The GSM-O II TN22 team has an opportunity for a current team member to move into a leadership position supporting cyber operations.
POSITION SUMMARY:
The Operations Leader provides daily leadership, direction, and guidance to a team responsible for delivering 24x7 cybersecurity monitoring services for Department of Defense networks. This role encompasses cyber threat intelligence analysis, correlation of actionable security events, network traffic analysis using raw packet data, and coordination of resources during incident response activities. The Operations Leader will also foster the professional development of team members and ensure consistent, transparent communication with operational leadership within a five-day 8-hour shift structure.
PRIMARY RESPONSIBILITIES:
- Lead a team of approximately 6-8 cybersecurity analysts, providing guidance and oversight in the following areas:
- Monitor, analyze, and correlate real-time DoD and open-source intelligence feeds to identify Indicators of Compromise (IOCs), actively integrating threat intelligence into security sensors and SIEMs to proactively counter emerging threats.
- Triage and investigate security alerts across customer networks generated from endpoints, IDS/IPS, NetFlow, VPC Flows, raw packet data, and cloud-native or custom monitoring sensors to rapidly isolate malicious actors.
- Correlate security events and analyze extensive log files across diverse datasets within multi-cloud environments (AWS, GCP, Oracle) to identify, prioritize, and investigate potential compromises.
- Coordinate and collaborate closely with incident response teams to rapidly contain and eradicate threats across hybrid and cloud-hosted environments.
- Technical Reporting & Incident Escalation: Author detailed technical investigation reports outlining incident findings and report critical security events to customers and USCYBERCOM to ensure a timely and coordinated national defense response.
- Team Leadership & Development:
- Lead and support assigned personnel by:
- Conducting regular employee engagement activities to foster a positive and productive work environment.
- Collaborating with People Leaders and senior management to support employee training, performance management, and performance reviews.
- Maintaining consistent and effective communication with the chain of command, customers, civilian personnel, and employees to ensure daily operational tasks are completed effectively.
- Collaborate with senior leadership to ensure long-term mission effectiveness and the resolution of any operational roadblocks.
- Ensure the consistent implementation and adherence to leadership directives and organizational policies in collaboration with People Leaders.
- Lead and support assigned personnel by:
BASIC QUALIFICATIONS:
- Minimum active DoD TS clearance
- Current DoD 8570 IAT Level II certification (or higher), such as CompTIA Security+ CE, ISC2 SSCP, or SANS GSEC (or equivalent).
- Ability to obtain DoD 8570 CSSP-A Level Certification (e.g., CEH, CySA+, GCIA, or equivalent) within 180 days of hire.
- Strong foundation in networking, including packet analysis, common ports and protocols, and traffic flow. Knowledge of the OSI model, defense-in-depth security principles, and common security elements for effective threat detection, analysis, and mitigation as a SOC Security Analyst.
- Bachelor's degree and 4+ years of relevant experience; equivalent work experience and/or military service may be considered in lieu of a degree.
- Proven ability to work effectively both independently and as a collaborative team member, demonstrating initiative and a strong work ethic in both settings.
- Committed to continuous learning and self-improvement in the cybersecurity domain, as evidenced by ongoing pursuit of certifications, active participation in industry forums, and dedication to staying ahead of emerging threats and technologies.
- Excellent problem-solving skills, including the ability to collaborate effectively with cross-functional teams to address complex security challenges in real-world scenarios. This includes the ability to communicate technical information clearly and concisely, build consensus, and drive solutions to completion.
- Reliable and flexible, with a demonstrated willingness to work assigned shifts to support operational requirements and team objectives.
- Located within a commutable distance (within 2 hours) or able to relocate to Hill AFB, UT; Scott AFB, IL; or Columbus, OH.
PREFERRED QUALIFICATIONS:
- Prior experience working with the Defense Information Systems Agency (DISA) and/or Department of Defense (DoD) networks.
- Advanced knowledge of TCP/IP, common networking ports and protocols, traffic flow analysis, system administration principles, the OSI model, defense-in-depth strategies, and standard security components.
- In-depth expertise in the architecture, engineering, and operational aspects of at least one enterprise-grade SIEM platform (e.g., ArcSight, QRadar, LogLogic, Splunk, Elastic).
- Demonstrated experience with malware analysis concepts and methodologies.
- Advanced certifications such as SANS GIAC (e.g., GCIA, GCIH, GLSC) or CompTIA CASP+.
- Experience implementing intelligence-driven defense strategies and/or utilizing the Cyber Kill Chain framework.
- A minimum of two (2) years of experience managing cross-functional cybersecurity teams.
If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.
Original Posting:June 10, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Skills Required
- Minimum active DoD Top Secret (TS) clearance
- Current DoD 8570 IAT Level II certification (e.g., CompTIA Security+ CE, ISC2 SSCP, SANS GSEC) or equivalent
- Ability to obtain DoD 8570 CSSP-A Level Certification (e.g., CEH, CySA+, GCIA) within 180 days of hire
- Strong foundation in networking including packet analysis, common ports/protocols, traffic flow, OSI model, and defense-in-depth principles
- Bachelor's degree and 4+ years of relevant experience (equivalent work experience or military service may be considered in lieu of a degree)
- Proven ability to work independently and collaboratively, demonstrating initiative and strong work ethic
- Commitment to continuous learning and cybersecurity professional development
- Excellent problem-solving skills and ability to communicate technical information clearly
- Reliable and flexible with willingness to work assigned shifts to support operational requirements
- Located within a commutable distance (within 2 hours) or able to relocate to Hill AFB, UT; Scott AFB, IL; or Columbus, OH
- Prior experience working with DISA and/or DoD networks
- Advanced knowledge of TCP/IP, traffic flow analysis, system administration principles, and defense-in-depth strategies
- In-depth expertise in at least one enterprise-grade SIEM platform (ArcSight, QRadar, LogLogic, Splunk, Elastic)
- Demonstrated experience with malware analysis concepts and methodologies
- Advanced certifications such as SANS GIAC (GCIA, GCIH, GLSC) or CompTIA CASP+
- Experience implementing intelligence-driven defense strategies and/or using the Cyber Kill Chain framework
- Minimum of two years experience managing cross-functional cybersecurity teams
Leidos Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Leidos and has not been reviewed or approved by Leidos.
-
Healthcare Strength — Healthcare coverage is described as comprehensive, with multiple plan options, low office-visit copays in some plans, and access to mental health and wellness support tools. The availability of HSA/FSA options and employer contributions is positioned as a meaningful part of the total package.
-
Retirement Support — Retirement benefits are framed as a strong component of total rewards, highlighted by a 401(k) match and immediate vesting in the standard package. The Employee Stock Purchase Plan is also presented as an additional long-term wealth-building feature.
-
Wellbeing & Lifestyle Benefits — Wellbeing and lifestyle supports extend beyond core insurance, including wellness programs, fitness-related stipends, and assistance resources. Work flexibility and related perks are also included as part of the broader rewards experience.
Leidos Insights
What We Do
We Are Leidos For 50 years we have been tackling some of the biggest problems that face our nation and our world. OUR MISSION Through our culture of innovation and history of performance, we develop deep customer trust built on integrity and create enduring solutions that improve our world. Leidos is a science and technology solutions leader working to address some of the world’s toughest challenges in the defense, intelligence, homeland security, civil, and healthcare markets. The company’s 43,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Va., Leidos reported annual revenues of approximately $11.09 billion for the fiscal year ended January 3, 2020. Leidos was cited for the meaningful work employees perform that is challenging, impactful, and aligned with our customers’ missions as reasons professionals want to work and stay at our company. Leidos has also been named to lists including Forbes’ Best Employers for Diversity, Forbes’ America’s Best Employers for Women, Military Times Best for Vets Employers, and Ethisphere Institute’s World's Most Ethical Companies®. Employees enjoy career enrichment opportunities available through mobility and development and experience rewarding relationships with supportive supervisors and talented colleagues and customers. Employees appreciate our flexible work environment, allowing for and encouraging a true work-life balance. Our professionals are also excited about our Employee Resource Groups, like the newly launched Collaborative Outreach with Remote and Embedded Employees (CORE), which strives to create an environment where every employee, regardless of location, feels fully engaged as a valued employee of Leidos. Your most important work is ahead.
.png)






