Posted:
7/25/2024, 12:28:45 PM
Location(s):
Missouri, United States ⋅ Springfield, Virginia, United States ⋅ Virginia, United States
Experience Level(s):
Senior
Field(s):
IT & Security
Workplace Type:
Hybrid
The Opportunity:
The Cybersecurity Focused Operations Lead will directly report to the Branch Chief of Defensive Cyber Operations. The candidate will take previous experience within cybersecurity operations, hunt/blue teams, red teams, and threat intelligence to achieve strategic goals by executing policies and procedures at a tactical level that best align with strategic direction given by the Chief of TCS Cyber. The Focused Operations Lead will oversee the day-to-day execution of all teams aligned to the subordinate organization. This would include identifying opportunities to mature processes and personnel with the intent to execute the mission effectively and efficiently. When appropriate, will provide guidance and recommendations to leadership on matters relating to the prioritization of resources. As result, the Focused Operations Lead will be required to effectively work with and communicate with varying levels of stakeholders to include TCS leadership, technical customers, non-technical customers, and all TCS staff of varying skillsets and experience.
Responsibilities:
Execute the mission of TCS Cyber Focused Operations. This requires the coordination of Threat Intelligence, Hunt, Adversarial Threat Emulations, and Defensive Countermeasures development.
Will continue to mature and integrate all capabilities into a unified workflow, or Fusion Cell, following a predetermined model.
Working with the Lead of the Security Operations Center (SOC), will define and integrate specific workflows into the Fusion Cell where appropriate.
Assists both the Branch Chief of Defensive Cyber Operations and Chief of TCS Cyber with the design, development, implementation, operations and sustainment of cybersecurity services that enhance the cybersecurity posture of NGA Programs, Systems, and the Enterprise.
When required, will conduct research and analysis to assist with solution design and implementation planning for the modernization of existing cybersecurity solutions and infrastructures in partnership with internal and external stakeholders.
Will assist with the monitoring of performance and morale of staff across the Cybersecurity Division by providing recommended courses of action, to resolve issues, to TCS leadership.
As needed, will provide guidance or direction to lower-level staff.
Assists with the research and evaluation of new concepts, processes, and technology to improve performance and gain efficiencies within Focused Operations.
Qualifications:
Bachelor’s degree, or higher, in Computer Science, Cyber Security Engineering or IT-related discipline. With an additional 8 years of experience in the cybersecurity field. Additional years of experience may be substituted in lieu of degree.
Candidate must have a TS/SCI with ability to obtain a Polygraph
Demonstrated leadership experience serving in positions such as functional manager or team lead for a minimum of 3 years.
Sufficient knowledge of complex enterprise cybersecurity systems and technologies with the ability to interpret network and web architecture documentation.
Demonstrated experience providing briefings to an executive audience.
Certified DoD 8140.01 and 8570.01-M Information Assurance Technical Officer (IAT) Level III
Certified DoD 8140.01 and 8570.01-M CSSP Analyst
Understanding of the Security Operations Capability Maturity Model(s) (SOC-CMM, C2M2, or equivalents) to secure information systems.
Demonstrated experience with ODNI ICS 500-27, NSM-8, and OMB M21-31
Understanding of cybersecurity compliance policy, programs, processes, and metrics.
Excellent verbal and writing skills with the ability to write clear and concise assessment reports.
Good understanding of project management concepts such as ITIL and the differences between Iterative versus Waterfall methodologies.
Demonstrated experience in cybersecurity design, engineering and operations with emphasis on NGA capabilities.
Strong understanding of adversarial tactics and techniques as it applies to offensive cyber operations.
Strong understanding with the Intelligence Lifecycle and how it applies to Cyber Threat Intelligence reporting.
Strong understanding of the various methodologies that can be leveraged to conduct Hunt operations.
Strong understanding of pattern analysis and regular expressions
Strong understanding of Purple Team tactics and mitigating enterprise visibility or defensive gaps.
Strong understanding of Mitre ATT&CK and the ability to map the corresponding TTP to the appropriate defensive capability as it relates to countermeasure development.
Desired:
Demonstrated 5 or more years of experience supporting an IC or DoD agency in adopting and transitioning systems and services to cloud environments, including hybrid cloud environments.
Proficient in vendor agnostic cloud security concepts.
_____________________________________________________________________________
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Your potential is limitless. So is ours.
_____________________________________________________________________________
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.
Since this position can be worked in more than one location, the range shown is the national average for the position.
The proposed salary range for this position is:
$89,500-$188,000CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.
Website: https://caci.com/
Headquarter Location: Arlington, Virginia, United States
Employee Count: 10001+
Year Founded: 1962
IPO Status: Public
Industries: Software