Leidos
Overview
Leidos Digital Modernization Sector is seeking a Deputy Cyber Security Manager to support the DISA GSM-O II TN09 Network Assurance (NA) Program. GSM-O II provides network operations and cyber defense support to the Defense Information Systems Agency (DISA), the Department of Defense (DoD), and Combatant Commands. In this role, you will serve as the DISA Global Defensive Cyber Operations (DCO) Deputy, overseeing Cybersecurity Service Provider (CSSP), Boundary Defense, and other critical DCO activities. You will help lead a team of 175 analysts responsible for cyber threat intelligence analysis, security event detection and response, and network traffic analysis, while driving innovative solutions into daily operations. This is a hybrid position allowing light/partial telework, but candidates must be able to commute on-site to Scott AFB the majority of the time.
Primary Responsibilities
Operational Leadership: Manage day-to-day mission requirements across three sites: Whitehall, OH; Scott AFB, IL; and Hill AFB, UT.
Provide oversight for personnel located in Colorado Springs, CO (4 personnel).
Employee Engagement
Foster a positive organizational culture and ensure employee well-being.
Lead the DISA Global Net Assurance staff, including employee engagement, training, performance reviews, and other personnel needs.
Mission Support
Act as the DISA Global Defensive Cyber Operations (DCO) Lead in their absence.
Participate in DISA DCO working groups with DISA and DoD Cyber Defense Command (DCDC) organizations.
Technical Leadership
Oversee teams responsible for:
Triaging and analyzing alerts from network sensors.
Conducting network forensics to identify malicious activity.
Providing incident and situational awareness reporting to DISA cybersecurity service subscribers.
Creating and modifying signatures and custom alerting logic based on adversary activity and vulnerabilities.
Implementing active mitigations to prevent or contain nefarious activity.
Basic Qualifications
Proven experience managing operations across large teams (>35 personnel).
Bachelor’s degree in a related discipline or equivalent experience/combined education, with 8+ years of relevant experience (additional years of experience may substitute for a degree).
DoD-8570 IAT Level 2 baseline certification (e.g., Security+ CE, CISSP, or equivalent) with the ability to obtain CSSP-A certification within 180 days of start date.
Strong understanding of Cyber Network Defense (CND) principles, including protect, detect, respond, and sustain within a Computer Incident Response organization.
Motivated self-starter and team leader with excellent written and verbal communication skills.
Active Top Secret/SCI clearance.
Preferred Qualifications
Experience managing and leading a “team of teams.”
Familiarity with DISA and DoD networks.
Advanced knowledge of TCP/IP, networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
Expertise in enterprise SIEM platforms (e.g., Splunk, Elastic, Sentinel, QRadar, LogLogic, etc).
Experience with malware analysis concepts and methods.
Ability to brief Senior Executive Service (SES) and General Officer/Flag Officer (GO/FO) leadership.
Advanced certifications such as SANS GIAC/GCIA/GCIH, GLSC, or CASP.
Experience in intelligence-driven defense and/or cyber-kill chain methodology.
For further information about the role and requirements, please refer to the job posting details provided by Leidos. This description reflects the requirements and responsibilities as stated in the posting.
#J-18808-Ljbffr
Leidos Digital Modernization Sector is seeking a Deputy Cyber Security Manager to support the DISA GSM-O II TN09 Network Assurance (NA) Program. GSM-O II provides network operations and cyber defense support to the Defense Information Systems Agency (DISA), the Department of Defense (DoD), and Combatant Commands. In this role, you will serve as the DISA Global Defensive Cyber Operations (DCO) Deputy, overseeing Cybersecurity Service Provider (CSSP), Boundary Defense, and other critical DCO activities. You will help lead a team of 175 analysts responsible for cyber threat intelligence analysis, security event detection and response, and network traffic analysis, while driving innovative solutions into daily operations. This is a hybrid position allowing light/partial telework, but candidates must be able to commute on-site to Scott AFB the majority of the time.
Primary Responsibilities
Operational Leadership: Manage day-to-day mission requirements across three sites: Whitehall, OH; Scott AFB, IL; and Hill AFB, UT.
Provide oversight for personnel located in Colorado Springs, CO (4 personnel).
Employee Engagement
Foster a positive organizational culture and ensure employee well-being.
Lead the DISA Global Net Assurance staff, including employee engagement, training, performance reviews, and other personnel needs.
Mission Support
Act as the DISA Global Defensive Cyber Operations (DCO) Lead in their absence.
Participate in DISA DCO working groups with DISA and DoD Cyber Defense Command (DCDC) organizations.
Technical Leadership
Oversee teams responsible for:
Triaging and analyzing alerts from network sensors.
Conducting network forensics to identify malicious activity.
Providing incident and situational awareness reporting to DISA cybersecurity service subscribers.
Creating and modifying signatures and custom alerting logic based on adversary activity and vulnerabilities.
Implementing active mitigations to prevent or contain nefarious activity.
Basic Qualifications
Proven experience managing operations across large teams (>35 personnel).
Bachelor’s degree in a related discipline or equivalent experience/combined education, with 8+ years of relevant experience (additional years of experience may substitute for a degree).
DoD-8570 IAT Level 2 baseline certification (e.g., Security+ CE, CISSP, or equivalent) with the ability to obtain CSSP-A certification within 180 days of start date.
Strong understanding of Cyber Network Defense (CND) principles, including protect, detect, respond, and sustain within a Computer Incident Response organization.
Motivated self-starter and team leader with excellent written and verbal communication skills.
Active Top Secret/SCI clearance.
Preferred Qualifications
Experience managing and leading a “team of teams.”
Familiarity with DISA and DoD networks.
Advanced knowledge of TCP/IP, networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
Expertise in enterprise SIEM platforms (e.g., Splunk, Elastic, Sentinel, QRadar, LogLogic, etc).
Experience with malware analysis concepts and methods.
Ability to brief Senior Executive Service (SES) and General Officer/Flag Officer (GO/FO) leadership.
Advanced certifications such as SANS GIAC/GCIA/GCIH, GLSC, or CASP.
Experience in intelligence-driven defense and/or cyber-kill chain methodology.
For further information about the role and requirements, please refer to the job posting details provided by Leidos. This description reflects the requirements and responsibilities as stated in the posting.
#J-18808-Ljbffr