ASRC

Senior Information Security Engineer - DOWIN Ops

ASRC$100K — $130K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in computer science or related field
  • U.S. Citizenship and active Secret Clearance with ability to obtain and maintain Top-Secret Clearance
  • Active DoD 8570 IAT Level II certification or higher with specific certifications in good standing
  • 7+ years in IT or Information Security with 5+ years in Cybersecurity Operations and Incident Response
  • Great communication skills and attention to detail

Responsibilities

  • Lead response activities for USCYBERCOM and DCDC directives, ensuring compliance with various operational orders
  • Conduct detailed forensic investigations into cybersecurity incidents to identify corrective actions
  • Perform post-incident reviews to enhance program defenses and identify security gaps
  • Provide expert guidance on cybersecurity directives and assess remediation plans for timeliness
  • Oversee enterprise-wide monitoring to ensure rapid detection and response of cyber incidents
  • Maintain and update Incident Response Standard Operating Procedures in accordance with regulations
  • Translate technical findings into status reports for various stakeholders to ensure alignment

Benefits

  • Opportunities for continuous skill development and training
  • Collaborative work environment with advanced technology
  • Engagement in high-priority investigations
  • Exposure to critical networks and systems within a government environment
  • Support for obtaining higher-level security clearances
Full Job Description
Cybersecurity Operations Analyst to join one of our Cybersecurity Support Services contracts to support cybersecurity governance and compliance across critical networks, services, and systems. This is an onsite position located in Seaside, California or Alexandria, Virginia (Mark Center). This role is essential for containing, responding to, and eradicating malicious activity while advising leadership on administrative policies, internal controls, and security procedures. The successful candidate will lead high-priority investigations and post-incident analysis to drive continuous improvements in response capabilities and preventive measures. Additionally, this position involves coordinating with section leaders to resolve complex technical challenges and preparing comprehensive progress reports for program leadership and DOW stakeholders to ensure full alignment with enterprise risk management and information systems audit functions. Must be on-site 5 days a week at either Work locations which is Seaside, California or Alexandria, Virginia. Key Responsibilities: • Lead response activities for USCYBERCOM and DCDC directives, managing the lifecycle of Situational Awareness Reports (SAR) and ensuring all assets remain compliant with OPORDs, TASKORDs, IAVM notifications, and STIG requirements by published deadlines. • Conduct deep-dive forensic investigations into cybersecurity events (data loss, unauthorized access, network exploits) to determine nature and scope; identify corrective actions for containment, eradication, and recovery. • Perform thorough post-incident reviews to derive lessons learned, identify security gaps, and implement preventive measures to strengthen the program's long-term defense posture. • Provide expert guidance on cybersecurity directives and risk management policies; review POA&Ms for technical clarity and sound judgment to ensure acceptable remediation timeframes for security controls. • Oversee enterprise-wide monitoring and logging across network infrastructure and endpoints to ensure the rapid detection and response to cyber incidents. • Maintain and evolve IR SOPs in strict accordance with CJCSM 6510.01B, NIST SP 800-61R2, and DOW regulations to ensure procedural alignment with industry best practices. • Translate technical findings into regular status reports for program leadership, DOW officials, and USCYBERCOM /DCDC repositories, detailing incident impact, effectiveness of response strategies, and lessons learned. • Drive the evolution of incident response capabilities by identifying weaknesses, recommending advanced technologies, and implementing enhanced processes to stay ahead of evolving cyber threats. • Support DOW CIO data collection by reviewing PPSM, CAP, SNAP, and GIAP requests against DISA guidelines; cross-train team members on emerging defense techniques and provide after-hours investigative support for critical incidents. Required Skills: • Knowledge of Incident Response Handling Procedures (NIST SP 800-61) • Familiarity with cyber adversary tactics and frameworks (such as ATT&CK and D3FEND) • Knowledge of one or more of the following cybersecurity tools: • Trellix/ESS • Tanium • Microsoft Defender Endpoint • BeyondTrust • Splunk • Great communication skills and attention to detail. Required Qualifications: • Bachelor's degree in computer science or related field • U.S. Citizenship and an active Secret Clearance (required) with the ability to obtain and maintain a Top-Secret Clearance. • Active DoD 8570 IAT Level II certification or greater, including at least one of the following certifications in good standing: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP. • Active DoD 8570 CSSP Incident Responder certification a plus, including at least one of the following certifications in good standing: CEH, CFR, CCNA Cyber Ops, CHFI, CySA+, GCFA, GCIH, SCYBER, or PenTest+ • 7+ years in Information Technology or Information Security with 5+ years performing Cybersecurity Operations and Incident Response • Required to work onsite daily at our DoD customer office location in Alexandria, VA

About ASRC

Arctic Slope Regional Corporation (ASRC) is an Alaska Native corporation that was established in 1972 under the Alaska Native Claims Settlement Act (ANCSA). The company is owned by approximately 13,000 Iñupiat shareholders who live primarily in eight villages on Alaska's North Slope. ASRC is a diversified company with subsidiaries involved in oil and gas exploration and production, government services, construction, and resource development. The company has a strong commitment to sustainability and environmental stewardship, and has implemented a number of initiatives to reduce its environmental impact.
Learn more about ASRC
Size
3,500 employees
Industry
Founded
2003

Similar Jobs

More Jobs at ASRC

More Information Technology Jobs

Find similar Senior Information Security Engineer - DOWIN Ops jobs: