Cyber Detection Watch Officer

ManTech (


  Full Time   Employee   Contractor

United States

Become an integral part of a diverse team that leads the world in Mission, Cyber, and Intelligence Solutions. At ManTech International Corporation, you will help protect our national security while working
on innovative projects that offer opportunities for advancement.

As the Cyber Intelligence Watch Officer, you will perform cyber intelligence analysis and administrative activities related to Computer Network Defense (CND) as part of an Intelligence Cyber
Incident Response Team (CIRT) 24x7 cyber Watch Center. The candidate will coordinate and collaborate with Intelligence Community (IC) elements to maintain Common Situational Awareness (CSA) of
network incidents and events for the community, Senior Director of National Intelligence (DNI) staff, and the IC Chief Information Officer (CIO). As a member of the CIRT contract team, the candidate
will be expected to collaborate closely with internal units, Department of Defense (DoD), and other Federal/Civilian entities to ensure successful mission accomplishment with the intention of meeting
and exceeding the CIRT's long-term goals.

• Work an 8-hour shift on the CIRT Watch Floor
• This position is for the Days; it's for 12:00PM – 8:00PM, Monday through Friday. 30 – 60 Minutes Lunch.
• As required, brief senior leadership daily on emerging threats, high profile incidents, and upcoming events
• Possess experience leading cyber, technical, or analytical teams
• Conduct cyber intelligence link analysis utilizing open-source and classified research on emerging/trending threats and vulnerabilities
• Collaborate between CIRT elements as necessary during incident detection and response stages
• Respond promptly to all request for support whether telephonic, via e-mail or instant messenger
• Create releasable finished intelligence products and reports for the IC as well as IC Senior Leadership
• Maintain incident case management database for all reported incidents
• Analyze incidents and events captured in the Case Management Database for trends, patterns, or actionable information
• Review incidents and events captured in the Case Management Database after closure for investigative sufficiency and timeliness
• Leverage existing business processes and where necessary define and document new repeatable business processes and procedures
• Establish a baseline understanding of IC-wide network assets and capabilities through community outreach and persistent communication with IC
• Research external information on events, incidents, outages, threats, and technical vulnerabilities
• Coordinate and disseminate the best course of action for the IC enterprise during cybersecurity events, incidents, outages, threats and
technical vulnerabilities with IC-IRC fusion analysis team
• Coordinate individual organizational actions to reduce overall shared risk to the IC Information Environment (IC IE)
• Assess incidents to identify type of attack, estimate impact, and collect evidence
• Recommend range of mitigation actions for decision making at the Action-Officer and Senior Leadership level
• Maintain personnel accountability systems

Position Requirements:
• Bachelor’s degree in Computer Science, Information Assurance, Computer Security, or equivalent with 3-5 years watch operations experience
• Have demonstrated leadership qualities
• Be an expert in information security incident handling
• Experience with Cyber Intelligence Analysis or Intelligence Analysis
• Possess excellent technical written and verbal communication skills
• Must be 8570 compliant
• Desired certifications include Security+, CISSP or equivalent, CEH or equivalent
• Must possess a TS/SCI clearance with POLY.


To apply for this job, contact:
Human Resources

Save This Job

Email This Job to a Friend