← All verified jobs

Cybersecurity Service Provider (CSSP) Operations Team Lead

See all open roles at computer world services corp. (cws)

Ghost-risk verdict

Some ghost-posting signals

  • open for 201 days (90+ without a fill is a strong ghost signal)
  • 3359 open roles at this company in 30 days (mass-hiring blitz)
  • no salary disclosed (correlates with ghost postings)

How we score ghost risk →

See your fit for this role and apply with a truthfully tailored résumé.

See my fit, free

About the role

Key Tasks & Responsibilities

Operational Leadership

Lead, coordinate, and manage the 24/7 cyber operations team responsible for monitoring, detection, triage, and response across all network enclaves.

Serve as senior operational authority for active cyber events, incident escalation, and enterprise security actions.

Provide daily supervision, scheduling, and direction to CSSP operations staff in support of continuous monitoring requirements.

Maintain situational awareness of cyber threats, adversarial activity, and operational risk across the environment.

Provide expert-level technical direction, strategic advice, and operational guidance for all CSSP mission areas.

Lead operational planning, milestone development, risk assessments, and major technical decisions.

Oversee complex or mission-critical cybersecurity programs and ensure all technical requirements are met.

Interface with senior Government leadership for incident reporting, operational decisions, and program priorities.

Supervise junior staff and mentor technical team members.

Continuous Monitoring & Event Analysis

Oversee 24/7 security event monitoring, log correlation, anomaly detection, and analysis of alerts.

Ensure rapid detection of threats involving malware, unauthorized access, data exfiltration, insider activity, and network exploitation.

Utilize SIEM platforms (e.g., ArcSight) and IDS/IPS technologies for real-time analysis.

Incident Response & Reporting

Act as the central POC for Computer Emergency Response.

Lead incident investigations, containment, eradication, and recovery actions.

Provide internal and external incident reporting IAW DoD requirements.

Support DoD-CERT and JFHQ-DODIN direction during cyber events.

Vulnerability & Patch Management

Operate and manage enterprise vulnerability scanning platforms (ACAS).

Conduct monthly scans, IAVA processing, remediation tracking, and POA&M development.

Perform STIG compliance checks and secure baseline validation.

Security Infrastructure Support

Oversee the operation and maintenance of enterprise security technologies including:

IDS/IPS

Endpoint Security System (ESS)

ACAS

Network perimeter defense tools

Traffic monitoring and forensic systems

Penetration testing solutions

SIEM tools

Ensure performance, tuning, and configuration are optimized and aligned with Zero Trust architecture.

Security Audits & Compliance

Perform audits on servers, workstations, network devices, and enclave infrastructure.

Ensure compliance with:

DoDI 8500.01 (Cybersecurity)

DoDI 8510.01 (RMF)

DoDD 8140.01

DISA STIGs

IAVA requirements

CJCSM 6510.01

JFHQ-DODIN and U.S. Cyber Command directives

Conduct Security Readiness Reviews (SRRs) and validate secure configurations.

Cybersecurity Program Execution

Support the development and execution of a Cybersecurity Compliance Plan ensuring confidentiality, integrity, and availability (CIA) of Government systems.

Participate in continuous monitoring and scoring programs including CMRS, Cyber Threat Score, Cyber Top 10, etc.

Documentation & Reporting

Develop and maintain:

POA&Ms

AORs

Security Override Letters

Operational reports

Incident summaries

Vulnerability analysis reports

Ensure timely reporting and corrective action planning for all non-compliance findings.

Change Control & Configuration Management

Enforce strict change control procedures to prevent unauthorized system, network, and application changes.

Ensure compliance with DoD-approved ports, protocols, and services (PPS) configurations.

Emerging Technology & Continuous Improvement

Evaluate emerging technologies and recommend improvements to operational processes, monitoring capabilities, and threat detection techniques.

Develop advanced operating procedures, troubleshooting guides, installation guides, and security documentation.

Functional Areas Supported

The CSSP 24/7 Operations Team Lead oversees or contributes to the following functions:

Security Infrastructure Support Services

Security Event Monitoring & Analysis

Cybersecurity Incident Response

Audit Support & Compliance Guidance

Security Analysis & Reporting

Cybersecurity Policy Review

Information Assurance Vulnerability Management

Mission Cloud & On-Premises Security Operations

Emerging Technology & Process Improvement

Cyber Program Operations & Planning

Desired Skills & Competencies

Expert understanding of DoD cyber defense, enterprise security tools, and mission operations.

Demonstrated ability to lead high-tempo cyber operations teams in a 24/7 environment.

Strong communication skills to interface with senior Government leadership.

Ability to balance mission urgency with compliance and structured processes.

Stop applying to ghosts.

OyaPilot surfaces only verified, real jobs, scores your fit, and tailors your application truthfully.