Cyber Security Watch Officer Lead
Leidos · Odenton, MD · 1 wk ago
On-siteInformation Technology$108k–$195k/yrFull-time
About the role
The Leidos Digital Modernization Sector has a current job opportunity for a Cyber Security Watch Officer (CSWO) - Lead on our GSM-O II DISA Command Comprehensive Support Services (DCCSS) program supporting the 24x7 operations at the DISA Joint Operations Center (DJOC) on Ft. Meade, MD.
Responsibilities
- Serve as a people leader for personnel supporting the CSWO watch desk by conducting: Annual performance assessments to include periodic check-ins, Approving or validating time charging for both Leidos and vendor personnel, Providing coaching and mentoring to personnel.
- Serve as the Senior CSWO and customer point of contact for the following: Develop and execute continual service improvement technical strategies to modify and enhance operational processes and impact strategic goals. Create, update, and maintain SOPs, TTPs and documentation for training or reference material for the CSWOs. Communicate and coordinate work with the DJOC and the DCO.
- Report DCO on incident management responses to network intrusions, malware, and other cyber events. Support the DJOC Battle Captain with all Cyber Defense and Network Assurance issues to include making recommendations regarding Indicators of Compromise (IOC), malicious cyber activity, and the overall security posture of our networks.
- Support information security services and customer support initiatives, by Updating DoD shared SA and knowledge management (KM) tools, including CMDNet, websites, blogs, and wikis, chat, collaboration tools, and portals. Consume and analyze operational reporting from cyber organizations; prepare and deliver daily situational awareness and operational update briefings, through the by coordinating with other cyber elements to obtain information for slide, briefings, presentations, or other SA products. Maintain awareness of all pertinent directives, orders, alerts, and messages to include the preparation and delivery of daily situational awareness and operational update briefings to DISA Senior Leadership.
- Oversee all network defense operations and be familiar with the operations process flow and execution. Coordinate and collaborate with internal DISA elements and mission partners to share the understanding and impact of day-to-day malicious cyber activity. Identify problems, determine accuracy and relevance of a broad range of technical information. Use sound judgment to generate, evaluate, and execute alternative courses of action. Produce timely, effective, decision-quality technical recommendations to support senior leadership.
- Cook up incident handling reporting procedures are adhered to in accordance with (IAW) DoD, CJCS, USCC, and DISA guidance, regulations, and directives. Serve as Senior Defensive Cybersecurity SME during 24x7 operations. Requires the ability to think independently and make decisions/recommendations which will have an immediate effect on the security of our networks.
Requirements
- BA/BS or equivalent experience and 5+ years or prior relevant experience or Masters with 3+ years of prior relevant experience.
- Must have an active Top Secret/SCI security clearance.
- Must have a DoD-8140 IAT Level 2 baseline certification (Security+ CE or equivalent).
- Experience in a 24x7 environment. This includes mentoring, training, and reviewing the work performed by more junior personnel.
- Experience creating and maintaining shift scheduling and leave request in a 24x7 environment.
- Leadership experience with small to medium sized team in a 24x7 work environment.
- Strong Oral, Written and Briefing communication skills.
- Strong interpersonal, organizational and problems solving skills.
- Flexible, dependable, and be able to multi-task with priorities.
- Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intelligence driven defense and/or Cyber Kill Chain methodology.
- Develops solutions to issues that are unclear and require deep technical knowledge.
- Experience recognizing situational awareness indicators and executing judgment of potential impact on mission operations.
- CND / CSSP / MSSP experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization. Requires a deep understanding and the ability to apply cyber security related principles, theories, and concepts.
Qualifications
- Basic Qualifications: BA/BS or equivalent experience and 5+ years or prior relevant experience or Masters with 3+ years of prior relevant experience.
- Additional experience may be accepted in lieu of degree.
- Must have an active Top Secret/SCI security clearance.
- Must have a DoD-8140 IAT Level 2 baseline certification (Security+ CE or equivalent).
Skills
- Basic Qualifications: BA/BS or equivalent experience and 5+ years or prior relevant experience or Masters with 3+ years of prior relevant experience.
- Additional experience may be accepted in lieu of degree.
- Must have an active Top Secret/SCI security clearance.
- Must have a DoD-8140 IAT Level 2 baseline certification (Security+ CE or equivalent).
Benefits
Pay Range $107,900.00 - $195,050.00
Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement.
Pay
$107,900.00 - $195,050.00
Schedule
Core business hours: Mon-Fri, 0800 – 1600. May require afternoon, overnight, weekends, and/or holidays coverage to visit employees or help provide shift coverage to ensure minimal manning is achieved across the shifts.