Lead Cybersecurity Operations jobs in United States
cer-icon
Apply on Employer Site
company-logo

TEKsystems · 3 hours ago

Lead Cybersecurity Operations

positionWashington, DC
timeContract
remoteHybrid
senioritySenior Level, Lead/Staff
money$75/hr - $90/hr
date7+ years exp

TEKsystems is a leading provider of business and technology services, helping clients activate ideas and solutions for transformation. They are seeking a Lead Cybersecurity Operations contractor to provide technical leadership and operational support to the Agency’s IT Security Program, ensuring the implementation of cybersecurity policies and managing incident response capabilities.

Information Technology
badNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Serves as the Lead Cybersecurity Operations (SECOPS) contractor, providing high-level technical leadership and operational support to the Agency’s IT Security Program. Supports and coordinates SECOPS activities under government direction and maintains technical inputs to the Agency’s IT Security Program
Provides technical advisory support to the Chief Information Security Officer (CISO) on developments in cybersecurity, information security (INFOSEC), and IT security, including emerging threat vectors, advanced persistent threats (APTs), attack surface analysis, and identified weaknesses. Delivers actionable recommendations for government consideration and decision-making
Supports Agency-level technical implementation of approved cybersecurity policies, standards, and directives by developing technical documentation, implementation guidance, and draft procedures for government review and approval
Leads day-to-day contractor cybersecurity operations activities within the SECOPS function, supporting government-led oversight of systems and services that impact the Agency’s mission and critical infrastructure. Executes approved actions in alignment with government priorities and risk decisions
Implements and administers cybersecurity incident handling (IH) and incident response (IR) capabilities, including SIEM dashboards, detection inputs, incident response playbooks, and operational metrics, to improve efficiency and effectiveness of security operations
Facilitates and coordinates SECOPS activities in support of the Agency’s Information Security (INFOSEC) Program, assisting Agency system security personnel and Information System Security Officers (ISSOs). Provides accurate and timely reporting on SOC performance metrics and submits recommendations for improvement to government leadership
Serves as the technical advisor for threat, vulnerability, and configuration management activities, providing threat intelligence analysis, mitigation recommendations, and defensive strategy insights to Agency stakeholders. Supports OIT by conveying industry attack trends, mitigations, and active defense techniques for government consideration and approval

Qualification

Cybersecurity OperationsIncident ResponseThreat DetectionVulnerability ManagementGovernanceRiskComplianceMicrosoft AzureWeb Application SecuritySecurity Assessment ToolsTechnical LeadershipCollaboration SkillsCritical ThinkingCommunication SkillsTeamwork

Required

Requires a bachelor's degree in Cybersecurity, Information Assurance, or Information Security and 7+ years of relevant work experience. Additional experience may be substituted for a degree
Demonstrated ability to guide technical discussions and provide expert advisory support to government officials, including the CISO, system owners, SOC staff, and executive leadership, while operating under government direction
Proven experience as a SOC Lead or Team Lead, successfully coordinating with managed security service providers (MSSPs) and external cybersecurity partners (e.g., CISA, CYBERCOM) in support of incident response (IR), incident handling (IH), and vulnerability management (VM) activities), including mitigating actions to contain activity and facilitating forensics analysis when necessary
Documented experience conducting and guiding in-depth technical evaluations of INFOSEC, IT security, and cybersecurity tactics, techniques, and procedures (TTPs), including their impact on baseline system configurations
Demonstrated proficiency providing cybersecurity posture assessments, hygiene reporting, and technical input in support of Governance, Risk, and Compliance (GRC) activities and continuous monitoring programs
Experience providing incident response support to network subscribers, including recommending mitigating actions, supporting containment efforts, and facilitating forensic analysis under government oversight
Demonstrated expertise in log-based and endpoint-based threat detection, threat hunting, and analysis across multiple threat sources
Strong technical knowledge of web services security, Microsoft cloud environments (Azure, M365), and modern enterprise security architectures
Advanced experience evaluating the security of complex web portals, APIs, and databases (e.g., Java, Ruby, SQL, Oracle) using commercial and open-source security assessment tools such as SQLmap and mongoaudit
Near-expert proficiency in: Web application security testing frameworks (e.g., NMAP, W3af), Continuous monitoring and remediation tools (e.g., Azure Security Center, Defender for Cloud, Qualys, Wireshark), Endpoint Detection and Response (EDR) platforms (e.g., HBSS, SEP, Microsoft Defender)
Near-expert knowledge of SOC operations, incident handling (IH), incident response (IR), and adversary tactics, techniques, and procedures (TTPs)
Ability to facilitate adoption of cybersecurity best practices with development, database, and system administration teams through technical expertise and collaborative engagement
Must be engaging and proactive with critical thinking and problem-solving ability, both independently and as part of a team
Candidate must demonstrate the ability to present ideas and reports clearly in English, both orally and in writing

Preferred

Highly Desired Certifications: CISSP, OSCP, GCIH, GPEN, GSEC, GCIA, GCED, GCID, CCSP, GWEB, GSNA, GCWN, GAWN, GSE, GPPN
Experience supporting a nationwide mid-sized Federal agency enterprise is a plus

Benefits

Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)

Company

TEKsystems

twittertwittertwitter
Glassdoor3.9
company-logo
At TEKsystems, they understand people. Every year they deploy over 80,000 IT professionals at 6,000 client sites across North America,
dateFounded in 1994
location
Hanover, Maryland, USA
people-size10001+ employees
web-link
http://www.teksystems.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Ryan Skains
Vice President, TEKsystems Global Services
linkedin

Recent News

Morningstar.com
/C O R R E C T I O N — Per Scholas/
2026-02-03
PR Newswire
Monument Consulting Announces 2025 Strategic Suppliers
2025-11-19
Observer.com
Chatbots Like ChatGPT Are Fueling Mental Health Crises—What Can Be Done?
2025-10-29
Company data provided by crunchbase