Job Description
The Cybersecurity Service Provider (CSSP) Engineering Team Lead is the senior technical and program leader responsible for planning, directing, and coordinating all cybersecurity engineering, security infrastructure operations, monitoring, and compliance activities across classified and unclassified enclaves. This position manages and oversees CSSP Infrastructure Engineering ensuring alignment with DoD, Defense Cyber Defense Command (DCDC), U.S. Cyber Command, DISA, and Zero Trust cybersecurity requirements.
The Team Lead organizes and manages complex multi-site support operations, oversees engineering personnel, ensures compliance with high-impact cybersecurity policies, and maintains continuous protection of Government networks and information systems. This role requires senior-level technical expertise and the ability to independently lead mission-critical programs.
Program & Technical LeadershipProvide day-to-day management of CSSP Engineering and Security Infrastructure teams across multiple locations and enclaves.Lead high-visibility cybersecurity engineering initiatives and mission-critical support operations.Act as technical SME and decision-maker for cybersecurity technologies, policies, and enterprise security architecture.Conduct structured quality reviews and ensure all engineering work meets Government standards.Apply comprehensive technical expertise across major tasks and security engineering activities.Oversee and guide cybersecurity program performance, recommending improvements and major technical changes.Supervise engineering teams and oversee junior staff performance.Independently perform functional duties across high-impact assignments.Security Infrastructure EngineeringEngineer, implement, and maintain cybersecurity infrastructure, including:IDS/IPS, firewalls, perimeter defensesEndpoint Security System (ESS)Assured Compliance Assessment Solution (ACAS)SIEM technologies (e.g., ArcSight)Network monitoring and forensic toolsetsZero Trust–aligned technologiesSecurity Operations & MonitoringProvide 24/7/365 monitoring, security analysis, event correlation, incident response, and penetration testing.Monitor tools to detect and mitigate internal/external threats including malware, web attacks, unauthorized access, and data exfiltration.Maintain real-time situational awareness across all assigned enclaves.Incident ResponseServe as central point of contact for Computer Emergency Response.Perform incident investigation, reporting (internal/external), coordination, and resolution.Ensure compliance with DoD Computer Emergency Response Team (DoD-CERT) directives.Vulnerability & Patch ManagementOperate and manage enterprise vulnerability scanning solutions (e.g., ACAS).Perform monthly scans, IAVA management, remediation actions, and reporting.Maintain secure configuration baselines using DISA STIGs and NSA guidelines.Execute SRRs/security scans and validate compliance.Security Engineering Lifecycle SupportReview and approve all new equipment and system deployments across enclaves.Configure hardware/software for DoD-approved ports, protocols, and services (PPS).Perform security audits for servers, endpoints, network devices, and infrastructure components.Maintain continuous compliance with DoD Evaluation Scoring Metrics and JFHQ-DODIN guidance.Cybersecurity Program ImplementationEstablish and maintain a cybersecurity program that aligns with:DoDI 8500.01 (Cybersecurity)DoDI 8510.01 (RMF)DoDD 8140.01 (Cyberspace Workforce Management)DoD 8570.1-MCJCSM 6510.01DoD Zero Trust requirementsSTIGs and IAVA directivesPlans, Policies, and DocumentationDevelop and maintain documentation including:Plan of Action and Milestones (POA&M)Acceptance of Risk (AOR)Security Override Letters (SOL)Configuration Management documentationNetwork and system architecture designsCybersecurity policies and proceduresCompliance inspection reportsEnterprise Compliance & ReportingEnsure confidentiality, integrity, and availability of all Government systems and data.Report vulnerabilities and non-compliance findings to the Government with corrective action plans and timelines.Implement a change control process preventing unauthorized system or network modifications.Functional Areas SupportedThe CSSP Engineering Team Lead oversees and supports the following primary functional areas:Security Infrastructure Engineering ServicesSecurity Event Monitoring & AnalysisCyber Incident ResponseAudit Support & Compliance GuidanceSecurity Analysis & ReportingCybersecurity Policy ReviewProgram Operations & PlanningInformation Assurance Vulnerability ManagementMission Cloud & On-Premises Security ImplementationEmerging Technology Assessments & Process ImprovementsDesired SkillsExpert-level understanding of DoD and DISA cybersecurity architecture, tools, and compliance frameworks.Proven ability to lead large security engineering teams and 24/7 operations centers.Strong technical depth in SIEM, IDS/IPS, ACAS, ESS, endpoint security, Zero Trust, and secure configuration.Ability to interface with senior Government leadership and communicate complex technical concepts clearly.
Minimum EducationBachelor’s degree required.MA/MS degree preferred.Minimum General ExperienceEight (8) years of progressive experience in IT engineering, platform operations, network engineering, or a closely related IT management discipline involving oversight of large, complex, multi-site programs
Project Management Professional (PMP) or equivalent – REQUIREDRelevant commercial certifications (e.g., ITIL, Agile, CISSP, CSM) – desiredMust maintain all mandatory certifications
Must be a U.S. Citizen.Selective Service registration required (if applicable).Top Secret Security Clearance requiredMust maintain fitness and eligibility for national security positions
Onsite at customer location
IndianapolisFull-timelead
Gongio
Wpp
Point72
Hut8
Coreweave