NSOC Cyber Defense Lead (DCO Lead) jobs in United States
cer-icon
Apply on Employer Site
company-logo

SOSi · 3 months ago

NSOC Cyber Defense Lead (DCO Lead)

positionPearl Harbor, Hawaii
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

SOSi is seeking a visionary NSOC Cyber Defense Lead (DCO Lead) to command the front lines of cyber resilience at Joint Base Pearl Harbor Hickam. In this high-impact role, you will lead Defensive Cyberspace Operations, driving real-time threat detection, response, and mission assurance across a dynamic Indo-Pacific enterprise.

ConsultingGovernmentInformation Technology
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead the Defensive Cyberspace Operations (DCO) branch of the NSOC, providing daily oversight of cyber defense, incident response, vulnerability management, and compliance tracking
Supervise, mentor, and train analysts and engineers to ensure consistent performance and procedural adherence across shifts
Serve as the Incident Response Lead for escalated cyber events, coordinating containment, remediation, and communication with mission partners and CSSP stakeholders
Collaborating with the NSOC Deputy, Battle Captains, and Operations/Engineering leads to maintain unified situational awareness across network, system, and cyber domains
Direct proactive threat hunting and detection tuning using adversary TTPs and MITRE ATT&CK methodology
Oversee AI- and SOAR-assisted response workflows, ensuring automation pipelines align with NSOC standard operating procedures (SOPs)
Track and report CTOs, ATOs, POA&Ms, and vulnerability remediation metrics to support accreditation and compliance
Conduct and document tabletop exercises, readiness drills, and after-action reviews to validate detection and response posture
Develop and deliver daily/weekly SITREPs, KPIs, and incident summaries for leadership
Ensure DCO processes comply with RMF, CSSP, and DoD 8140 standards, maintaining accreditation readiness

Qualification

Defensive Cyberspace OperationsIncident Response LeadSIEMEDRSOARDoD 8140 CertificationThreat HuntingMalware AnalysisLeadership SkillsAnalytical Problem-SolvingAI-assisted DetectionZero Trust ArchitectureCommunication Skills

Required

Active in scope SECRET clearance
Bachelor's degree in Cybersecurity, Computer Science, or related discipline (or equivalent work experience)
5+ years of experience in SOC/NSOC or Defensive Cyberspace Operations environments
DoD 8140 / 8570 Baseline Certification: IAT Level III (CASP+, CISSP) or CND (GCIH, GCIA, CEH, CFR)
Demonstrated experience leading teams or shift operations within a cyber defense or SOC environment
Strong proficiency with SIEM, EDR, and SOAR platforms (e.g., Splunk, Elastic, Microsoft Defender, Trellix, Chronicle)
Knowledge of adversary TTPs, malware analysis, and incident response methodologies
Excellent leadership, communication, and analytical problem-solving skills

Preferred

Advanced certifications such as GCIA, GCIH, GDAT, CISSP, or GCTI
Prior experience in military or coalition cyber defense
Familiarity with AI-assisted detection, SOAR automation, and Zero Trust Architecture
Experience supporting DISA PAC, CSSP, or Mission Partner Environment (MPE)

Company

SOSi

twittertwittertwitter
Glassdoor3.0
company-logo
SOSi solves the challenges of the modern mission.
dateFounded in 1989
location
New York, New York, USA
people-size1001-5000 employees
web-link
http://www.sosi.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Jim Edwards
Chief Growth Officer
linkedin

Recent News

The Latest Tech News from Techreport
ICE Deploys AI to Watch What You Post Online
2025-11-01
EIN Presswire
NaVOBA Announces the 2025 Best Corporations for Veteran's Business Enterprises®
2025-10-06
citybiz
SOSi Appoints Andre Watson as Senior Account Executive
2025-08-21
Company data provided by crunchbase