Cyber Defense Operator (CDO) jobs in United States
cer-icon
Apply on Employer Site
company-logo

IPSecure, Inc · 6 days ago

Cyber Defense Operator (CDO)

positionLackland Heights, TX
timeFull-time
remoteOnsite
seniorityMid Level
money$75K/yr - $95K/yr
date3+ years exp

IPSecure, Inc. is seeking a Cyber Defense Operator (CDO) with TS/SCI Level Clearance in San Antonio, Texas. The role focuses on identifying and responding to suspicious activities on Air Force networks through thorough event analysis and incident response processes.

Cyber SecurityInformation TechnologyInformation Services
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

When CAT events are escalated to incident response, complete incident response process, including: preparation, identification and scoping, containment, eradication and remediation, recovery, and lessons learned
Upon identification of suspicious activity on AF networks, open network intrusion investigation(s) to validate the unauthorized activity and determine the type and extent of activity
Provide AF Office of Special Investigations (OSI) DCO technical support to law enforcement and counter‐intelligence agencies and activities if required
Participate and contribute to lessons learned meetings and briefings
Support planned and same‐day Incident Response deployments
Comply with 3rd party MOU/MOA monitoring and reporting requirements. Analyze host DCO events to determine the necessity for higher level analysis and conduct an initial assessment of type and extent of intruder activities
Conduct cyber investigations in order to determine the initial vector and overall timeline of intrusion, accurately identify the threat, determine the full scope of impact, and develop containment and remediation actions for approval
Author and review incident report forms (IRF) for security incidents within JEMS. Ensure the document is accurate and provides the correct amount of technical detail needed. (CDRL A008)
Provide AF Office of Special Investigations (OSI) DCO technical support to law enforcement and counter‐intelligence agencies and activities if required
Generate end of mission reports (MISREPS) and provide pass‐on information for knowledge transfer to subsequent /crews of analysts on duty regarding the latest suspicious traffic seen from a given port, Internet Protocol (IP), etc. with no more than a 5% error rate
Generate end of mission reports (MISREPS) and provide pass‐on information for knowledge transfer to subsequent /crews of analysts on duty regarding the latest suspicious traffic seen from a given port, Internet Protocol (IP), etc
Provide computer security‐related support to AF field units as directed by CCC, in countering vulnerabilities, minimizing risk, and improving the security posture of AF computers networks and systems within the scope of AFIN SOC operational requirements and mission execution
Participate in planning, briefing, and debriefing tasks as directed by CDO Mission Lead or Crew Commander
Provide feedback on detection mechanisms that are both true and false positive events to ESM and Content Development as applicable
Design incident response plans (IRP) as directed by the Crew Commander. Ensure CDOs are briefed on objectives, ROEs, plans, contingencies, and applicable TTPs
Accomplish assigned weapon system access, ORM, Go/No Go, reports, TTP updates, and TAR submissions

Qualification

Cyber SecurityIncident ResponseTS/SCI ClearanceGCFA CertificationTechnical SupportEvent AnalysisCommunication Skills

Required

Active TS/SCI Level Clearance
Ability to gain the CSSP Incident Responder Certification (GCFA) Certification requirement within 120-days of hire date

Preferred

3+ years of relevant technical, cyber security, and business work experience

Benefits

Medical
Dental
Vision
Unlimited Vacation
Sick Leave
Paid Federal Holidays
Education and Certification Reimbursement Program
401(k) retirement plan with safe harbor employer match after 3 months
Prepaid legal plan and ID protection plan available
Accident Insurance
Critical Illness Insurance
Hospital Indemnity Insurance available

Company

IPSecure, Inc

twittertwittertwitter
company-logo
IPSecure provides Cyber Security Solutions to the Government and Commercial companies worldwide.
dateFounded in 2000
location
San Antonio, Texas, USA
people-size51-200 employees
web-link
https://www.ipsecureinc.com/

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
John Trabucco
Chief Operating Officer
linkedin

Recent News

VC News Daily
IPSecure Seven-Figure Seed II Round
2024-02-16
Company data provided by crunchbase