echojobs.io
Login

California Water Service

Cybersecurity Operations Team Lead

Indianapolis, IN
Bash C# C++ Java JavaScript Python SQL Shell Angular Django Express.js Flask React Spring Vue.js Docker Kubernetes AWS Azure GCP Git Ansible Chef Puppet Terraform API GraphQL gRPC Microservices Streaming ArcSight SIEM IDS/IPS ACAS STIGs Zero Trust ITIL CISSP
Search for More Jobs
Description

Cybersecurity Service Provider (CSSP) Operations Team Lead

Team: CWS

Location: Indianapolis, IN

Commitment: Full-time

Workplace Type: onsite

Job Description
The Cybersecurity Service Provider (CSSP) 24/7 Operations Team Lead serves as the senior subject matter expert (SME) and operational leader responsible for directing continuous cybersecurity monitoring, event analysis, incident response, vulnerability management, and security infrastructure operations across all assigned classified and unclassified enclaves. This role oversees a 24/7/365 cyber operations team and ensures operational compliance with DoD, Defense Cyber Defense Command (DCDC), U.S. Cyber Command, DISA, and Zero Trust cybersecurity requirements.
The Team Lead provides daily supervision of technical staff, leads mission-critical response operations, coordinates with senior Government stakeholders, and ensures the protection, detection, and defense of all Government IT assets in accordance with DoD cybersecurity policy frameworks.

Key Tasks & Responsibilities

  • Operational Leadership
  • Lead, coordinate, and manage the 24/7 cyber operations team responsible for monitoring, detection, triage, and response across all network enclaves.
  • Serve as senior operational authority for active cyber events, incident escalation, and enterprise security actions.
  • Provide daily supervision, scheduling, and direction to CSSP operations staff in support of continuous monitoring requirements.
  • Maintain situational awareness of cyber threats, adversarial activity, and operational risk across the environment.
  • Provide expert-level technical direction, strategic advice, and operational guidance for all CSSP mission areas.
  • Lead operational planning, milestone development, risk assessments, and major technical decisions.
  • Oversee complex or mission-critical cybersecurity programs and ensure all technical requirements are met.
  • Interface with senior Government leadership for incident reporting, operational decisions, and program priorities.
  • Supervise junior staff and mentor technical team members.
  • Continuous Monitoring & Event Analysis
  • Oversee 24/7 security event monitoring, log correlation, anomaly detection, and analysis of alerts.
  • Ensure rapid detection of threats involving malware, unauthorized access, data exfiltration, insider activity, and network exploitation.
  • Utilize SIEM platforms (e.g., ArcSight) and IDS/IPS technologies for real-time analysis.
  • Incident Response & Reporting
  • Act as the central POC for Computer Emergency Response.
  • Lead incident investigations, containment, eradication, and recovery actions.
  • Provide internal and external incident reporting IAW DoD requirements.
  • Support DoD-CERT and JFHQ-DODIN direction during cyber events.
  • Vulnerability & Patch Management
  • Operate and manage enterprise vulnerability scanning platforms (ACAS).
  • Conduct monthly scans, IAVA processing, remediation tracking, and POA&M development.
  • Perform STIG compliance checks and secure baseline validation.
  • Security Infrastructure Support
  • Oversee the operation and maintenance of enterprise security technologies including:
  • IDS/IPS
  • Endpoint Security System (ESS)
  • ACAS
  • Network perimeter defense tools
  • Traffic monitoring and forensic systems
  • Penetration testing solutions
  • SIEM tools
  • Ensure performance, tuning, and configuration are optimized and aligned with Zero Trust architecture.
  • Security Audits & Compliance
  • Perform audits on servers, workstations, network devices, and enclave infrastructure.
  • Ensure compliance with:
  • DoDI 8500.01 (Cybersecurity)
  • DoDI 8510.01 (RMF)
  • DoDD 8140.01
  • DISA STIGs
  • IAVA requirements
  • CJCSM 6510.01
  • JFHQ-DODIN and U.S. Cyber Command directives
  • Conduct Security Readiness Reviews (SRRs) and validate secure configurations.
  • Cybersecurity Program Execution
  • Support the development and execution of a Cybersecurity Compliance Plan ensuring confidentiality, integrity, and availability (CIA) of Government systems.
  • Participate in continuous monitoring and scoring programs including CMRS, Cyber Threat Score, Cyber Top 10, etc.
  • Documentation & Reporting
  • Develop and maintain:
  • POA&Ms
  • AORs
  • Security Override Letters
  • Operational reports
  • Incident summaries
  • Vulnerability analysis reports
  • Ensure timely reporting and corrective action planning for all non-compliance findings.
  • Change Control & Configuration Management
  • Enforce strict change control procedures to prevent unauthorized system, network, and application changes.
  • Ensure compliance with DoD-approved ports, protocols, and services (PPS) configurations.
  • Emerging Technology & Continuous Improvement
  • Evaluate emerging technologies and recommend improvements to operational processes, monitoring capabilities, and threat detection techniques.
  • Develop advanced operating procedures, troubleshooting guides, installation guides, and security documentation.
  • Functional Areas Supported
  • The CSSP 24/7 Operations Team Lead oversees or contributes to the following functions:
  • Security Infrastructure Support Services
  • Security Event Monitoring & Analysis
  • Cybersecurity Incident Response
  • Audit Support & Compliance Guidance
  • Security Analysis & Reporting
  • Cybersecurity Policy Review
  • Information Assurance Vulnerability Management
  • Mission Cloud & On-Premises Security Operations
  • Emerging Technology & Process Improvement
  • Cyber Program Operations & Planning
  •  Desired Skills & Competencies
  • Expert understanding of DoD cyber defense, enterprise security tools, and mission operations.
  • Demonstrated ability to lead high-tempo cyber operations teams in a 24/7 environment.
  • Strong communication skills to interface with senior Government leadership.
  • Ability to balance mission urgency with compliance and structured processes.
  • Advanced knowledge of SIEM, IDS/IPS, ESS, ACAS, STIGs, Zero Trust, and enterprise security architecture.

Education & Experience

  • Minimum Education
  • Bachelor’s degree in a related field.
  • Graduate-level degree preferred.
  • Equivalent experience and industry certifications may substitute for formal education.
  • Minimum General Experience
  • Ten (10) years of experience in Information Technology.
  • At least eight (8) years of experience as a Security Administrator or in a similar technical role, or a closely related IT discipline involving oversight of large, complex, multi-site programs.

Certifications

  • CISSP or equivalent required
  • Information Assurance Technical (IAT) II required
  • Computing Environment (CE) certification relevant to Microsoft, Linux, Cloud, or other privileged access technologies (required)
  • ITIL Required
  • Must maintain all mandatory certifications

Security Clearance

  • Must be a U.S. Citizen.
  • Selective Service registration required (if applicable).
  • Top Secret Security Clearance required
  • Must maintain fitness and eligibility for national security positions

Other (Travel, Work Environment, DoD 8570 Requirements, Administrative Notes, etc.)

  • Onsite at customer location
Computer World Services is an affirmative action and equal employment opportunity employer. Current employees and/or qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, disability, protected veteran status, genetic information or any other characteristic protected by local, state, or federal laws, rules, or regulations.
Computer World Services is committed to the full inclusion of all qualified individuals. As part of this commitment, Computer World Services will ensure that individuals with disabilities (IWD) are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact Human Resources at [email protected]
California Water Service
California Water Service

0 applies

0 views

There are more than 50,000 engineering jobs:

Subscribe to membership and unlock all jobs

Engineering Jobs

60,000+ jobs from 4,500+ well-funded companies

Updated Daily

New jobs are added every day as companies post them

Refined Search

Use filters like skill, location, etc to narrow results

Become a member

🥳🥳🥳 452 happy customers and counting...

Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.

To try it out

For active job seekers

For those who are passive looking

Cancel anytime

Frequently Asked Questions

  • We prioritize job seekers as our customers, unlike bigger job sites, by charging a small fee to provide them with curated access to the best companies and up-to-date jobs. This focus allows us to deliver a more personalized and effective job search experience.
  • We've got over 200,000 jobs from 15,000+ vetted companies. No fake or sleazy jobs here!
  • We aggregate jobs from 15,000+ companies' career pages, so you can be sure that you're getting the most up-to-date and relevant jobs.
  • We're the only job board *for* software engineers, *by* software engineers… in case you needed a reminder! We add thousands of new jobs daily and offer powerful search filters just for you. 🛠️
  • Every single hour! We add 2,000-3,000 new jobs daily, so you'll always have fresh opportunities. 🚀
  • Typically, job searches take 3-6 months. EchoJobs helps you spend more time applying and less time hunting. 🎯
  • Check daily! We're always updating with new jobs. Set up job alerts for even quicker access. 📅

What Fellow Engineers Say