or more tools such as SIEM platforms, IDS/IPS, endpoint protection solutions, forensic analysis tools, and threat intelligence platforms.
• Proven ability to lead incident response efforts and handle complex, high-severity security incidents.
• Exceptional analytical and problem-solving skills with the ability to provide strategic recommendations.
• Effective communication skills, including the ability to deliver executive-level briefings and reports.
• Demonstrated leadership and mentorship capabilities in a fast-paced, team-oriented environment.
• Candidate must be willing to work the following work schedule: This position has a 12 hour rotating shift work schedule totaling 80 hours for the two-week pay period. Weekly Schedule is Sunday-Wednesday or Wednesday-Saturday and is composed of 3x12 hour shifts or 3x12 hour shifts and 1x 8 hour shift. Work hours may flex or change to meet mission requirements, most likely on a 3 month rotation.

Nice To Haves

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience).
• Advanced certifications such as CISSP, GIAC (e.g., GCIA, GCIH, GPEN), OSCP, or CISM.
• Experience with scripting, automation tools (e.g., Python, PowerShell), and advanced threat hunting techniques.
• Expertise in threat intelligence analysis, integration, and dissemination.

Responsibilities

• Overseeing and refining threat detection processes to proactively counter advanced persistent threats (APTs) and emerging risks.
• Integrating threat intelligence from internal and external sources to anticipate adversarial activities.
• Developing mitigation strategies against nation-state actors and other sophisticated threat groups targeting USSOCOM systems.
• Managing high-severity security incidents, coordinating response efforts across SOC teams, J6 staff, and external stakeholders.
• Creating and executing containment, eradication, and recovery plans to ensure minimal operational disruption.
• Delivering executive-level briefings and post-incident reports with actionable insights and recommendations for process improvement.
• Ensuring SOC operations align with regulatory requirements.
• Leading in audits and assessments, offering recommendations to improve policies and streamline compliance processes.
• Acting as a liaison between SOC operations and USSOCOM leadership to meet governance objectives.
• Mentoring junior and Journeyman analysts, fostering their technical growth and professional development.
• Leading training sessions and knowledge-sharing initiatives to elevate SOC capabilities and team preparedness.
• Serving as an escalation point for complex technical issues, providing strategic direction and solutions to the SOC team.
• Researching and implementing cutting-edge tools, methodologies, and automation to enhance SOC efficiency and capabilities.
• Driving orchestration initiatives to streamline threat detection, response, and reporting processes.
• Staying informed on emerging cybersecurity trends and adversarial tactics to ensure USSOCOM remains ahead of evolving threats.
• Operating within a 24/7 SOC environment, which may require shift work, including nights, weekends, and holidays.
• Handling sensitive and classified information in compliance with DoD and USSOCOM requirements.