Cyberspace Operations Team Lead

About The Position

Requirements

• Active Top Secret clearance
• U.S. citizenship
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, Information Systems, or a related field; equivalent experience may be considered
• 7+ years of information assurance or cybersecurity experience
• 5+ years of experience in cyber analytic development, incident response, threat analysis, and cybersecurity engineering and/or architecture
• Experience leading cybersecurity operations teams in a DoD, federal, or similarly complex mission environment
• Strong knowledge of NIST and DoD cyber policies, standards, and guidance
• Experience with defensive cyber operations, cyber incident response, and threat analysis
• Understanding of cybersecurity metrics, auditing, and operational reporting
• Familiarity with zero trust concepts such as least privilege, access control, micro-segmentation, orchestration, and privileged access management
• Experience securing virtualized and cloud-based environments
• Strong communication skills and the ability to work effectively with technical and non-technical stakeholders
• Must be eligible for and able to maintain SCI access
• Must meet all contract and customer requirements for access to government systems and facilities
• Must meet applicable DoD Cyber Workforce Framework (DCWF) qualification requirements

Nice To Haves

• Experience supporting a DoD Cybersecurity Service Provider (CSSP), Combatant Command, or similar mission
• Familiarity with SIEM, SOAR, EDR, EPP, NIDS, and other enterprise cyber defense technologies
• Knowledge of network architecture, firewalls, proxy services, WAFs, ports, protocols, and network segmentation
• Experience with Microsoft Windows, Red Hat Linux, and Unix security configurations
• Familiarity with virtualization and cloud security technologies
• Experience creating technical documentation, SOPs, or operational procedures
• Experience with one or more of the following is highly desirable: Splunk, Microsoft Sentinel, Elasticsearch , Tines, Palo Alto XSOAR, CrowdStrike Falcon, Trellix, Tanium, Microsoft Defender, Cisco Secure Network Analytics, Cisco Firepower / FMC, Snort, Zeek, Palo Alto Firewalls, F5 Advanced WAF, AWS WAF, VMware Kubernetes Docker, Podman

Responsibilities

• Lead day-to-day cybersecurity operations in support of USTRANSCOM’s Cybersecurity Service Provider (CSSP) mission
• Supervise and guide personnel performing: Intrusion detection and monitoring, Incident response and incident management, Cyber threat analysis, Cyber forensics, Analytic and orchestration development, Detection engineering
• Serve as the primary contractor lead for cyber operations-related activities and deliverables
• Coordinate with government stakeholders, CSSP subscribers, and mission partners including CPTs, USCYBERCOM, DISA, and other cyber defense organizations
• Support defensive cyber operations initiatives across on-premises and cloud environments
• Help develop and improve operational processes, procedures, SOPs, metrics, dashboards, and reporting
• Provide technical and strategic input on cyber operations capabilities, services, and mission priorities
• Support cyber incident investigations, reporting, response actions, and after-action activities
• Contribute to continuous improvement of cyber operations, analytics, and detection capabilities
• Provide weekly summaries and operational status updates to leadership
• Support after-hours and weekend response requirements for incidents and exercises as needed

Benefits

• 401(k) with 100% company match on the first 6% deferred, with immediate vesting
• Comprehensive medical, dental, and vision coverage—employee portion paid 100% by Core4ce
• Unlimited access to training and certifications, with no pre-set cap on eligible professional development
• Tuition assistance for job-related degrees and courses
• Paid parental leave
• PTO that grows with tenure
• Generous holiday schedules