Defensive Cyber Operations (DCO) SME

Job Summary: 

Serve as a key member of the Defensive Cyber Operations (DCO) team, providing expert-level support in intrusion detection, cyber threat analysis, and incident response to ensure the secure operation and sustainment of Global Positioning System (GPS) capabilities. This role involves active collaboration with cybersecurity stakeholders, supporting operational decision-making, and ensuring timely mitigation of cyber incidents in accordance with the 2 NWS Incident Response Plan.

Key Responsibilities:

Duties and responsibilities include, but are not limited to:

• Deliver in-depth intrusion analysis, threat correlation, and cyber intelligence briefings to support GPS mission operations and sustainment activities.
• Act as a technical advisor during cyber incidents, providing critical support throughout all phases of the incident response lifecycle—identification, containment, eradication, recovery, and post-incident analysis.
• Coordinate with mission assurance teams to ensure risks are appropriately mitigated, isolated, or removed, enabling timely restoration of full operational capability.
• Execute incident handling procedures and ensure strict adherence to cybersecurity protocols outlined in the 2 NWS Incident Response Plan and other relevant frameworks.
• Support and lead cybersecurity technical meetings, working groups, and integrated product teams to enhance operational resilience and security posture.
• Maintain up-to-date knowledge of evolving threats, vulnerabilities, and defense tactics to support proactive cyber defense measures and continuous mission assurance.
• Collaborate with other DCO and cybersecurity professionals to analyze logs, identify indicators of compromise (IOCs), and recommend appropriate course of action.
• Contribute to the development and refinement of cybersecurity processes, documentation, and standard operating procedures (SOPs).

Required Qualifications:

• In-depth knowledge of cyber threat analysis, network forensics, and incident response processes.
• Experience supporting cybersecurity operations in a DoD or critical infrastructure environment.
• Strong understanding of cybersecurity frameworks, including NIST, DoD RMF, and DoDI 8500-series.
• Proven ability to present complex technical data to non-technical stakeholders in support of operational decision-making.

Preferred Qualifications:

• Experience supporting GPS or space-based systems.
• Cybersecurity certifications (e.g., CISSP, CEH, GCIA, GCIH, Security+).

Education/Experience:

• 5+ years of relevant experience
• Bachelor’s degree

Clearance Requirement: 

• Active Secret security clearance 

Salary Note:

• In compliance with Colorado’s Equal Pay for Equal Work Act, the salary range for this role is based on education, experience, and responsibilities. 

ITS, LLC. is an equal-opportunity employer to include veterans and individuals with disabilities. 

U.S. Citizenship is required.