Job Summary: 

• Support CSSP Battle Captain and Cyber Operations Center (CyOC) Chief with all cyber defense and assurance issues.
• Oversee network defense operations and be familiar with process flow and execution.
• Maintain awareness of all pertinent directives, orders, alerts, and messages.
• Prepare and deliver daily situational awareness and operational update briefings.
• Serve as Senior Defensive Cybersecurity SME during 24x7 operations.
• Provide daily, weekly, and monthly reports to leadership authorities and understand the customer challenges in meeting compliance.
• Identify, analyze and triage data information requests from components, comprehend and deconflict issues between higher authorities and affected components.
• Organize and manage communications between all MDA Cybersecurity Service Provider (CSSP) stakeholders via teleconferences, technical exchanges and conferences.
• Coordinate and collaborate between IA/DCO Teams and Agency/Service CSSP.
• Lead discussions for security implementation needs and configuration issues.
• Provide subject matter expertise to train, collaborate with instructional designers, and present technical training modules as a subject matter expert.

Skills on Resume: 

• Cyber Defense Operations (Hard Skills)
• Situational Awareness Reporting (Hard Skills)
• Data Analysis and Triage (Hard Skills)
• Technical Communication (Soft Skills)
• Stakeholder Coordination (Soft Skills)
• Compliance Management (Hard Skills)
• Training and Development (Soft Skills)
• Security Implementation (Hard Skills)

Job Summary: 

• Assist in the establishment/maintenance of an agile software development environment.
• Creation and maintenance of automated and secure CI/CD pipelines and development environments.
• Collaboration with the team using agile Scrum methodologies with stakeholders to prioritize activities.
• Support the design and deployment of the C-ATO solution using IaC technologies.
• Integration of best-in-class commercial and cloud-native solutions to achieve target objectives.
• Publish, post, track, and report on Cyber Tasking Orders across the enterprise. Draft Alert Bulletins and notifications for remediation of vulnerabilities.
• Develop, review and coordinate inputs on DCO Operations products and deliverables
• Serve as the MDA focal point for reporting MDA cybersecurity information to JFHQ-DODIN/USCYBERCOM using a variety of methods
• Support the analysis, security threats and development tactics, techniques and processes to mitigate potential security concerns.
• Work directly with operational teams to address and mitigate technical challenges to achieve operational objectives.
• Complete all initial and annual training requirements and disclosures

Skills on Resume: 

• Agile Software Development (Hard Skills)
• CI/CD Pipeline Automation (Hard Skills)
• Scrum Methodologies (Soft Skills)
• Infrastructure as Code (IaC) (Hard Skills)
• Cyber Tasking Order Management (Hard Skills)
• Threat Analysis (Hard Skills)
• Technical Challenge Mitigation (Soft Skills)
• Cybersecurity Reporting (Hard Skills)

Job Summary: 

• Active monitoring of Defensive Cyber Operations (DCO) systems
• Conduct intrusion analysis and correlation of unauthorized activities, provide and implement recommendations to improve customer mitigation processes
• Perform threat insight processes to provide analysis to support mitigation and remediation activities
• Analyze cyber incidents, correlate incident details, and formulate and implement response actions with guidance from leadership
• Participate in the Root Cause Analysis process and documentation capturing efforts taken to mitigate unauthorized actions
• Participate in the development of DCO tactics, techniques, and procedures
• Participate in the development of DCO concept of operations, processes, and procedures
• Identify security discrepancies and report and respond to security incidents
• Provide research and analysis in support of expanding programs and areas of responsibility
• Draft documentation for briefings, reports, and informational analyses
• Assist in the development of local Tactics, Techniques, and Procedures (TTPs)
• Adhere to defined policies, master plans and schedules

Skills on Resume: 

• Intrusion Analysis (Hard Skills)
• Threat Insight Processes (Hard Skills)
• Incident Response (Hard Skills)
• Root Cause Analysis (Hard Skills)
• DCO Tactics Development (Hard Skills)
• Security Incident Reporting (Hard Skills)
• Documentation Drafting (Soft Skills)
• Policy Adherence (Soft Skills)

Job Summary: 

• Investigate potential indicators of compromise.
• Evaluate that intel to determine if there is a risk to Securian’s data or business.
• Monitors and collects information about malicious emails and responds appropriately to protect Securian from malware and phishing campaigns.
• Manages the approval of non-standard applications brought into the environment and confirms the safety of these apps. 
• Reporting on malicious activity attempted against Securian.
• Continuous process improvement for incident identification processes. 
• Learning and understanding common attack techniques and defending against them.
• Work with the Incident Management and Forensics team to bring appropriate attention to suspicious activity.
• Create runbooks for new alerts generated by the Security Information and Event Management (SIEM) team.
• Collaborate with the internal Red Team to develop training exercises and skill testing.
• Work with the Threat Intelligence and Vulnerability Management team to assess and remediate threats and vulnerabilities facing the company.

Skills on Resume: 

• Indicators of Compromise Investigation (Hard Skills)
• Risk Evaluation (Hard Skills)
• Malware and Phishing Response (Hard Skills)
• Application Safety Management (Hard Skills)
• Malicious Activity Reporting (Hard Skills)
• Process Improvement (Soft Skills)
• Attack Techniques Defense (Hard Skills)
• Collaboration with Red Team (Soft Skills)