Cyber Operations Job Description
Cyber operations
provides technical leadership for a team of Cyber Security experts to perform network vulnerability assessments, network penetration testing, red teaming, security operations, blue teaming, and hunt missions.
Cyber Operations Duties & Responsibilities
To write an effective cyber operations job description, begin by listing detailed duties, responsibilities and expectations. We have included cyber operations job description templates that you can modify and use.
Sample responsibilities for this position include:
Execute intrusion detection monitoring and incident response and management processes and procedures IAW DoD policy and USTRANSCOM direction
Maintain current documentation on intrusion detection monitoring and incident management processes and procedures and provide the following deliverable documents to the government IAW the assigned suspense dates
Execute cyber threat analysis processes and procedures IAW DoD policy and USTRANSCOM Government direction
Maintain current documentation on cyber threat analysis processes and procedures and provide the following deliverable documents to the government IAW the assigned suspense dates
Establish the line of business threat intelligence consumption and review process
Prepare audit reports that identify technical and procedural findings and provide recommended remediation strategies/solutions for controls operating by this team
A Specialist must be capable of working independently with minimal management guidance and support
The person must be able to quickly and effectively comprehend and understand a problem and take immediate corrective actions
Assist in providing advice to tactical units in the planning of Cyber Warfare activities
Assist and advise units to investigate computer security incidents in order to enable mitigation of network vulnerabilities
Cyber Operations Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Cyber Operations
List any licenses or certifications required by the position: IAT, CISSP, SANS, III, II, IAM, CSSP, CISM, OS, CCISO
Education for Cyber Operations
Typically a job would require a certain level of education.
Employers hiring for the cyber operations job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Technical, Education, Computer Engineering, Information Technology, Information Systems, Cyber Security, Information Security, Military
Skills for Cyber Operations
Desired skills for cyber operations include:
Commercial and open source tools
Scripts
Vulnerability assessments and penetration testing using manual testing techniques
Offensive cyber operations
Procedures
Juniper
CIS
Checkpoint
Cisco
Microsoft
Desired experience for cyber operations includes:
The ability to manage multiple assignments and priorities and to effectively adapt to rapidly changing technology and apply it to business needs
Bachelor’s Degree in Information Systems, Computer Science, or related
An understanding of electronic investigation and forensic processes and methodologies including experience with reviewing raw log files for analysis and data correlation
Infosec certifications a plus
Ability to work both independently part of a geographically dispersed integrated team
MA or MS degree in IT or a Technical Management field
Cyber Operations Examples
1
Cyber Operations Job Description
Job Description Example
Our company is growing rapidly and is hiring for a cyber operations. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for cyber operations
- Identify unauthorized activity against USTRANSCOM information systems and networks on NIPRNet and SIPRNet and initiate appropriate incident response actions
- Perform installation of intrusion detection monitoring and incident management tools IAW USTRANSCOM processes, including requesting/coordinating hardware/software procurement (including lifecycle upgrades)
- Perform the day-to-day mission execution of the intrusion detection monitoring and incident management and response activity
- Perform the day-to-day operation and maintenance of the intrusion detection monitoring and incident management tool suite
- Document changes to intrusion detection monitoring and incident management tools (e.g., software installs, patching, software configuration changes, ) in accordance with Change Management policies and provide configuration management data on all of its managed systems according to the schedule and format directed by the Government
- Collect and provide the Government with monthly metrics on intrusion detection monitoring and incident management activity
- Provide cyber threat analysis support to USTRANSCOM’s Cyber Security Service Provider (CSP) and Joint Cyber Center (JCC) Defensive Cyber Operations (DCO) missions on-site at Scott AFB during normal duty hours and on-call after duty hours with a one (1) hour response time to begin work
- Collect, analyze, and report on security events that affect the operation of USTRANSCOM information systems that are hosted within USTRANSCOM’s and CSP subscriber enclaves, and for systems hosted elsewhere for which USTRANSCOM is the authorizing official
- Collect, analyze, and report security events that affect the operation of USTRANSCOM’s mission environment and identified Cyber-Key Terrain (C-KT)
- Collect and provide the Government with monthly metrics on cyber threat analysis activity
Qualifications for cyber operations
- CISM and CISSP designations are mandatory
- Extensive knowledge of networking protocols
- Detailed Internet, networking, and computer knowledge (Software & Hardware)
- Manage setting up lab for test event initiation, recovery and roll-back
- Minimum 2 years of experience building and supervising a Test Lab
- Must be proficient in developing and presenting, both verbally and in writing, highly technical information and presentations to non-technical audiences at all levels of the organization
2
Cyber Operations Job Description
Job Description Example
Our company is hiring for a cyber operations. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for cyber operations
- Drive business into DISA Operations Centers its emerging new mission Joint Service Provider (JSP)
- Experience leading a SOC function in a large organisation
- Demonstrable experience of responding to a wide range of scenarios in which you have overseen the identification and response to specific threats
- A detailed knowledge of the regulatory landscape we operate in, the DPA and preferably GDPR, ISO27001, PCI DSS and NIST
- A formal qualification, such as CISSP, CISM, CEH, GIAC or equivalent experience
- Working with the Head of Cyber to run the operational teams that deliver Nationwide’s operational Cyber Security capability
- Contributing to deep and regular Cyber Security risk and threat assessments
- Leading several busy teams of technical subject matter experts in the identification and response to threats
- Sponsoring a Cyber Security Programme to ensure a that new and existing controls are implemented effectively
- Communicating effectively with a wide range of stakeholders, including business Communities and suppliers
Qualifications for cyber operations
- Bachelor’s Degree & 10 to 12 years of related experience
- Extensive Background in computing including cyber operations
- Experience with both offensive and defensive Cyber operations
- Project Management / Team leadership experience (preferred)
- Experience performing cyber vulnerability assessments and cyber test planning for acquisition programs
- Knowledgeable in the technical areas of computer networking, computer hardware, and software development
3
Cyber Operations Job Description
Job Description Example
Our innovative and growing company is looking for a cyber operations. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for cyber operations
- Technical direction and vision
- Identifying and integrating research
- Senior customer engagement
- Performing quality assurance of day to day activities deliverables
- Develops test plans and tests software security mechanisms for operational effectiveness and deployment readiness
- Delivery Assurance (through secure coding practices, penetration testing, and developer training)
- Technology Risk and Audit Management
- Collect data to develop and report metrics that are approved by Air Force/DoD customers
- Provide input to monthly network services outage report that should include network service outages, their duration, number of users impacted
- Provide real-time system operational statistics for proactive management of network
Qualifications for cyber operations
- Experience must include monitoring multiple security tools (SIEM, DLP, IAM tools), maintaining security platforms and supporting overall security program
- Able to articulate cyber security related issues to program management
- Experience with at least one of the following SME instructor
- DoDI 8570.1M
- IAT Level II Commercial Cyber Certification
- BA or BS degree in Instructional Systems Design, Course Development, or an SME instructor
4
Cyber Operations Job Description
Job Description Example
Our company is growing rapidly and is hiring for a cyber operations. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for cyber operations
- Design and manage processes and procedures, playbooks and metrics to ensure team participation and continuously evaluate effectiveness of current operations
- Ensure quality of practice meets contractual requirements, legal obligations and policy and procedures
- Assist with the Incident Management planning for CSO and help develop insights and procedures into effectiveness and efficiency of the current Incident Management processes
- Champion new strategies to maintain consistency or improve the quality of the handling of incidents, escalation procedures and related disciplines
- Oversee security analysis, administration and remediation procedures, workflows and tasks
- Develop processes and communication strategies to ensure a timely and responsive approach to both customer reported and incidents identified internally
- Act as escalation manager when issues severely impact an environment, driving problems to resolution and managing the communications within the support team and with internal customers
- Actively monitor for possible escalating situations to prevent potential escalations
- The position will be responsible for the Managed Security Services and systems
- Root cause analysis, make and implement recommendations on improvements
Qualifications for cyber operations
- Applicant will need to be an organized, self-starter that is process oriented and able to adapt to a newly defined and fast paced, ever-changing environment
- Must currently possess or be able to obtain a TS/SCI with Poly security clearance
- Instructor Certification or ability to obtain
- Knowledge and experience with various IT governance and control frameworks (NIST, COBIT, ISO, ITIL)
- Bachelors Degree with at least 4 years of cyber training experience
- IAT Level III and IAM Level II Compliant Certifications required within 9 months of starting
5
Cyber Operations Job Description
Job Description Example
Our company is growing rapidly and is looking to fill the role of cyber operations. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for cyber operations
- Perform client-facing relationship development with hiring managers
- Conduct full-life cycle recruiting in support of our intelligence community programs—source, prescreen, interview, extend and negotiate offers, and facilitate onboarding
- Utilize and exploit a variety of resources to target highly-cleared candidates with specialized technical expertise—social media and web-based initiatives, job fairs, networking and commonly used job boards
- Managing and directing SOC operation
- Manpower staffing and shift planning
- Performance management of SOC operations
- Development, maintenance and enhancement of SOC processes
- Preparation of SOC management and statistical reports
- Management of security incident response
- Staff supervision and administration
Qualifications for cyber operations
- Level operating system through High-level enclave comprehension and develop architectural and implementation options of CND equipment with a focus on globally distributed SEIMs within the scope of sometimes conflicting requirements
- Problem solving and negotiations
- Ten (10) years or more experience as a Cyberspace Operations Engineer or related function with a Bachelor’s Degree from an accredited college or university in Computer Science, Cybersecurity, Computer Engineering, or related discipline, or seven (7) years of experience with a Masters Degree
- Minimum DoD 8140/DOD 8570 IAM Level III Certification (CISM, CISSP, GSCL)
- BA or BS degree and 7+ years of experience in an instructor SME related area, including Internet Protocol (IP) networks, wired and wireless networks, telephony networks, Industrial Control System (ICS) networks, space networking and control, Integrated Air and Missile Defense Systems (IAMDS) networks, Tactical Data Link (TDL) networking, or network and signals intelligence
- Graduate of an Air Force or Joint Cyber Operations Formal Training course or ability to pass applicable courses taught by the IO and Cyber FTU