Cyber Operations Engineer - TS/SCI Clearance

We are seeking a highly skilled Cyber Operations Engineer with an active TS/SCI level clearance to join our cybersecurity team. This role is critical in ensuring the security, availability, and integrity of our systems by proactively identifying threats, analyzing vulnerabilities, and executing incident response activities. This data will be used to assist in the building of cyber IT solutions. The ideal candidate will have experience in security operations, threat detection, network defense, and a strong understanding of cybersecurity frameworks.

Key Responsibilities:

• Monitor, analyze, and respond to security events and incidents in real time.
• Operate and maintain cybersecurity tools and platforms (SIEM, EDR, IDS/IPS, etc.).
• Conduct threat hunting and proactively search for indicators of compromise (IOCs).
• Perform digital forensics and root cause analysis during and after security events.
• Develop and maintain incident response playbooks and standard operating procedures.
• Collaborate with IT and DevOps teams to implement secure configurations and hardening practices.
• Analyze logs and data from various sources (firewalls, endpoint protection, network devices).
• Research emerging threats, vulnerabilities, and exploits to improve security posture.
• Assist in vulnerability management and penetration testing coordination.
• Support compliance initiatives (e.g., NIST, ISO 27001, SOC 2, or industry-specific standards).
• Document findings and create detailed reports for technical and non-technical stakeholders.

Required Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience
• 3+ years of experience in cybersecurity or network/system administration with a focus on splunk.
• Active TS/SCI level clearance ( able to obtain CI Poly)

Preferred Qualifications:

• Splunk certifications (e.g., Splunk Core Certified Power User, Admin, Architect, or Developer).
• Experience with cloud platforms (AWS, Azure, GCP) and their integrations with Splunk.
• Familiarity with CI/CD pipelines and DevOps monitoring.
• Knowledge of government data compliance and regulatory standards

Work Requirements