Cyber Operations Job Description
Cyber Operations Duties & Responsibilities
To write an effective cyber operations job description, begin by listing detailed duties, responsibilities and expectations. We have included cyber operations job description templates that you can modify and use.
Sample responsibilities for this position include:
Cyber Operations Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Cyber Operations
List any licenses or certifications required by the position: IAT, CISSP, SANS, III, II, IAM, CSSP, CISM, OS, CCISO
Education for Cyber Operations
Typically a job would require a certain level of education.
Employers hiring for the cyber operations job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Technical, Education, Computer Engineering, Information Technology, Information Systems, Cyber Security, Information Security, Military
Skills for Cyber Operations
Desired skills for cyber operations include:
Desired experience for cyber operations includes:
Cyber Operations Examples
Cyber Operations Job Description
- Identify unauthorized activity against USTRANSCOM information systems and networks on NIPRNet and SIPRNet and initiate appropriate incident response actions
- Perform installation of intrusion detection monitoring and incident management tools IAW USTRANSCOM processes, including requesting/coordinating hardware/software procurement (including lifecycle upgrades)
- Perform the day-to-day mission execution of the intrusion detection monitoring and incident management and response activity
- Perform the day-to-day operation and maintenance of the intrusion detection monitoring and incident management tool suite
- Document changes to intrusion detection monitoring and incident management tools (e.g., software installs, patching, software configuration changes, ) in accordance with Change Management policies and provide configuration management data on all of its managed systems according to the schedule and format directed by the Government
- Collect and provide the Government with monthly metrics on intrusion detection monitoring and incident management activity
- Provide cyber threat analysis support to USTRANSCOM’s Cyber Security Service Provider (CSP) and Joint Cyber Center (JCC) Defensive Cyber Operations (DCO) missions on-site at Scott AFB during normal duty hours and on-call after duty hours with a one (1) hour response time to begin work
- Collect, analyze, and report on security events that affect the operation of USTRANSCOM information systems that are hosted within USTRANSCOM’s and CSP subscriber enclaves, and for systems hosted elsewhere for which USTRANSCOM is the authorizing official
- Collect, analyze, and report security events that affect the operation of USTRANSCOM’s mission environment and identified Cyber-Key Terrain (C-KT)
- Collect and provide the Government with monthly metrics on cyber threat analysis activity
- CISM and CISSP designations are mandatory
- Extensive knowledge of networking protocols
- Detailed Internet, networking, and computer knowledge (Software & Hardware)
- Manage setting up lab for test event initiation, recovery and roll-back
- Minimum 2 years of experience building and supervising a Test Lab
- Must be proficient in developing and presenting, both verbally and in writing, highly technical information and presentations to non-technical audiences at all levels of the organization
Cyber Operations Job Description
- Drive business into DISA Operations Centers its emerging new mission Joint Service Provider (JSP)
- Experience leading a SOC function in a large organisation
- Demonstrable experience of responding to a wide range of scenarios in which you have overseen the identification and response to specific threats
- A detailed knowledge of the regulatory landscape we operate in, the DPA and preferably GDPR, ISO27001, PCI DSS and NIST
- A formal qualification, such as CISSP, CISM, CEH, GIAC or equivalent experience
- Working with the Head of Cyber to run the operational teams that deliver Nationwide’s operational Cyber Security capability
- Contributing to deep and regular Cyber Security risk and threat assessments
- Leading several busy teams of technical subject matter experts in the identification and response to threats
- Sponsoring a Cyber Security Programme to ensure a that new and existing controls are implemented effectively
- Communicating effectively with a wide range of stakeholders, including business Communities and suppliers
- Bachelor’s Degree & 10 to 12 years of related experience
- Extensive Background in computing including cyber operations
- Experience with both offensive and defensive Cyber operations
- Project Management / Team leadership experience (preferred)
- Experience performing cyber vulnerability assessments and cyber test planning for acquisition programs
- Knowledgeable in the technical areas of computer networking, computer hardware, and software development
Cyber Operations Job Description
- Technical direction and vision
- Identifying and integrating research
- Senior customer engagement
- Performing quality assurance of day to day activities deliverables
- Develops test plans and tests software security mechanisms for operational effectiveness and deployment readiness
- Delivery Assurance (through secure coding practices, penetration testing, and developer training)
- Technology Risk and Audit Management
- Collect data to develop and report metrics that are approved by Air Force/DoD customers
- Provide input to monthly network services outage report that should include network service outages, their duration, number of users impacted
- Provide real-time system operational statistics for proactive management of network
- Experience must include monitoring multiple security tools (SIEM, DLP, IAM tools), maintaining security platforms and supporting overall security program
- Able to articulate cyber security related issues to program management
- Experience with at least one of the following SME instructor
- DoDI 8570.1M
- IAT Level II Commercial Cyber Certification
- BA or BS degree in Instructional Systems Design, Course Development, or an SME instructor
Cyber Operations Job Description
- Design and manage processes and procedures, playbooks and metrics to ensure team participation and continuously evaluate effectiveness of current operations
- Ensure quality of practice meets contractual requirements, legal obligations and policy and procedures
- Assist with the Incident Management planning for CSO and help develop insights and procedures into effectiveness and efficiency of the current Incident Management processes
- Champion new strategies to maintain consistency or improve the quality of the handling of incidents, escalation procedures and related disciplines
- Oversee security analysis, administration and remediation procedures, workflows and tasks
- Develop processes and communication strategies to ensure a timely and responsive approach to both customer reported and incidents identified internally
- Act as escalation manager when issues severely impact an environment, driving problems to resolution and managing the communications within the support team and with internal customers
- Actively monitor for possible escalating situations to prevent potential escalations
- The position will be responsible for the Managed Security Services and systems
- Root cause analysis, make and implement recommendations on improvements
- Applicant will need to be an organized, self-starter that is process oriented and able to adapt to a newly defined and fast paced, ever-changing environment
- Must currently possess or be able to obtain a TS/SCI with Poly security clearance
- Instructor Certification or ability to obtain
- Knowledge and experience with various IT governance and control frameworks (NIST, COBIT, ISO, ITIL)
- Bachelors Degree with at least 4 years of cyber training experience
- IAT Level III and IAM Level II Compliant Certifications required within 9 months of starting
Cyber Operations Job Description
- Perform client-facing relationship development with hiring managers
- Conduct full-life cycle recruiting in support of our intelligence community programs—source, prescreen, interview, extend and negotiate offers, and facilitate onboarding
- Utilize and exploit a variety of resources to target highly-cleared candidates with specialized technical expertise—social media and web-based initiatives, job fairs, networking and commonly used job boards
- Managing and directing SOC operation
- Manpower staffing and shift planning
- Performance management of SOC operations
- Development, maintenance and enhancement of SOC processes
- Preparation of SOC management and statistical reports
- Management of security incident response
- Staff supervision and administration
- Level operating system through High-level enclave comprehension and develop architectural and implementation options of CND equipment with a focus on globally distributed SEIMs within the scope of sometimes conflicting requirements
- Problem solving and negotiations
- Ten (10) years or more experience as a Cyberspace Operations Engineer or related function with a Bachelor’s Degree from an accredited college or university in Computer Science, Cybersecurity, Computer Engineering, or related discipline, or seven (7) years of experience with a Masters Degree
- Minimum DoD 8140/DOD 8570 IAM Level III Certification (CISM, CISSP, GSCL)
- BA or BS degree and 7+ years of experience in an instructor SME related area, including Internet Protocol (IP) networks, wired and wireless networks, telephony networks, Industrial Control System (ICS) networks, space networking and control, Integrated Air and Missile Defense Systems (IAMDS) networks, Tactical Data Link (TDL) networking, or network and signals intelligence
- Graduate of an Air Force or Joint Cyber Operations Formal Training course or ability to pass applicable courses taught by the IO and Cyber FTU