Cyber Security Operations Specialist, mid level

ABOUT SITEC

SITEC is an employee and customer focused Information Technology and Professional Services Firm specializing in design, development, and delivery of state-of-the-art technology solutions, as well as cybersecurity, software and systems engineering services. SITEC provides support services as required for continuous operation of the Software Support Activity Software Production Facilities including complete lifecycle services for our customers platforms.

POSITION OVERVIEW

We are seeking a skilled CSOC Tier 3 Incident Response Specialist to provide 24x7x365 support in the coordination, containment, eradication, and recovery of cybersecurity incidents. As a critical member of the Cybersecurity Operations Center (CSOC), you will analyze malware, manage forensic artifacts, and participate in continuous training to enhance response capabilities. During active cyber incidents, you will take direct orders from the Government CIRT Commander, ensuring timely and effective resolution.

PRIMARY RESPONSIBILITIES

Execute and document actions during cybersecurity incident response, including containment measures, IP and domain blocking, and user account disabling. Coordinate with Counterintelligence, law enforcement, and other stakeholders for advanced incident investigation and triage. Produce and deliver security incident reports, categorize incidents, and ensure proper containment and eradication. De-conflict blue/red team activities during incidents and manage recovery efforts. Develop incident response documentation, including timelines, briefings, and reports for stakeholders. Perform digital media analysis, malware analysis, and create custom scripts to aid in incident response and analysis. Generate and update reports in JIMS, ICMS, and other authorized systems as required by the Government. Collaborate with other teams to ensure a comprehensive response and recovery strategy. Conduct quality control reviews of CSOC Tier 2 tickets to maintain a high standard of incident analysis and documentation.

REQUIREMENTS

High School Diploma/GED with minimum eight (8) years relevant experience

Associates Degree with minimum six (6) years relevant experience

Bachelors Degree with minimum four (4) years relevant experience

Masters Degree with minimum two (2) years relevant experience

Certification compliant with DoDD 8140.01 and DoD 8570.01-M IAT Level II and CSSP Incident Responder within six months of start. Strong experience in malware analysis, forensic artifact handling, and incident response processes. Ability to coordinate with cross-functional teams and stakeholders during incident triage and recovery efforts. This role is critical to maintaining the security and integrity of Government networks and requires a proactive, detail-oriented professional capable of handling high-pressure situations and complex incidents.