Leidos
The Digital Modernization Sector is seeking a Cyber Security Senior Manager
to support the DISA GSM‑O II TN09 Network Assurance (NA) Program. GSM‑O II provides network operations and cyber defense support to the Defense Information Systems Agency (DISA), the Department of Defense (DoD), and Combatant Commands (CoCOMs).
The selected candidate will serve as both the TN09 DISA Pacific Site Lead and overall GSM‑O Site Lead
in Ford Island Hawaii, providing leadership for defensive cyber operations activities. This role requires proactive engagement with a variety of stakeholders, anticipating their needs, and delivering high‑quality results. The candidate will collaborate across multiple time zones with the TN09 Program Manager, Service Delivery Manager, other DISA monitoring center leads, and task order leadership globally.
Primary Responsibilities
Deliver on day‑to‑day mission requirements and ensure operational excellence.
Represent the organization in DISA Defensive Cyber Operations (DCO) working groups.
Provide effective leadership for the DISA Pacific Network Assurance staff, including employee engagement, training, performance reviews, and other personnel management responsibilities.
Lead teams responsible for:
Triaging and analyzing alerts from sensors across monitored networks.
Conducting network forensics to identify malicious activity.
Providing incident and situational awareness reporting to subscribers of DISA cybersecurity services.
Creating and modifying signatures and custom alerting logic based on adversary activity, vulnerabilities, and internal analysis.
Implementing active mitigations to prevent and contain malicious activity.
Serve as the Senior GSM‑O II Representative on‑site, coordinating with local government personnel on administrative tasks for all contract staff.
Basic Qualifications
Active Top Secret clearance (must be maintained).
Bachelor’s degree in a related discipline from an accredited institution, or equivalent experience/combined education, with 10+ years of relevant experience. Additional years of related experience may be considered in lieu of a degree.
Hold a DoD‑8570 IAT Level 2 baseline certification (e.g., Security+ CE, CISSP, or equivalent) and the ability to obtain a CSSP‑A certification within 180 days of the start date.
Strong understanding of Cyber Network Defense (CND) principles, including protection, detection, response, and sustainment within a Computer Incident Response organization.
Motivated self‑starter and team leader with excellent written and verbal communication skills.
Preferred Qualifications
Experience with DISA and DoD networks.
Advanced knowledge of TCP/IP, common networking ports and protocols, traffic flow, system administration, the OSI model, defense‑in‑depth strategies, and common security elements.
Expertise in the architecture, engineering, and operations of at least one enterprise SIEM platform (e.g., Elastic SIEM, ArcSight, Splunk, Sentinel).
Familiarity with malware analysis concepts and methods.
Demonstrated experience briefing Senior Executive Service (SES) and General Officer/Flag Officer (GO/FO) leadership.
Advanced certifications such as SANS GIAC/GCIA/GCIH, GLSC, or CASP.
Experience with intelligence‑driven defense and/or the cyber kill chain methodology.
Pay Range $126,100.00 – $227,950.00
#J-18808-Ljbffr
to support the DISA GSM‑O II TN09 Network Assurance (NA) Program. GSM‑O II provides network operations and cyber defense support to the Defense Information Systems Agency (DISA), the Department of Defense (DoD), and Combatant Commands (CoCOMs).
The selected candidate will serve as both the TN09 DISA Pacific Site Lead and overall GSM‑O Site Lead
in Ford Island Hawaii, providing leadership for defensive cyber operations activities. This role requires proactive engagement with a variety of stakeholders, anticipating their needs, and delivering high‑quality results. The candidate will collaborate across multiple time zones with the TN09 Program Manager, Service Delivery Manager, other DISA monitoring center leads, and task order leadership globally.
Primary Responsibilities
Deliver on day‑to‑day mission requirements and ensure operational excellence.
Represent the organization in DISA Defensive Cyber Operations (DCO) working groups.
Provide effective leadership for the DISA Pacific Network Assurance staff, including employee engagement, training, performance reviews, and other personnel management responsibilities.
Lead teams responsible for:
Triaging and analyzing alerts from sensors across monitored networks.
Conducting network forensics to identify malicious activity.
Providing incident and situational awareness reporting to subscribers of DISA cybersecurity services.
Creating and modifying signatures and custom alerting logic based on adversary activity, vulnerabilities, and internal analysis.
Implementing active mitigations to prevent and contain malicious activity.
Serve as the Senior GSM‑O II Representative on‑site, coordinating with local government personnel on administrative tasks for all contract staff.
Basic Qualifications
Active Top Secret clearance (must be maintained).
Bachelor’s degree in a related discipline from an accredited institution, or equivalent experience/combined education, with 10+ years of relevant experience. Additional years of related experience may be considered in lieu of a degree.
Hold a DoD‑8570 IAT Level 2 baseline certification (e.g., Security+ CE, CISSP, or equivalent) and the ability to obtain a CSSP‑A certification within 180 days of the start date.
Strong understanding of Cyber Network Defense (CND) principles, including protection, detection, response, and sustainment within a Computer Incident Response organization.
Motivated self‑starter and team leader with excellent written and verbal communication skills.
Preferred Qualifications
Experience with DISA and DoD networks.
Advanced knowledge of TCP/IP, common networking ports and protocols, traffic flow, system administration, the OSI model, defense‑in‑depth strategies, and common security elements.
Expertise in the architecture, engineering, and operations of at least one enterprise SIEM platform (e.g., Elastic SIEM, ArcSight, Splunk, Sentinel).
Familiarity with malware analysis concepts and methods.
Demonstrated experience briefing Senior Executive Service (SES) and General Officer/Flag Officer (GO/FO) leadership.
Advanced certifications such as SANS GIAC/GCIA/GCIH, GLSC, or CASP.
Experience with intelligence‑driven defense and/or the cyber kill chain methodology.
Pay Range $126,100.00 – $227,950.00
#J-18808-Ljbffr