Computer Network Defense Lead

Overview

We are seeking an experienced Computer Network Defense Lead to join a future program supporting an Intelligence customer and their National Media Exploitation Center (NMEC) enterprise. The Computer Network Defense (CND) Lead will be responsible for overseeing and executing comprehensive cybersecurity defense and monitoring activities for the enterprise. This role requires strong technical expertise to lead incident detection and response efforts, manage host and network-based security systems, and provide real-time situational awareness of threats, vulnerabilities, and security posture within the DOMEX enterprise. The CND Lead will play a critical role in protecting NMEC’s IT infrastructure from both external and internal threats.

Responsibilities

• Serve as the technical lead for computer network defense operations, including oversight of vulnerability scanning, incident response, and real-time monitoring.
• Administer and respond to security events generated by Host-Based Security Systems (HBSS), Intrusion Detection/Prevention Systems (IDS/IPS), and Security Information and Event Management (SIEM) platforms.
• Conduct regular security assessments using tools such as ACAS and HBSS to identify and mitigate vulnerabilities.
• Defend and protect the DOMEX enterprise against cyberattacks, insider threats, and both intentional and unintentional malicious activity.
• Provide timely and accurate situational awareness of the organization’s cybersecurity posture to leadership and stakeholders.
• Retrieve, analyze, and correlate SIEM data to identify actionable trends and anomalies; generate insightful security reports using SIEM-native tools and data visualization platforms such as Tableau.
• Deliver both scheduled and ad-hoc reports detailing findings related to IA, CM, and CND operations.
• Strengthen overall enterprise cyber defense readiness by developing and maintaining defensive strategies and response protocols.
• Mentor junior CND analysts and coordinate with IT, IA, and policy teams to ensure aligned cybersecurity operations.

OPERATING HOURS AND EXPECTATIONS:

• This position anticipates onsite work with standard work hours, Monday-Friday. 

TRAVEL:

• No travel is currently anticipated for this role.

Qualifications

CLEARANCE:

• Active Top Secret with SCI and CI Polygraph clearance required at the time of application for initial consideration. *This position is not open to clearance sponsorship, upgrade, or reactivation.*

EDUCATION:

• Bachelor’s degree in Engineering, Logistics, Systems Engineering, or a related technical field; desired. Applicable experience may also be considered in lieu of a degree.

CERTIFICATION(S):

• DoD 8570 IAT Level III certification (e.g., CISSP, CASP+, CISA, or equivalent).

REQUIRED SKILLS AND EXPERIENCE:

• 5+ years of hands-on experience in cybersecurity, with specific focus on network defense, threat analysis, and incident response within a DoD or IC environment.

• Proficiency in using and administering ACAS, HBSS, SIEM platforms, and IDS/IPS tools.

• Advanced knowledge of log aggregation, event correlation, and incident response best practices.

• Experience with Tableau or similar data visualization tools for reporting and analysis.

• Ability to interpret complex security data and translate findings into clear, actionable intelligence.
• Excellent verbal and written communication skills to convey security posture updates, incidents, and risk assessments to technical and non-technical audiences.

DESIRED SKILLS AND EXPERIENCE:

• Experience supporting cybersecurity efforts in classified or sensitive environments.
• Familiarity with NIST SP 800-53 and Risk Management Framework (RMF).
• Experience in Insider Threat detection and mitigation strategies.
• Prior leadership or mentorship experience in a CND or SOC environment.

Benefits

WHAT WE OFFER:

At CIS Secure and its associated companies, Intrepid Solutions and Services and Darkblade Systems, we believe in promoting fair and transparent pay practices. We are committed to disclosing the compensation range for transparency and to set clear expectations for all applicants for this posting. This range represents the anticipated low and high end of the base salary for the advertised job, promotion, or transfer opportunity. Please note that the pay range provided is a good faith estimate for the position at the time of posting. The actual salary offered may vary based on various factors including but not limited to relevant experience, knowledge, skills and abilities, education, geographic location, as well as internal equity, and alignment to market data.Job Type: Full-time (onsite)

Pay Range: $150,000.00 - $200,000.00 per year

Benefits:

• 401(k) 
• Dental insurance
• Medical insurance
• Health Savings Account option
• Flexible Spending
• Vision insurance
• Life and Disability Insurance
• Ancillary offerings (Hospital Indemnity, Accident, Critical Illness, Pet Insurance)
• Paid Time Off
• Holiday pay

CIS Secure is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.