Jobs · Information Technology · Maryland

Cyber Security Watch Officer

Leidos · Odenton, MD · 1 mo ago
On-siteInformation Technology$70k–$126k/yrFull-time

About the role

Serve as a Cyber Security Watch Officer (CSWO) on the DISA GSM-O II program supporting the DISA Joint Operations Center (DJOC) Network Assurance team. CSWOs are principally engaged in the triage of events, cyber incident handling, network analysis and threat detection, trend analysis, metric development, vulnerability information dissemination, and the DoD Cyber Security Service Provider (CSSP) methodology.

Responsibilities

  • Support the DJOC Battle Captain and senior CSWOs with all Cyber Defense and Network Assurance issues to include making recommendations regarding Indicators of Compromise (IOC), malicious cyber activity, and the overall security posture of our networks.
  • Aid senior CSWOs in providing technical oversight of information security services and customer support initiatives, by updating DoD shared SA and knowledge management (KM) tools, including CMDNet, websites, blogs, and wikis, chat, collaboration tools, and portals.
  • Consume and analyze operational reporting from cyber organizations; prepare and deliver daily situational awareness and operational update briefings, through the by coordinating with other cyber elements to obtain information for slide, briefings, presentations, or other SA products.
  • Report DCO and incident management responses to network intrusions, malware, and other cyber events.
  • Maintain awareness of all pertinent directives, orders, alerts, and messages to include the preparation and delivery of daily situational awareness and operational update briefings to DISA Senior Leadership.
  • Support the senior CSWOs in overseeing all network defense operations and become familiar with the operations process flow and execution.
  • Collaborate with internal DISA elements and mission partners to share the understanding and impact of day-to-day malicious cyber activity.
  • Identify problems, determine accuracy and relevance of a broad range of technical information. Use sound judgment to generate, evaluate, and execute alternative courses of action. Produce timely, effective, decision-quality technical recommendations to support senior leadership.
  • Cook up and coordinate with DoD incident handling reporting procedures are adhered to in accordance with (IAW) DoD, CJCS, USCC, and DISA guidance, regulations, and directives. Review Commander Joint Chiefs of Staff Manual (CJCSM) 6510: Cyber Incident Handling Program.
  • Coordinate and ensure DoD incident handling reporting procedures are adhered to in accordance with (IAW) DoD, CJCS, USCC, and DISA guidance, regulations, and directives. Review Commander Joint Chiefs of Staff Manual (CJCSM) 6510: Cyber Incident Handling Program.
  • Support the senior CSWOs in overseeing all network defense operations and become familiar with the operations process flow and execution.
  • Collaborate with internal DISA elements and mission partners to share the understanding and impact of day-to-day malicious cyber activity.
  • Identify problems, determine accuracy and relevance of a broad range of technical information. Use sound judgment to generate, evaluate, and execute alternative courses of action. Produce timely, effective, decision-quality technical recommendations to support senior leadership.
  • Cook up and coordinate with DoD incident handling reporting procedures are adhered to in accordance with (IAW) DoD, CJCS, USCC, and DISA guidance, regulations, and directives. Review Commander Joint Chiefs of Staff Manual (CJCSM) 6510: Cyber Incident Handling Program.

Requirements

Must hold a BA degree and 2+ years of experience. Additional experience will be accepted in lieu of degree.

Must have an active Top Secret/SCI security clearance.

Must have a DoD-8140 WRC 511 Intermediate certification (see list below for acceptable certifications).

Must have prior Military IT or IC Experience.

Must have hands on Experience working with DoD Networks including NIPR and SIPR.

Must be willing to perform Shift Work – Swing-shift hours: 1pm-11pm. Monday, Tuesday, Thursday, Friday.

Must perform well under pressure and have the ability to Multitask.

Must be motivated, initiative driven person with strong written and verbal communication skills, replying to official communications via email or phone, with the ability to report or speak to complex technical reports on analytical findings.

Must demonstrate understanding of the life cycle of cybersecurity threats, attacks, attack vectors and understanding of intrusion set tactics, techniques, and procedures (TTPs).

Qualifications

Must hold a BA degree and 2+ years of experience. Additional experience will be accepted in lieu of degree.

Must have an active Top Secret/SCI security clearance.

Must have a DoD-8140 WRC 511 Intermediate certification (see list below for acceptable certifications).

Must have prior Military IT or IC Experience.

Must have hands on Experience working with DoD Networks including NIPR and SIPR.

Must be willing to perform Shift Work – Swing-shift hours: 1pm-11pm. Monday, Tuesday, Thursday, Friday.

Must perform well under pressure and have the ability to Multitask.

Must be motivated, initiative driven person with strong written and verbal communication skills, replying to official communications via email or phone, with the ability to report or speak to complex technical reports on analytical findings.

Must demonstrate understanding of the life cycle of cybersecurity threats, attacks, attack vectors and understanding of intrusion set tactics, techniques, and procedures (TTPs).

Skills

Must have prior Military IT or IC Experience.

Must have hands on Experience working with DoD Networks including NIPR and SIPR.

Must be willing to perform Shift Work – Swing-shift hours: 1pm-11pm. Monday, Tuesday, Thursday, Friday.

Must perform well under pressure and have the ability to Multitask.

Must be motivated, initiative driven person with strong written and verbal communication skills, replying to official communications via email or phone, with the ability to report or speak to complex technical reports on analytical findings.

Must demonstrate understanding of the life cycle of cybersecurity threats, attacks, attack vectors and understanding of intrusion set tactics, techniques, and procedures (TTPs).

Benefits

Not specified.

Pay

$69,550.00 - $125,725.00

Schedule

Compressed workweek on a set Monday, Tuesday, Thursday, Friday schedule. Day-shift hours: 5am-3pm. Swing-shift hours: 1pm-11pm. Mid-shift hours 9pm-7am.

Similar jobs

Security Officer

DK SecurityMuskegon, MI· Today
Management$20/hrapply on joblinkapply.com

Security Officer

Northeast Regional Medical CenterKirksville, MO· Yesterday
Information Technologyapply on fa-evxo-saasfaprod1.fa.ocs.oraclecloud.com

Security Officer

DK SecuritySparta, MI· 3 days ago
Information Technology$20/hrapply on joblinkapply.com

Security Officer

DK SecurityInkster, MI· 3 days ago
Information Technology$19.4/hrapply on joblinkapply.com

Security Officer

Lovelace Health SystemAlbuquerque, NM· 5 days ago
Information Technologyapply on jobs.ardenthealth.com

Security Officer

BayCare Health SystemMorton County, ND· 6 days ago
apply on css-baycarehs-prd.inforcloudsuite.com