CrawlJobs Logo

Secops Lead

aac.com Logo

AAC

Location Icon

Location:
United States , Washington, DC

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Serves as the Lead Cybersecurity Operations (SECOPS) contractor, providing senior-level technical leadership and operational support to the Agency’s IT Security Program.

Job Responsibility:

  • Serves as the Lead Cybersecurity Operations (SECOPS) contractor, providing senior-level technical leadership and operational support to the Agency’s IT Security Program
  • Supports and coordinates SECOPS activities under government direction and maintains technical inputs to the Agency’s IT Security Program
  • Provides senior technical advisory support to the Chief Information Security Officer (CISO) on developments in cybersecurity, information security (INFOSEC), and IT security, including emerging threat vectors, advanced persistent threats (APTs), attack surface analysis, and identified weaknesses
  • Supports Agency-level technical implementation of approved cybersecurity policies, standards, and directives by developing technical documentation, implementation guidance, and draft procedures for government review and approval
  • Leads day-to-day contractor cybersecurity operations activities within the SECOPS function, supporting government-led oversight of systems and services that impact the Agency’s mission and critical infrastructure
  • Implements and administers cybersecurity incident handling (IH) and incident response (IR) capabilities, including SIEM dashboards, detection inputs, incident response playbooks, and operational metrics, to improve efficiency and effectiveness of security operations
  • Facilitates and coordinates SECOPS activities in support of the Agency’s Information Security (INFOSEC) Program, assisting Agency system security personnel and Information System Security Officers (ISSOs)
  • Serves as the senior technical advisor for threat, vulnerability, and configuration management activities, providing threat intelligence analysis, mitigation recommendations, and defensive strategy insights to Agency stakeholders

Requirements:

  • Demonstrated ability to guide technical discussions and provide expert advisory support to senior government officials, including the CISO, system owners, SOC staff, and executive leadership, while operating under government direction
  • Proven experience as a SOC Lead or Senior Team Lead, successfully coordinating with managed security service providers (MSSPs) and external cybersecurity partners (e.g., CISA, CYBERCOM) in support of incident response (IR), incident handling (IH), and vulnerability management (VM) activities), including mitigating actions to contain activity and facilitating forensics analysis when necessary
  • Documented experience conducting and guiding in-depth technical evaluations of INFOSEC, IT security, and cybersecurity tactics, techniques, and procedures (TTPs), including their impact on baseline system configurations
  • Demonstrated proficiency providing cybersecurity posture assessments, hygiene reporting, and technical input in support of Governance, Risk, and Compliance (GRC) activities and continuous monitoring programs
  • Experience providing incident response support to network subscribers, including recommending mitigating actions, supporting containment efforts, and facilitating forensic analysis under government oversight
  • Demonstrated expertise in log-based and endpoint-based threat detection, threat hunting, and analysis across multiple threat sources
  • Strong technical knowledge of web services security, Microsoft cloud environments (Azure, M365), and modern enterprise security architectures
  • Advanced experience evaluating the security of complex web portals, APIs, and databases (e.g., Java, Ruby, SQL, Oracle) using commercial and open-source security assessment tools such as SQLmap and mongoaudit
  • Near-expert proficiency in: Web application security testing frameworks (e.g., NMAP, W3af)
  • Continuous monitoring and remediation tools (e.g., Azure Security Center, Defender for Cloud, Qualys, Wireshark)
  • Endpoint Detection and Response (EDR) platforms (e.g., HBSS, SEP, Microsoft Defender)
  • Near-expert knowledge of SOC operations, incident handling (IH), incident response (IR), and adversary tactics, techniques, and procedures (TTPs)
  • Ability to facilitate adoption of cybersecurity best practices with development, database, and system administration teams through technical expertise and collaborative engagement
  • Requires a bachelor’s degree in Cybersecurity, Information Assurance, or Information Security and 7+ years of relevant work experience. Additional experience may be substituted for a degree
  • Must be engaging and proactive with critical thinking and problem-solving ability, both independently and as part of a team
  • Candidate must demonstrate the ability to present ideas and reports clearly in English, both orally and in writing
  • Must obtain agency suitability clearance prior to start date

Nice to have:

  • Highly Desired Certifications: CISSP, OSCP, GCIH, GPEN, GSEC, GCIA, GCED, GCID, CCSP, GWEB, GSNA, GCWN, GAWN, GSE, GPPN
  • Experience supporting a nationwide mid-sized Federal agency enterprise is a plus

Additional Information:

Job Posted:
February 10, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
AAC - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Secops Lead

Platform Tech Lead (SecOps & Observability)

You are the technical leader for the E-Commerce SecOps & Observability team with...
Location
Location
Portugal
Salary
Salary:
Not provided
valtech.com Logo
Valtech
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Understands the 'North Star' for metrics, logs, traces, and security posture for E-Commerce services
  • Guide the team in building tools and patterns that validate availability, performance, scalability, and security through tooling defaults, scorecards, and automation
  • Lead the creation of reference implementations
  • Encourage the team to work in small, testable chunks, prioritising the most impactful needs, shipping capabilities, and measuring adoption
  • Manage Risks, Assumptions, Issues, and Dependencies for the SecOps and observability domains
  • Lead sprint planning and support the delivery manager with retrospectives and other ceremonies
  • Write code and documentation that others can use, demonstrating patterns with working examples
  • Build tools to measure adoption and show impact
  • Treat product teams as customers, proactively seeking feedback
Job Responsibility
Job Responsibility
  • Technical leader for the E-Commerce SecOps & Observability team within the Platform Engineering Chapter at easyJet
  • Taking requirements from engineering teams, planning how to deliver platform products efficiently
  • Keeping your team running effectively to meet needs
  • Working closely and collaboratively with other platform engineering teams
  • Ensuring all capabilities integrate with the Backstage IDP, providing teams with an overview of their service health, security posture scorecards, and monitoring tool adoption
  • Creating reference implementations and 'Golden Paths' that make it easy for teams to get world-class observability and security
  • Working closely with Platform Architects for technical direction and the Head of Platform Engineering for broader platform strategy
  • Working with the central Observability and Security teams to ensure alignment and unblock dependencies
What we offer
What we offer
  • Flexibility, with remote and hybrid work options (country-dependent)
  • Career advancement, with international mobility and professional development programs
  • Learning and development, with access to cutting-edge tools, training and industry experts
Read More
Arrow Right

Solutions Consultant

As a Solutions Consultant at GlideFast Consulting, you will support both pre-sal...
Location
Location
United States , Waltham
Salary
Salary:
130000.00 - 165000.00 USD / Year
glidefast.com Logo
GlideFast
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 1+ years of experience in pre-sales, solutions consulting, or similar client facing technical role
  • Proven proficiency with ServiceNow ITSM, plus expertise in at least one additional application suite (ITOM, ITAM, SPM, EA, SecOps, GRC/IRM, CSM, or HRSD)
  • Experience working with ServiceNow ITSM, with exposure to at least one additional major application suite (e.g., ITOM, SPM, SecOps, GRC/IRM, CSM, HRSD)
  • Experience leading discovery sessions, scoping engagements, and preparing project estimates (ROMs/LOEs)
  • Demonstrated experience presenting complex solutions to both technical audiences and business leaders
  • ServiceNow Certified System Administrator and ServiceNow Certified Implementation Specialist-ITSM certifications are required
  • Sales Accreditations: Platform, ITSM, and at least 2 other specialist areas, preferred
  • Presales Accreditations: Platform, ITSM, and at least 2 other specialist areas, preferred
  • ITIL Foundations v4
  • Maintain an active government security clearance if applicable
Job Responsibility
Job Responsibility
  • Provide clients with ServiceNow vendor and industry best practice guidance to ensure successful implementations
  • Support sales discovery sessions and pre-sales activities, addressing both technical and functional inquiries
  • Lead initial scoping sessions to define potential engagements and estimate project level of effort (LOE)
  • Communicate and present solutions effectively to diverse audiences, including technical experts and C-Level stakeholders
  • Deliver detailed project scope information to delivery teams to guide implementation
  • Assist in preparing, reviewing, and updating Rough Orders of Magnitude (ROMs) and Statements of Work (SOWs)
  • Draft, review, and maintain business agreements and contracts as needed
  • Maintain professionalism and an uninterrupted work environment during all meetings and interactions
  • Demonstrate strong corporate citizenship by completing required administrative tasks and internal documentation accurately, on time, and within the outlined processes
  • Fulltime
Read More
Arrow Right

Tech Lead - IR, Cyber Security, SecOps

As the Tech Lead of IR, you will be the captain of the front-line defence. You w...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
jfrog.com Logo
JFrog
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Leadership Experience: 1+ years of experience leading technical teams or acting as a formal mentor/technical lead in a security context
  • Deep Technical Roots: 7+ years of industry experience in security with a focus on Information Security principles
  • Cloud Mastery: Proven expertise in attack and mitigation methods within complex AWS, GCP, or Azure environments
  • Incident Response Prowess: Extensive experience in risk prioritization and managing the lifecycle of security incidents in a global production environment
  • Technical Breadth: Mastery in at least 5 of the following: Endpoint Protection (EDR/XDR) & Zero Trust architecture
  • Identity Management (IAM/IDM) and SSO/SAML
  • Security Analytics (SIEM/Logging) such as ELK or Splunk
  • Container Security (Docker, Kubernetes)
  • Email Protection & Patch Management
  • Coding Proficiency: Ability to review and guide the development of security tools in Python or Go
Job Responsibility
Job Responsibility
  • Incident Command: Act as the primary escalation point for high-priority security incidents, leading the triage, containment, and post-mortem processes
  • Architect Operations: Oversee the design and execution of vulnerability management, SaaS security posture (CASB), and asset management at scale
  • Drive Automation: Champion "Security as Code" by leading the development of internal tools (Python/Go) to automate monitoring and remediation
  • Cross-Functional Partnership: Collaborate with SRE, DevOps, and Product teams to drive holistic fixes for systemic architectural vulnerabilities
  • Evangelize Security: Build a culture of security across the organization through training, documentation, and proactive risk management
Read More
Arrow Right

Security Operations Engineer

We’re looking for a Security Operations Engineer who will own the day-to-day ope...
Location
Location
United States , Coppell
Salary
Salary:
Not provided
island.io Logo
Island
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 1–3 years of experience in security operations, IT security, or a related field (or equivalent hands-on experience through internships, labs, or personal projects)
  • Hands-on familiarity with vulnerability scanning tools such as Burp Suite, Nessus, Tenable, or similar (experience with at least one required)
  • Basic understanding of AWS cloud infrastructure and containerized environments (Kubernetes, Docker, Chainguard)
  • Exposure to structured compliance environments
  • familiarity with FedRAMP, NIST 800-53, or similar frameworks is a strong plus
  • Strong organizational skills with the ability to manage multiple open findings and parallel workstreams
  • A curious, self-driven mindset with a desire to expand beyond a defined lane over time
  • Scripting or automation skills (Python, Bash) are a plus
  • Clear and effective communication skills across Slack, Zoom, and email in a distributed team environment
  • US citizenship and ability to work within FedRAMP-regulated environments
Job Responsibility
Job Responsibility
  • Operate and maintain vulnerability scanning tools across web applications (Burp Suite), infrastructure/network (Nessus), and container/runtime environments (Sysdig)
  • Run scans on a regular cadence and on-demand for releases, audits, and special initiatives
  • Support FedRAMP continuous monitoring (ConMon) activities across US GovCloud environments
  • Assist with evidence collection and compliance tracking, including familiarity with NIST 800-53 controls and tools like eMASS
  • Triage scan results, identify and filter false positives, prioritize findings by risk, and open/track remediation tickets in Jira
  • Partner with engineering teams to ensure SLA adherence and timely remediation
  • Produce reports and compliance artifacts for internal stakeholders and external auditors
  • Contribute to and maintain the compliance evidence repository
  • Improve scanning workflows through automation, scheduling, alerting, and result normalization
  • Collaborate closely with the SecOps Lead and broader product security team, contributing to sprint planning and cross-functional initiatives
What we offer
What we offer
  • Comprehensive health, dental, and vision coverage
  • 401(k) with company match
  • Generous paid time off and company holidays
  • Professional development opportunities
  • Collaborative, high-performance culture
  • Modern office environment in Dallas, TX
  • Competitive compensation and meaningful equity
  • Fulltime
Read More
Arrow Right

SecOps Lead

As a Security Operations Lead at Island, you will operationalize and enhance the...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
island.io Logo
Island
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of detection engineering, security operations workflows, and incident response practical experience
  • Proficiency in scripting and automation (e.g., Python, Bash, PowerShell) to build scalable security tooling
  • Hands-on experience (3+ years) with SIEM, EDR, cloud security monitoring, and incident management
  • Familiarity with cloud security (AWS/GCP/Azure) principles and secure DevOps practices
  • Solid grasp of modern attack techniques, threat actor behaviors, and vulnerability exploitation patterns
  • Curiosity-driven, operations-focused mindset with a passion for keeping adversaries out and operations resilient
Job Responsibility
Job Responsibility
  • Security Monitoring & Incident Response: Design, implement, and maintain security monitoring solutions
  • investigate and respond to security events, anomalies, and vulnerabilities relevant to the Island Enterprise Browser and supporting infrastructure
  • Operational Security Automation: Develop custom automation for detection, alerting, triage, and response workflows
  • optimize signal-to-noise ratio to enable fast and accurate threat detection
  • Threat Intelligence & Hunting: Collect, analyze, and operationalize threat intelligence relevant to our threat model
  • conduct proactive threat hunting activities tailored to the enterprise browser domain
  • Security Operations Playbooks: Create and maintain incident response guides, runbooks, and operational playbooks to enable structured, high-fidelity security operations and empower cross-functional teams
  • Security Enablement & Awareness: Collaborate with product, engineering, and IT teams to improve security awareness, deliver training, and drive adoption of security best practices across Island
  • Fulltime
Read More
Arrow Right

Head of Information Security

The Head of Information Security is a senior technical leadership role. The role...
Location
Location
Poland , Kraków
Salary
Salary:
Not provided
content.perkinelmer.com Logo
PerkinElmer
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Engineering, or related field
  • 5+ years of experience in technical cybersecurity roles
  • Proven experience leading enterprise-scale security engineering and operations teams
Job Responsibility
Job Responsibility
  • Own the enterprise security architecture across network, endpoint, cloud, identity, and application domains
  • Define technical security standards, reference architectures, and engineering patterns
  • Lead the selection, deployment, and lifecycle management of security platforms and tooling
  • Embed security-by-design into infrastructure, cloud, and application initiatives
  • Lead Security Operations (SOC / SecOps), including detection, response, and operational resilience
  • Own vulnerability management, threat intelligence, and security telemetry
  • Drive continuous improvement in detection, automation, and response effectiveness
  • Lead the Cybersecurity Incident Response Team (CIRT)
  • Act as technical incident commander during major security incidents
  • Own investigation, containment, eradication, and recovery activities
What we offer
What we offer
  • Private healthcare including dental care
  • Life and long-term disability insurance
  • MyBenefit Cafeteria system
  • Multisport Card
  • Social Fund Subsidies
  • Home Office allowance
  • Tuition reimbursement
  • Referral awards
  • Internal career development opportunities in multiple business areas
  • Day off to celebrate your birthday
Read More
Arrow Right

ServiceNow Functional Consultant

We’re supporting a leading organisation on a major ServiceNow transformation and...
Location
Location
Saudi Arabia
Salary
Salary:
Not provided
welovesalt.com Logo
Salt
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong experience with ServiceNow GRC / IRM / SecOps
  • Proven track record in functional design and process transformation
  • Hands-on experience with policies, controls, risk assessments, and audits
  • Experience working in complex enterprise environments
  • Ability to collaborate with both business and technical stakeholders
  • Agile delivery experience is highly desirable
Job Responsibility
Job Responsibility
  • Leading the implementation and optimisation of GRC, SecOps, and Business Continuity modules
  • Designing and configuring risk frameworks, policies, controls, and audit processes
  • Delivering Business Impact Analysis (BIA) and continuity planning workflows
  • Working closely with technical teams to translate requirements into ServiceNow configurations
  • Driving process reengineering to improve efficiency, quality, and service delivery
  • Supporting training, documentation, and stakeholder engagement
  • Implementing KPIs and reporting frameworks to measure success
  • Fulltime
Read More
Arrow Right

CMDB SME/Integration Specialist

We are seeking a ServiceNow CMDB Subject Matter Expert (SME) and Integration Spe...
Location
Location
United States , San Ramon
Salary
Salary:
110000.00 USD / Year
realign-llc.com Logo
Realign
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands on experience with ServiceNow CMDB
  • Strong hands on experience with CSDM
  • Strong hands on experience with Discovery & Service Mapping
  • Strong hands on experience with Identification & Reconciliation Engine (IRE)
  • Proven experience with ServiceNow integrations
  • Strong understanding of IT infrastructure (Servers, networks, databases, middleware, cloud platforms)
  • Experience with MID Server configuration & troubleshooting
  • Familiarity with ITIL processes (Incident, Problem, Change, Asset)
  • 10+ years of experience
  • Strong analytical and problem solving skills
Job Responsibility
Job Responsibility
  • Act as CMDB SME, owning CMDB strategy, architecture, and roadmap
  • Design, implement, and maintain CMDB data models aligned with CSDM (Common Service Data Model)
  • Define CI classes, relationships, normalization rules, and lifecycle management
  • Ensure CMDB supports ITSM, ITOM, ITAM, SecOps, APM, and Service Mapping use cases
  • Lead CMDB audits, health dashboards, and continuous improvement initiatives
  • Configure and manage ServiceNow Discovery (Horizontal & Cloud Discovery)
  • Design and maintain Service Mapping for business-critical services
  • Troubleshoot Discovery issues, credential problems, and MID Server connectivity
  • Optimize discovery schedules, patterns, and identification reconciliation rules
  • Design, build, and support integrations using REST / SOAP APIs, ServiceNow Integration Hub & Spokes, MID Servers, ETL tools and scheduled imports
  • Fulltime
Read More
Arrow Right