Federal Space Cyber Operations Support
Colorado Springs, Colorado, United States of America
Full Time
1 hour ago
No H1B
Key skills
CloudCyber SecurityKubernetesLinuxPythonData EngineeringAnalyticsCI/CD
About this role
Role Overview
- Develop, evaluate and document cyber weapons & tactics; run/brief Tactics Review Boards; author TacSOPs/TacBULs; support operational planning and mission rehearsals.
- Perform posture assessments; design sensor/TAP/EDR plans; integrate DCW tools into mission systems; support Configuration Control Boards and change requests.
- Produce timely threat intelligence products, I&W, IOC/IOA creation, threat actor profiling, and participate in daily intel syncs and exercises.
- Deliver and develop qualification and upgrade training courses; create scenarios for cyber ranges/OTTI; maintain course material and MTL alignment.
- Design, build and maintain virtual training range environments, scenario construction, MSEL development, and range instrumentation.
- Support incident response playbooks, forensics, hunt missions, AARs and remediation recommendations during exercises and real‑world events.
- Develop analytics from IOC telemetry; produce YARA/STIX output; automate detection correlations and dashboarding for I&W.
- Support integration and sustainment of DCW toolsets, CI/CD for rule deployments, and automation of telemetry ingestion and test harnesses.
Requirements
- 6+ years operational cyber/defensive/offensive experience; military or equivalent operational background preferred; strong writing and briefing skills.
- 4+ years engineering/IT/cybersecurity experience with networking, logging, EDR, SOAR and cloud/OT exposure.
- 3–6+ years in cyber threat intel, SOC/CTI roles; familiarity with MITRE ATT&CK, STIX/TAXII, YARA, and threat intel tooling.
- Training/instruction experience plus deep technical skills in cyber operations and tools; formal training development experience preferred.
- Virtualization, network emulation, range software, and lab automation background; experience with LMS preferred.
- SOC/IR experience, digital forensics, endpoint detection and response operation experience.
- Data engineering, scripting (Python), SIEM/ELK, familiarity with STIX/TAXII and threat intel exchange formats.
- Linux, containers, orchestration (Kubernetes), automation scripts, and secure build pipelines.
- Citizenship: Must be a US citizen
- Clearance: Must have and be able to maintain a Top Secret w/ SCI Eligibility
- Certification: CySA, Sec+, CISSP, GIAC or equivalent (at least one)
- Education: BA or BS degree in one of the following fields: Cyber, Information Systems, Engineering, Computer Science, or an educational equivalent.
- Years of Experience: 3 Years+ of relevant experience in respective domain
Tech Stack
- Cloud
- Cyber Security
- Kubernetes
- Linux
- Python
Benefits
- None specified