Cyber Security Operations Center Analyst

Leidos Holdings Inc. Colorado Springs , CO 80928

Posted 3 weeks ago


Job Description:

The Defense Group of Leidos has an open position for a Cyber Security Operations Center Analyst in Colorado Springs, CO.

Our customer maintains a highly demanding mission and requires our support to provide expert technical and professional management support to the commands enterprise Information Technology (IT) services. The Cyber Security Operations Center Analysts will support a program that provides sustainment, maintenance, problem and change management services to help ensure secure, reliable, and uninterrupted availability of the Department of Defense IP networks. Cyber Security Operations Center Analysts provide support to implement Leidos IonIA for cyber threat mitigation and Proven Analytic-Centric Kill Chain Implementation and Transformation (PACKIT) to obtain steps that an adversary must go through to achieve their goal.

This position will report directly to the Cyber Security Operations Center Lead, with regular interaction with the Cyber Security Manager and government POCs.

Primary Responsibilities:

  • Works independently to achieve day-to-day objectives with significant impact to the overall NORAD/USNORTHCOM Government mission.

  • Engages with NORAD/USNORTHCOM Government customers, internal customers, team members and management, to fulfill cyber security requirements.

  • Makes determinations based on that interaction.

  • Responsible for the development and fielding efforts including testing/installation of operating systems and application lock-down consistent with the current status of cyber security regulations.

  • Analyze and apply current cyber and Risk Management Framework (RMF) protocols to complex server, network and interconnected systems to resolve and satisfy the conditions necessary to achieve an Authority to Operate.

  • Responsible for multiple systems, function interchangeably within a team of engineers and support a cross functional approach to resolving the myriad of issues confronting applications and systems operating within a highly complex and interconnected networked environment

  • Takes ownership of a segment of the solution and pursues the implementation across multiple technical areas.

  • Uses a deep understanding of and ability to apply principles, theories, and concepts of technical domain and has broad understanding of other related specialty areas experience with the application of DISA Security Technical Implementation Guides (STIGs) to operating Systems, Information Assurance Vulnerability Alert (IAVA) monitoring and application, system vulnerability scanning and mitigation of findings, and remediation of findings

  • Designs, develops, and implements solutions that meet network and system security requirements and perform vulnerability/risk analyses of computer systems, networks and applications in conjunction with the tasking being simultaneously performed by the other cyber professionals, network staff, other corporate teammates and resident Government staff.

  • Defines solutions, communicates it to the stakeholders.

  • Presents the solution and the adequacy of the solution to the stakeholders to ensure their acceptance, and then implement it within the context of a larger effort.

  • Evaluates the network to identify potential issues of network, system, and user cyber threat activity.

  • Implement appropriate countermeasures to deter and stop cyber threat.

  • Responsible for conducting Cyber vulnerability analysis and response.

  • Enacts and executes downward directed Defensive Cyber Operations actions.

  • Executes Information Condition (INFOCON) or Cyber Protection Condition (CPCON) Maintain up to date IP space tracking with subordinate boundaries.

  • Ensures access to the NOC and the CWOC-DCO watch.

  • Identifies and updates lists of point of contact for all system/IP inquiries from the CWOC for the entire N&NC IP space.

  • Provides expertise on technical and mission impact assessments and liaise with the CWOC and JCC for all Cybersecurity related incidents.

  • Conducts technical course of action analysis for cyber threat response based on vulnerabilities, architecture, and defense in depth strategies in place.

  • Determines which action analysis are appropriate.

  • Develops solutions and determines process improvements by providing root cause analysis for vulnerability exploitation and attack realization.

  • Responsible for reporting any security vulnerability produced as a result of the implementation of defensive cyber efforts to the CWOC.

  • Provides and compiles daily reports to track new and ongoing issues, status of implementation of solutions, results of various analysis, activities, observations, and determine upcoming actions.

  • Responsible for monitoring systems and directives, and ensures compliance.

  • Develop appropriate tactics, techniques, and procedures (TTPs) for response to cyber threats, cyber security, and access-related incidents, downward directed tasks, and insider threat triggers.

Basic Qualifications:

  • Bachelors degree and 2+ years relevant experience or a Masters degree with less than 2 years of experience. Additional years of applicable experience will be accepted in lieu of degree.

  • Ability to get Certified Ethical Hacker (CEH) or Cybersecurity Analyst (CySA+) within 4 months.

  • Ability to get DoD 8570 CSSP in any of the following within 6 months: (Analyst, Infrastructure Support, Incident Responder or Auditor).

  • Current Top Secret clearance with ability to obtain TS/SCI and maintain it.

  • Experience recommending additional security requirements and safeguards.

  • Experience supporting the formal Cybersecurity/IA testing required by government accrediting authorities, and preparing System Security Plans.

Preferred Qualifications:

  • Familiarity with NORAD/USNORTHCOM systems.

  • CISSP/CISM Certification.

  • DoD 8570 IAM III Certification.

  • Experience in development of end user operating manuals and documentation.

  • Experience in training of end users in Operating System and SW application installation and operation.

  • Familiarity with Virtualization, particularly VMware/Vsphere.


External Referral Bonus:


Potential for Telework:


Clearance Level Required:

Top Secret



Scheduled Weekly Hours:




Requisition Category:


Job Family:

Cyber Operations


Leidos is a Fortune 500 information technology, engineering, and science solutions and services leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $10.19 billion for the fiscal year ended December 28, 2018. For more information, visit

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.

Securing Your Data

Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to [email protected].

Commitment to Diversity

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Security SYS EngineerSr (Salary)

Parsons Commercial Technology Group Inc.

Posted 2 days ago

VIEW JOBS 5/23/2020 12:00:00 AM 2020-08-21T00:00 This exciting position fills a critical role within our Security Operations Center (SOC). Work with a team of dedicated professionals on an operations floor designed by security professionals, for security professionals. Providing mission assurance through network defense, our team protects an enterprise network across the globe. The Security Operations group works hand in hand as a trusted partner with our Information Technology Department, Project teams, and our Business Development groups. The work location for this position is in Colorado Springs, CO. The SUSTAIN team member is a security engineer with knowledge and experience in networking, system administration, and network security. The primary function of the SUSTAIN team is to support the technology needs of three other teams within SOC while ensuring the security stack (SIEM, IPS, Firewalls, endpoint security systems, etc) used to defend the network is resilient and scalable. This support includes configuration, deployment, maintenance and patching, performance tuning/enhancements for all SOC tools. Additional responsibilities include contributing to security architecture reviews, troubleshooting security-related network issues, performing trade studies/gap analysis, evaluating new/emerging technologies for potential future use, and attending various IT/Infrastructure meetings to ensure security representation. Must be able to manage security projects from cradle to grave and set vision and direction for the team. The ideal candidate is a self-starter with strong understanding of network security tools, attack methodologies, operating systems, general networking, and enterprise security environments. While the focus of this position is the corporate network, SUSTAIN may occasionally contribute to the security of classified environments. Qualifications * A Bachelor's Degree in Information Technology, computer security, or computer science preferred * At least 5 years' direct experience performing hands-on system administration in an enterprise environment, preferably in a Security Operations Center or Computer Emergency Response Team (CERT) * Mid to advanced-level networking experience with Network+, CCNA or equivalent preferred * A minimum of 2 years of network security experience * Familiarity with CJCSM 6510.01B and related workforce structure (PROTECT, DETECT, RESPOND, and SUSTAIN) * Familiarity with organization and operations of a SOC environment * Ability to plan, configure, and deploy security tools across an enterprise network * Ability to write scripts and create customized solutions highly desirable * Ability to interface with and describe security concerns to users, customers, and senior leadership * Ability to coordinate and collaborate with external organizations including IT teams, partner security teams and Law Enforcement * Security+ required; Certified Ethical Hacker (CEH) and/or Certified Information System Security Professional (CISSP) desirable * Excellent professional writing and public speaking skills, with an emphasis on creating sensible policies and procedures related to enterprise-wide security initiatives * Must be a US citizen and have or be able to obtain a government security clearance _ Ready for action? We're looking for the kind of people who see this opportunity and don't hesitate to act. Parsons is a leader in the world of Technical Services and Engineering. We hire people with a broad set of technical skills who have proven experience tackling some of the greatest challenges. Take your next step and apply today. Parsons Commercial Technology Group Inc. Colorado Springs CO

Cyber Security Operations Center Analyst

Leidos Holdings Inc.