Cyber Operator - Host
Joint-Base San Antonio
Full Time Senior-level / Expert Clearance required USD 63K - 147K *
Centuria
Centuria offers customer-first consulting & government contracting services. Discover our capabilities & achievements. Contact us for exceptional service.
Title: Cyber Operator (CPT)Location: Joint Base San Antonio, TXClearance: TS/SCIProgram: DCRIOS Company Description:Centuria, a Service-Disabled Veteran-Owned Small Business (SDVOSB), has been delivering IT, Engineering, and Scientific solutions to the Federal Government since 2002. The Washington Post has recognized Centuria Corporation as one of the top workplaces in the DC Metro area for 2024. This award celebrates companies that make the world a better place to work together by prioritizing a people-centered culture and giving employees a voice.
Job Responsibilities:Being a cybersecurity operator supporting the 67th Cyber Wing (67 CW), tasked with hunt and clear missions is a dynamic and high-stakes role that combines cutting-edge technology with tactical precision. These elite professionals conduct cyber threat hunting - navigating complex military and allied networks, uncovering hidden vulnerabilities, performing tactical forensic analysis, and identifying bad state and non-state actors. This is a small and unique team that offers high end cybersecurity professionals with the opportunity to significantly impact national security.
· Serve on a Cyber Protection Team (CPT) in a Cyber Security Host Analyst position. · Conduct cyber threat hunting, network navigation, tactical forensic analysis, forensic collection of digital artifacts and other valuable operational data, and when directed, execute operations in support of defensive initiatives.· Provide support for persistent monitoring of all designated enclaves and systems.· Interpret, analyze, and document findings in reports in accordance with computer network directives, including initiating, responding, and reporting discovered events.· Manage and execute first-level responses and address reported or detected incidents. Job Requirements:· TS/SCI – Eligible; Top Secret with the ability for SCI nomination· Two (2) or more years’ experience in cyber security required. 5+ years of experience in cyber security is desired.· DoD 8570 IAT Level III certification (current) o CompTIA Advanced Security Practitioner+ Continuing Education (CASP+ CE), Cisco Certified Network Professional (CCNP) Security, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP) (or Associate), GIAC Certified Enterprise Defender (GCED), GIAC Certified Incident Handler (GCIH), or Certified Cloud Security Professional (CCSP)· General knowledge of physical computer components and architectures, including the functions of computer domains, directory services, various components and peripherals, basic programming concepts, assembly codes, TCP/IP, OSI models, underlying networking protocols (e.g., DNS, ARP, etc.), security hardware and software· Strong knowledge of Windows Fundamentals and/or UNIX/Linux fundamentals, and adversary Tactics, Techniques, and Procedures (TTPs), such as initial access, credential access, privilege escalation, persistence, lateral movement, and exfiltration· Proficient in writing, editing, executing scripts on Windows, UNIX/Linux systems· Experience with toolsets such as the Elastic Stack, Arkime, Zeek, Wireshark, Metasploit, tcpdump, NMap, Nessus, Snort, EnCase, and Forensic Toolkit· General knowledge of cyber security frameworks, such as the Cyber Kill Chain, MITRE ATT&CK, and the NIST 800 series· Proficient in collecting and analyzing digital data, recording detailed notes, and documenting findings in reports· Candidate must be self-motivated and able to perform with minimal supervision· Travel may be required up to 25%· Must successfully complete, and maintain, mission qualification requirements· Positions available at JBSA-Lackland, Texas and at Scott AFB, Illinois Preferred Skills:· Host – Operating system certification (i.e., Linux+, Windows Server, GCIH, etc.)· Knowledge of virtualization concepts, technologies and tools, such as VMware/Virtual Box, Docker, Kubernetes, and Ceph· Familiarity with Cloud Computing concepts, technologies, and tools, such as AWS, Azure, and Google Cloud· Experience programming in C, C++, C#, Ruby, Perl, Python, SQL
Job Responsibilities:Being a cybersecurity operator supporting the 67th Cyber Wing (67 CW), tasked with hunt and clear missions is a dynamic and high-stakes role that combines cutting-edge technology with tactical precision. These elite professionals conduct cyber threat hunting - navigating complex military and allied networks, uncovering hidden vulnerabilities, performing tactical forensic analysis, and identifying bad state and non-state actors. This is a small and unique team that offers high end cybersecurity professionals with the opportunity to significantly impact national security.
· Serve on a Cyber Protection Team (CPT) in a Cyber Security Host Analyst position. · Conduct cyber threat hunting, network navigation, tactical forensic analysis, forensic collection of digital artifacts and other valuable operational data, and when directed, execute operations in support of defensive initiatives.· Provide support for persistent monitoring of all designated enclaves and systems.· Interpret, analyze, and document findings in reports in accordance with computer network directives, including initiating, responding, and reporting discovered events.· Manage and execute first-level responses and address reported or detected incidents. Job Requirements:· TS/SCI – Eligible; Top Secret with the ability for SCI nomination· Two (2) or more years’ experience in cyber security required. 5+ years of experience in cyber security is desired.· DoD 8570 IAT Level III certification (current) o CompTIA Advanced Security Practitioner+ Continuing Education (CASP+ CE), Cisco Certified Network Professional (CCNP) Security, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP) (or Associate), GIAC Certified Enterprise Defender (GCED), GIAC Certified Incident Handler (GCIH), or Certified Cloud Security Professional (CCSP)· General knowledge of physical computer components and architectures, including the functions of computer domains, directory services, various components and peripherals, basic programming concepts, assembly codes, TCP/IP, OSI models, underlying networking protocols (e.g., DNS, ARP, etc.), security hardware and software· Strong knowledge of Windows Fundamentals and/or UNIX/Linux fundamentals, and adversary Tactics, Techniques, and Procedures (TTPs), such as initial access, credential access, privilege escalation, persistence, lateral movement, and exfiltration· Proficient in writing, editing, executing scripts on Windows, UNIX/Linux systems· Experience with toolsets such as the Elastic Stack, Arkime, Zeek, Wireshark, Metasploit, tcpdump, NMap, Nessus, Snort, EnCase, and Forensic Toolkit· General knowledge of cyber security frameworks, such as the Cyber Kill Chain, MITRE ATT&CK, and the NIST 800 series· Proficient in collecting and analyzing digital data, recording detailed notes, and documenting findings in reports· Candidate must be self-motivated and able to perform with minimal supervision· Travel may be required up to 25%· Must successfully complete, and maintain, mission qualification requirements· Positions available at JBSA-Lackland, Texas and at Scott AFB, Illinois Preferred Skills:· Host – Operating system certification (i.e., Linux+, Windows Server, GCIH, etc.)· Knowledge of virtualization concepts, technologies and tools, such as VMware/Virtual Box, Docker, Kubernetes, and Ceph· Familiarity with Cloud Computing concepts, technologies, and tools, such as AWS, Azure, and Google Cloud· Experience programming in C, C++, C#, Ruby, Perl, Python, SQL
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Tags: AWS Azure C CASP+ CCNP CCSP CISA CISSP Cloud CompTIA Cyber Kill Chain DNS Docker DoD DoDD 8570 EnCase GCED GCIH GCP GIAC Kubernetes Linux Metasploit MITRE ATT&CK Monitoring Nessus NIST Nmap Perl Python Ruby Snort SQL TCP/IP Top Secret TS/SCI TTPs UNIX VirtualBox VMware Vulnerabilities Windows
Perks/benefits: Team events
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Specialist jobsPenetration Tester jobsSenior Cyber Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsPrincipal Security Engineer jobsSenior Network Security Engineer jobsInformation System Security Officer jobsCloud Security Architect jobsChief Information Security Officer jobsSenior Penetration Tester jobsStaff Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsCybersecurity Consultant jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsThreat Intelligence Analyst jobs
SaaS jobsSDLC jobsMalware jobsEncryption jobsRMF jobsForensics jobsSQL jobsGDPR jobsIPS jobsSplunk jobsIDS jobsTop Secret jobsEDR jobsFinance jobsDoDD 8570 jobsTerraform jobsBash jobsITIL jobsOWASP jobsCRISC jobsUNIX jobsGIAC jobsDocker jobsCompTIA jobsIntrusion detection jobs
TCP/IP jobsBanking jobsSANS jobsThreat detection jobsData Analytics jobsActive Directory jobsPolygraph jobsCCSP jobsOSCP jobsClearance Required jobsCyber defense jobsVPN jobsIT infrastructure jobsJavaScript jobsSOC 2 jobsAnsible jobsSOX jobsDNS jobsSOAR jobsJira jobsGCIH jobsSecurity strategy jobsOracle jobsNIST 800-53 jobsCryptography jobs