Cybersecurity Service Provider (CSSP) Engineering Team Lead

Team: CWS

Location: Indianapolis, IN

Commitment: Full-time

Workplace Type: onsite

Key Tasks & Responsibilities

• Program & Technical Leadership
• Provide day-to-day management of CSSP Engineering and Security Infrastructure teams across multiple locations and enclaves.
• Lead high-visibility cybersecurity engineering initiatives and mission-critical support operations.
• Act as technical SME and decision-maker for cybersecurity technologies, policies, and enterprise security architecture.
• Conduct structured quality reviews and ensure all engineering work meets Government standards.
• Apply comprehensive technical expertise across major tasks and security engineering activities.
• Oversee and guide cybersecurity program performance, recommending improvements and major technical changes.
• Supervise engineering teams and oversee junior staff performance.
• Independently perform functional duties across high-impact assignments.
• Security Infrastructure Engineering
• Engineer, implement, and maintain cybersecurity infrastructure, including:
• IDS/IPS, firewalls, perimeter defenses
• Endpoint Security System (ESS)
• Assured Compliance Assessment Solution (ACAS)
• SIEM technologies (e.g., ArcSight)
• Network monitoring and forensic toolsets
• Zero Trust–aligned technologies
• Security Operations & Monitoring
• Provide 24/7/365 monitoring, security analysis, event correlation, incident response, and penetration testing.
• Monitor tools to detect and mitigate internal/external threats including malware, web attacks, unauthorized access, and data exfiltration.
• Maintain real-time situational awareness across all assigned enclaves.
• Incident Response
• Serve as central point of contact for Computer Emergency Response.
• Perform incident investigation, reporting (internal/external), coordination, and resolution.
• Ensure compliance with DoD Computer Emergency Response Team (DoD-CERT) directives.
• Vulnerability & Patch Management
• Operate and manage enterprise vulnerability scanning solutions (e.g., ACAS).
• Perform monthly scans, IAVA management, remediation actions, and reporting.
• Maintain secure configuration baselines using DISA STIGs and NSA guidelines.
• Execute SRRs/security scans and validate compliance.
• Security Engineering Lifecycle Support
• Review and approve all new equipment and system deployments across enclaves.
• Configure hardware/software for DoD-approved ports, protocols, and services (PPS).
• Perform security audits for servers, endpoints, network devices, and infrastructure components.
• Maintain continuous compliance with DoD Evaluation Scoring Metrics and JFHQ-DODIN guidance.
• Cybersecurity Program Implementation
• Establish and maintain a cybersecurity program that aligns with:
• DoDI 8500.01 (Cybersecurity)
• DoDI 8510.01 (RMF)
• DoDD 8140.01 (Cyberspace Workforce Management)
• DoD 8570.1-M
• CJCSM 6510.01
• DoD Zero Trust requirements
• STIGs and IAVA directives
• Plans, Policies, and Documentation
• Develop and maintain documentation including:
• Plan of Action and Milestones (POA&M)
• Acceptance of Risk (AOR)
• Security Override Letters (SOL)
• Configuration Management documentation
• Network and system architecture designs
• Cybersecurity policies and procedures
• Compliance inspection reports
• Enterprise Compliance & Reporting
• Ensure confidentiality, integrity, and availability of all Government systems and data.
• Report vulnerabilities and non-compliance findings to the Government with corrective action plans and timelines.
• Implement a change control process preventing unauthorized system or network modifications.
• Functional Areas Supported
• The CSSP Engineering Team Lead oversees and supports the following primary functional areas:
• Security Infrastructure Engineering Services
• Security Event Monitoring & Analysis
• Cyber Incident Response
• Audit Support & Compliance Guidance
• Security Analysis & Reporting
• Cybersecurity Policy Review
• Program Operations & Planning
• Information Assurance Vulnerability Management
• Mission Cloud & On-Premises Security Implementation
• Emerging Technology Assessments & Process Improvements
• Desired Skills
• Expert-level understanding of DoD and DISA cybersecurity architecture, tools, and compliance frameworks.
• Proven ability to lead large security engineering teams and 24/7 operations centers.
• Strong technical depth in SIEM, IDS/IPS, ACAS, ESS, endpoint security, Zero Trust, and secure configuration.
• Ability to interface with senior Government leadership and communicate complex technical concepts clearly.

Education & Experience

• Minimum Education
• Bachelor’s degree required.
• MA/MS degree preferred.
• Minimum General Experience
• Eight (8) years of progressive experience in IT engineering, platform operations, network engineering, or a closely related IT management discipline involving oversight of large, complex, multi-site programs

Certifications

• Project Management Professional (PMP) or equivalent – REQUIRED
• Relevant commercial certifications (e.g., ITIL, Agile, CISSP, CSM) – desired
• Must maintain all mandatory certifications

Security Clearance

• Must be a U.S. Citizen.
• Selective Service registration required (if applicable).
• Top Secret Security Clearance required
• Must maintain fitness and eligibility for national security positions

Other (Travel, Work Environment, DoD 8570 Requirements, Administrative Notes, etc.)

• Onsite at customer location