Defensive Cybersecurity Operations Lead

General information

Description & Requirements

MANTECH seeks a motivated, career and customer-oriented Defensive Cybersecurity Operations (DCM) Lead to join our team in Doral, FL.
 

Responsibilities include but are not limited to:

• Leads and matures the organization’s defensive cybersecurity posture as a hands-on leader who excels at both strategic planning and tactical execution.

• Develops and implements a comprehensive defensive cybersecurity strategy aligned with industry best practices (e.g., NIST Cybersecurity Framework, CIS Controls). This includes defining security architecture, selecting security tools, and establishing Incident Response Plans.

• Proactively monitors threat landscapes, analyzes threat intelligence, and conducts threat hunting activities to identify and mitigate potential threats before they can impact the organization. They also oversee the organization’s Security Information and Event Management (SIEM) system and other security monitoring tools.

• Leads incident response efforts, including containment, eradication, recovery, and post-incident analysis. This includes developing and maintaining incident response playbooks. They also establish and manage a thorough vulnerability management program, including regular vulnerability scanning, penetration testing, and remediation tracking.

• Contributes to the design and implementation of secure IT architectures and evaluates and recommends security solutions to address identified vulnerabilities and improve security posture. They also develop and deliver security awareness training programs to educate employees about cybersecurity best practices and promote a security-conscious culture.

• Provides technical leadership and mentorship to other members of the Security Team, fosters a collaborative and high-performing team environment, and regularly reports on the organization’s security posture, including key metrics and trends, to senior management. They also ensure compliance with relevant industry regulations and security frameworks (e.g., HIPAA, PCI DSS, GDPR) and support internal and external audits related to cybersecurity.

Minimum Qualifications:

• BA/BS degree in Computer Science, Cybersecurity or a related field or 4 years of additional experience in lieu of degree.

• 12+ years of experience with 7+ years of position-specific relevant experience.

• Deep understanding of cybersecurity concepts, principles, and best practices.

• Extensive experience with security monitoring tools (e.g., SIEM, IDS/IPS), vulnerability management tools, and incident response methodologies. Strong knowledge of network security, endpoint security, and cloud security.

• Experience with threat intelligence platforms and threat hunting techniques.

• Familiarity with relevant industry regulations and security frameworks (e.g., NIST, CIS, ISO 27001).

• Excellent analytical, problem-solving, and communication skills. Strong leadership and team management skills.

Desired Qualifications:

• Master’s degree in Computer Science, Cybersecurity, or a related field.

• Experience with scripting languages (e.g., Python, PowerShell), cloud security platforms (e.g., AWS, Azure, GCP), and DevSecOps practices. Relevant certifications (e.g., CISSP, CISM, SANS GIAC).

• Experience at a DoD Combatant Command (e.g., SOUTHCOM, NORTHCOM, CENTCOM, CYBERCOM, INDOPACOM, EUCOM, AFRICOM, STRATCOM, TRANSCOM, SOCOM, SPACECOM) or a component is desired.

Clearance Requirements:

• Must have a current and active Secret security clearance

Physical Requirements:

• The person in this position must be able to remain in a stationary position 50% of the time. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.